Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

HELP ! I've been hijacked. [Closed]

Started by sweetsuzee , Nov 21 2013 02:21 PM

This topic is locked

#1
sweetsuzee

Posted 21 November 2013 - 02:21 PM

Member

Member
55 posts

I started having problems a few months ago in that sometimes it takes up to 20 minutes for a link or a site to open. Other times addresses entered into the URL are ignored and the computer heads to a site I opened maybe 4 or 5 sites earlier such as going to nbc.com when I'm trying to get to google.com. Sometimes I am directed to a site I’ve never visited but thank God that is infrequently. But, it does happen. I have also had a lot of "not responding" prompts whereby the computer lags for a long time or actually freezes and I have to shut down and relaunch. The past 2 days has been the worst in that half the time I open a webpage, I do not see the graphics, etc. but rather the Java script. If I close out and go back to the site a couple of times, eventually the page will open correctly. I clean my cache daily. I’ve run MS’s FixIt. I've repeatedly flushed my DNS. I've run Spybot S&D, anti-malware programs, etc. and nothing really serious has been found. However, I'm a total neophyte and probably wouldn't know a bad file if I tripped over it. Today I had some spare time and decided I must get to the bottom of this because it is really wasting a lot of my time.

I downloaded, launched and inserted the logs to my desktop for 1) FRST in normal mode, 2) TDSS-Killer, 3) aswMBR including the most recent update, 4) OTL, and, 5) Roguekiller. I was unable to copy and paste from RK nor did it leave a log on my desktop. However, that's where I think I identified what might be the culprit - BackgroundContainer by Conduit. But I can be dead wrong since I don't have a clue as to what I am doing. That's why I have not really done anything and why I am here. Can anyone help me, please? Oh, before I ran anything listed above, I ran HijackThis and kept the logfile. My OS is Windows 8, 64 bit in a HP Spectre TouchSmart Ultrabook

#2
Essexboy

Posted 21 November 2013 - 02:40 PM

GeekU Moderator

Retired Staff
69,964 posts

Hi could you post the OTL and AswMBR logs please

#3
sweetsuzee

Posted 21 November 2013 - 03:52 PM

Member

Topic Starter
Member
55 posts

OTL log -

OTL logfile created on: 11/20/2013 5:30:34 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\suesarkis\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.90 Gb Total Physical Memory | 5.63 Gb Available Physical Memory | 71.32% Memory free
9.09 Gb Paging File | 6.54 Gb Available in Paging File | 71.93% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 445.79 Gb Total Space | 372.59 Gb Free Space | 83.58% Space Free | Partition Type: NTFS
Drive D: | 19.19 Gb Total Space | 2.42 Gb Free Space | 12.60% Space Free | Partition Type: NTFS

Computer Name: SUESBABY | User Name: suesarkis | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/20 17:23:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
PRC - [2013/11/20 08:01:40 | 002,334,384 | ---- | M] () -- C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
PRC - [2013/11/20 08:01:40 | 001,643,696 | ---- | M] (AVG Secure Search) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe
PRC - [2013/11/20 08:01:40 | 000,161,968 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\loggingserver.exe
PRC - [2013/11/06 07:28:31 | 000,166,352 | ---- | M] (APN LLC.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
PRC - [2013/10/31 21:31:24 | 008,252,744 | ---- | M] (Pokki) -- C:\Users\suesarkis\AppData\Local\Pokki\Engine\pokki.exe
PRC - [2013/10/28 17:49:48 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWOW64\rpcnet.exe
PRC - [2013/10/07 17:27:35 | 000,237,960 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
PRC - [2013/09/07 09:20:56 | 000,071,224 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\waol.exe
PRC - [2013/09/07 09:20:48 | 000,045,624 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\shellmon.exe
PRC - [2013/09/06 19:53:15 | 002,368,568 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\AOLBrowser\aolbrowser.exe
PRC - [2013/08/14 14:19:24 | 000,039,056 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/07/23 18:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2013/07/19 10:07:36 | 034,072,896 | ---- | M] (SlimWare Utilities, Inc.) -- C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
PRC - [2013/07/04 14:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
PRC - [2013/06/03 17:46:06 | 000,015,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/05/20 20:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe
PRC - [2013/05/11 02:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/29 14:54:08 | 000,193,576 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\irstrtsv.exe
PRC - [2013/01/28 07:28:58 | 003,179,560 | ---- | M] (Copernic Inc.) -- C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearch.exe
PRC - [2013/01/28 07:28:58 | 001,692,200 | ---- | M] (Copernic Inc.) -- C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearchService.exe
PRC - [2012/11/06 08:18:50 | 001,140,672 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2012/11/06 08:18:34 | 001,120,192 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2012/11/05 15:14:34 | 001,343,904 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
PRC - [2012/10/02 16:23:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
PRC - [2012/08/28 07:53:14 | 000,036,744 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe
PRC - [2012/08/24 10:09:20 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
PRC - [2012/07/25 19:50:01 | 000,088,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\OpenWith.exe
PRC - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2010/03/07 23:27:49 | 000,041,800 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\Common Files\AOL\1374881847\ee\aolsoftware.exe
PRC - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2006/10/23 04:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe
PRC - [2003/03/07 04:02:30 | 000,069,632 | ---- | M] (Corel Corporation Limited) -- C:\Program Files (x86)\WordPerfect Office 11\Programs\wpwin11.exe
PRC - [2002/10/10 20:47:44 | 000,589,824 | ---- | M] (PC Dynamics, Inc.) -- C:\Program Files (x86)\Corkboard\CORK.EXE
PRC - [1998/12/23 15:15:20 | 000,359,936 | ---- | M] () -- C:\Program Files (x86)\The Cleaner 2\CLEANER.EXE

========== Modules (No Company Name) ==========

MOD - [2013/11/20 08:01:40 | 002,334,384 | ---- | M] () -- C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
MOD - [2013/11/20 08:01:40 | 000,521,904 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\log4cplusU.dll
MOD - [2013/11/20 08:01:40 | 000,145,072 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.3\SiteSafety.dll
MOD - [2013/11/16 22:54:55 | 016,237,448 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
MOD - [2013/09/07 09:20:57 | 000,048,640 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\zlib.dll
MOD - [2013/09/07 09:19:37 | 021,117,440 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libcef.dll
MOD - [2013/09/07 09:19:35 | 000,648,704 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libGLESv2.dll
MOD - [2013/09/07 09:19:35 | 000,122,880 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libEGL.dll
MOD - [2013/09/07 09:19:22 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\components\Tier2Svc.dll
MOD - [2013/09/07 09:19:22 | 000,060,928 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\components\DataSvcs.dll
MOD - [2013/09/06 18:11:12 | 001,400,846 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Pokki\Engine\avcodec-54.dll
MOD - [2013/09/06 18:11:12 | 000,569,856 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
MOD - [2013/09/06 18:11:12 | 000,222,734 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Pokki\Engine\avformat-54.dll
MOD - [2013/09/06 18:11:12 | 000,151,054 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Pokki\Engine\avutil-51.dll
MOD - [2012/05/29 22:51:08 | 000,699,280 | R--- | M] () -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\wincfi39.dll
MOD - [2003/03/07 04:00:36 | 000,454,723 | ---- | M] () -- C:\Program Files (x86)\WordPerfect Office 11\Programs\PrintEngine110.dll
MOD - [2003/03/07 03:57:38 | 000,057,404 | ---- | M] () -- C:\Program Files (x86)\WordPerfect Office 11\Programs\axcntrls.dll
MOD - [1998/12/23 15:15:20 | 000,359,936 | ---- | M] () -- C:\Program Files (x86)\The Cleaner 2\CLEANER.EXE

========== Services (SafeList) ==========

SRV:64bit: - [2013/08/15 21:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/07/01 16:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/06/24 14:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/06/01 01:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/05/03 22:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/05/03 22:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/04/08 20:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/03/01 18:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/03/01 18:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/01/09 15:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/01/09 15:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2012/09/24 15:03:12 | 001,153,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2012/09/24 15:02:54 | 000,272,176 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2012/09/24 15:02:42 | 000,617,776 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2012/09/24 15:02:16 | 000,149,296 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2012/09/24 12:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2012/09/19 22:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012/09/13 03:33:50 | 000,731,688 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2012/08/19 21:45:20 | 000,323,072 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2012/08/16 19:36:54 | 000,149,032 | ---- | M] () [Auto | Running] -- C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe -- (ISCTAgent)
SRV:64bit: - [2012/08/15 16:08:14 | 000,135,984 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012/07/25 19:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012/07/25 19:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/25 19:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/25 19:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/25 19:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/25 19:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/25 19:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/25 19:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/25 19:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/25 19:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/25 19:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/04/20 14:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2013/11/20 08:01:40 | 001,643,696 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe -- (vToolbarUpdater17.1.3)
SRV - [2013/11/16 22:54:55 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/11/15 18:52:14 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/11/06 07:28:31 | 000,166,352 | ---- | M] (APN LLC.) [Auto | Running] -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe -- (APNMCP)
SRV - [2013/10/28 17:49:48 | 000,069,792 | ---- | M] (Absolute Software Corp.) [Auto | Running] -- C:\Windows\SysWOW64\rpcnet.exe -- (rpcnet)
SRV - [2013/08/14 14:19:24 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/07/23 18:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2013/07/04 14:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/06/03 17:46:06 | 000,015,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2013/06/03 14:38:50 | 000,277,640 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/05/20 20:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe -- (NIS)
SRV - [2013/05/11 02:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/29 14:54:08 | 000,193,576 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysWOW64\irstrtsv.exe -- (irstrtsv)
SRV - [2013/02/05 07:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService)
SRV - [2012/11/06 08:18:50 | 001,140,672 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2012/11/06 08:18:34 | 001,120,192 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2012/09/27 10:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2012/09/07 21:06:26 | 002,464,400 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2012/08/24 10:09:20 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV - [2012/07/25 19:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/07/25 19:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2012/07/25 19:18:41 | 000,408,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2012/07/25 19:17:52 | 000,060,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/04/24 13:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
SRV - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2006/10/23 04:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe -- (AOL ACS)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/11/20 12:17:26 | 000,016,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SWDUMon.sys -- (SWDUMon)
DRV:64bit: - [2013/11/20 11:23:46 | 000,034,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WPRO_41_2001.sys -- (WPRO_41_2001)
DRV:64bit: - [2013/09/05 00:43:42 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2013/08/15 21:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2013/07/20 00:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2013/07/20 00:50:56 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2013/07/20 00:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2013/07/20 00:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2013/07/18 01:04:48 | 000,248,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\avgwfpa.sys -- (Avgwfpa)
DRV:64bit: - [2013/07/09 00:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/07/01 17:41:47 | 000,447,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/07/01 17:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/07/01 17:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/07/01 16:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/07/01 14:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/07/01 00:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2013/06/28 22:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/06/18 17:02:15 | 000,177,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2013/06/10 13:17:46 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/06/03 14:38:37 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/06/03 13:39:45 | 000,650,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/05/31 19:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/05/22 21:25:28 | 001,139,800 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symefa64.sys -- (SymEFA)
DRV:64bit: - [2013/05/20 21:02:00 | 000,493,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symds64.sys -- (SymDS)
DRV:64bit: - [2013/05/15 21:02:14 | 000,796,760 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2013/05/03 23:34:15 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/04/29 14:54:08 | 000,043,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\irstrtdv.sys -- (irstrtdv)
DRV:64bit: - [2013/04/24 16:43:56 | 000,433,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symnets.sys -- (SymNetS)
DRV:64bit: - [2013/04/15 18:41:14 | 000,169,048 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\ccsetx64.sys -- (ccSet_NIS)
DRV:64bit: - [2013/03/04 17:40:08 | 000,224,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\ironx64.sys -- (SymIRON)
DRV:64bit: - [2013/03/04 17:21:35 | 000,036,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\srtspx64.sys -- (SRTSPX)
DRV:64bit: - [2013/03/02 02:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/03/02 02:45:20 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/03/02 02:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/01/29 17:15:04 | 000,050,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\point64.sys -- (Point64)
DRV:64bit: - [2013/01/09 17:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2012/11/26 19:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012/11/19 20:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012/11/06 08:19:20 | 001,345,920 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2012/11/05 19:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012/10/30 10:31:16 | 000,131,968 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2012/10/26 03:17:44 | 000,020,912 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\avgboota.sys -- (Avgboota)
DRV:64bit: - [2012/10/12 00:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/10/10 23:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012/10/10 10:18:16 | 004,309,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NETwew00.sys -- (NETwNe64)
DRV:64bit: - [2012/09/24 12:40:56 | 000,043,840 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2012/09/24 12:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2012/09/19 23:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012/09/19 23:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012/09/17 05:57:36 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2012/09/14 14:09:34 | 000,457,528 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012/09/14 14:09:32 | 000,043,832 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:64bit: - [2012/09/14 14:09:32 | 000,041,272 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Smb_driver_AMDASF.sys -- (SmbDrv)
DRV:64bit: - [2012/09/13 03:35:08 | 000,162,344 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012/09/13 03:35:08 | 000,162,344 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2012/09/06 15:14:02 | 000,273,040 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2012/08/31 09:40:24 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver)
DRV:64bit: - [2012/08/19 21:45:20 | 000,542,208 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2012/08/16 19:31:28 | 000,046,016 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ISCTD64.sys -- (ISCT)
DRV:64bit: - [2012/08/16 19:31:28 | 000,019,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\imsevent.sys -- (imsevent)
DRV:64bit: - [2012/08/16 19:31:26 | 000,020,968 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ikbevent.sys -- (ikbevent)
DRV:64bit: - [2012/08/12 03:47:16 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2012/08/06 10:07:08 | 000,068,136 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\iBtFltCoex.sys -- (ibtfltcoex)
DRV:64bit: - [2012/07/31 00:04:12 | 000,690,832 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/07/25 21:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/25 21:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/25 21:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/25 21:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/25 21:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/25 21:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/25 21:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/25 21:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/25 21:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/25 21:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/25 21:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/25 21:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/25 21:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/25 21:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/25 21:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/25 21:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/25 21:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/25 20:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/25 20:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/25 19:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/25 18:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/25 18:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/25 18:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/25 18:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/25 18:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/25 18:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/25 18:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/25 18:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/25 18:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/25 18:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/25 18:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/25 18:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/25 18:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/25 18:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/25 18:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/25 18:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/25 18:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/25 18:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/25 18:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2012/07/25 18:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/25 18:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/25 18:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/07/02 15:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/06/20 13:27:30 | 000,023,448 | R--- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symelam.sys -- (SymELAM)
DRV:64bit: - [2012/06/19 22:40:52 | 000,342,528 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2006/11/29 14:24:49 | 000,024,064 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\wanatw64.sys -- (wanatw)
DRV - [2013/05/01 03:05:28 | 002,087,664 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130516.003\ex64.sys -- (NAVEX15)
DRV - [2013/05/01 03:05:28 | 000,484,512 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2013/05/01 03:05:28 | 000,138,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2013/05/01 03:05:28 | 000,126,192 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130516.003\eng64.sys -- (NAVENG)
DRV - [2013/04/30 14:47:40 | 000,513,184 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130515.001\IDSviA64.sys -- (IDSVia64)
DRV - [2013/04/12 23:09:32 | 001,390,680 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130502.001\BHDrvx64.sys -- (BHDrvx64)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT13/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...0TR&pc=HPNTDFJS
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPNTDF
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPNTDF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.coupons.com/
IE - HKLM\..\URLSearchHook: {845cab51-d8d2-472f-8bd9-2b44642d97c2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {E33F5319-BF45-4B58-91F5-608FF08AFD51}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...0TR&pc=HPNTDFJS
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPNTDF
IE - HKLM\..\SearchScopes\{3ED50F13-D9B3-45AD-9D82-E4AFB74E7E09}: "URL" = http://search.aol.co...ionType=msie70a
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPNTDF

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://search.coupon...q={searchTerms}
IE - HKCU\..\SearchScopes\{9A607316-AA49-403E-820E-AE5F5D52960B}: "URL" = http://search.aol.co...ionType=msie70a
IE - HKCU\..\SearchScopes\{D7A59045-AE04-4DD9-82FF-0753CBC8C10C}: "URL" = http://isearch.shopa...q={searchTerms}
IE - HKCU\..\SearchScopes\{E33F5319-BF45-4B58-91F5-608FF08AFD51}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\970848F068E64C87A04FD32509D0F57D: "URL" = http://search.condui...6422161828&UM=2
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:62082;https=127.0.0.1:62082

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.1.3.1&pid=safeguard&sg=0&sap=hp"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1
FF - prefs.js..keyword.URL: "http://www.bing.com/...9DF&PC=U079&q="

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.40.2: C:\Windows\system32\npDeployJava1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.3\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\suesarkis\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pokki.com/PokkiDownloadHelper: C:\Users\suesarkis\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn\ [2013/11/20 11:26:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn\ [2013/04/14 12:16:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.1.3.1 [2013/11/20 08:02:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/10/26 14:18:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}: C:\Program Files (x86)\Coupons.com CouponBar\firefox\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}\Coupons.com.xpi [2013/07/15 08:54:55 | 000,185,164 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/10/26 14:18:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/11/15 18:52:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{57319509-7821-41B0-9FDF-3B58F146AE33}: c:\program files (x86)\copernic desktop search - home\firefoxconnector [2013/06/17 15:56:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/11/15 18:52:11 | 000,000,000 | ---D | M]

[2013/09/20 13:14:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Extensions
[2013/11/18 18:26:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions
[2013/11/13 15:11:33 | 000,000,000 | ---D | M] (InternetHelper3.1) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}
[2013/11/18 18:26:17 | 000,000,000 | ---D | M] (WhiteSmoke New) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}
[2013/10/22 09:26:37 | 000,000,000 | ---D | M] (AOL Toolbar) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2013/10/24 12:13:13 | 000,000,000 | ---D | M] (Vafmusic9) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}
[2013/10/24 12:12:26 | 000,044,294 | ---- | M] () (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\[email protected]
[2013/10/27 12:57:33 | 000,002,273 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\searchplugins\bingp.xml
[2013/11/15 18:52:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/11/15 18:52:15 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/10/26 14:17:50 | 000,124,504 | ---- | M] (RealPlayer) -- C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll

========== Chrome ==========

CHR - default_search_provider: AVG Secure Search (Enabled)
CHR - default_search_provider: search_url = http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR - default_search_provider: suggest_url = http://toolbar.avg.c...earchTerms}&o=1,
CHR - homepage: http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=hp
CHR - Extension: Google Docs = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1\
CHR - Extension: Google Drive = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: YouTube = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1\
CHR - Extension: Vafmusic9 = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\
CHR - Extension: Vafmusic9 = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\nativeMessaging\nmHost
CHR - Extension: Google Search = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
CHR - Extension: RealDownloader = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0\
CHR - Extension: Norton Identity Protection = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.0.10_1\
CHR - Extension: AVG SafeGuard = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.1.3.1_0\
CHR - Extension: Google Wallet = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Gmail = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\

O1 HOSTS File: ([2012/07/25 21:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
O2:64bit: - BHO: (Ask Toolbar) - {41525333-2D56-3700-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport_x64.dll (APN LLC.)
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (AOL Toolbar Loader) - {3ef64538-8b54-4573-b48f-4d34b0238ab2} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O2 - BHO: (Ask Toolbar) - {41525333-2D56-3700-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport.dll (APN LLC.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Vafmusic9 Toolbar) - {845cab51-d8d2-472f-8bd9-2b44642d97c2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
O2 - BHO: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.1.3.1\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O2 - BHO: (TBSB07898 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (Ask Toolbar) - {41525333-2D56-3700-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport_x64.dll (APN LLC.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {41525333-2D56-3700-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport.dll (APN LLC.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Vafmusic9 Toolbar) - {845cab51-d8d2-472f-8bd9-2b44642d97c2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Coupons.com CouponBar) - {8660E5B3-6C41-44DE-8503-98D99BBECD41} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (AVG SafeGuard toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\17.1.3.1\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Vafmusic9 Toolbar) - {845CAB51-D8D2-472F-8BD9-2B44642D97C2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Coupons.com CouponBar) - {8660E5B3-6C41-44DE-8503-98D99BBECD41} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SetDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe (Hewlett-Packard Development Company, L.P.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [ApnTBMon] C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (APN)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [HostManager] C:\Program Files (x86)\Common Files\AOL\1374881847\ee\aolsoftware.exe (AOL Inc.)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe ()
O4 - HKCU..\Run: [AOL Fast Start] C:\Program Files (x86)\AOL Desktop 9.7a\AOL.EXE (AOL Inc.)
O4 - HKCU..\Run: [BackgroundContainer] C:\Users\suesarkis\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll (Conduit Ltd.)
O4 - HKCU..\Run: [Copernic Desktop Search - Home] C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearchService.exe (Copernic Inc.)
O4 - HKCU..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform File not found
O4 - HKCU..\Run: [Private WiFi Client] C:\Program Files (x86)\Private Communications\PRIVATE WiFi\WiFiPrivacyClient.exe (Private Communications Corp)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [TBHostSupport] C:\Users\suesarkis\AppData\Local\TBHostSupport\TBHostSupport.dll (Conduit Ltd.)
O4:64bit: - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O4 - Startup: C:\Users\suesarkis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyCorkboard.lnk = C:\Program Files (x86)\Corkboard\CORK.EXE (PC Dynamics, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O9:64bit: - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://zone.msn.com/...aploader_v6.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.4.1 8.8.8.8 8.8.4.4 4.2.2.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C1A05F8D-24DB-43C5-8454-FC2348130097}: DhcpNameServer = 192.168.4.1 8.8.8.8 8.8.4.4 4.2.2.6
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.3\ViProtocol.dll (AVG Secure Search)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL) - File not found
O20 - AppInit_DLLs: (c:\progra~2\optimi~1\optpro~1.dll) - File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:64bit: SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)

ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {74166507-F39E-305E-A972-2C3478E47350} - .NET Framework
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U %SystemRoot%\System32\shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {3A8403F3-90B5-35DC-8926-EB9B907209F9} - .NET Framework
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} -
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll",CreateReaderUserSettings
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\Windows\SysWow64\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/11/20 17:15:10 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
[2013/11/20 13:44:28 | 000,000,000 | ---D | C] -- C:\FRST
[2013/11/20 13:41:55 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\suesarkis\Desktop\aswmbr.exe
[2013/11/20 13:39:30 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\suesarkis\Desktop\tdsskiller.exe
[2013/11/20 13:33:22 | 001,957,964 | ---- | C] (Farbar) -- C:\Users\suesarkis\Desktop\FRST64.exe
[2013/11/17 11:27:08 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\NativeMessaging
[2013/11/17 11:27:07 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\WhiteListing
[2013/11/15 18:52:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/11/13 21:30:54 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\NovemberChargeFail
[2013/11/04 09:57:30 | 001,859,296 | ---- | C] (Coupons.com Incorporated) -- C:\Program Files (x86)\couponprinter.exe
[2013/10/31 22:05:37 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\TBHostSupport
[2013/10/29 09:40:40 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY
[2013/10/26 19:10:12 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\image001
[2013/10/26 14:19:35 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\RealNetworks
[2013/10/26 14:18:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RealNetworks
[2013/10/26 14:18:54 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2013/10/26 14:18:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2013/10/26 14:17:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2013/10/26 14:17:31 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/10/26 14:16:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2013/10/26 14:16:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/10/26 14:15:42 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\Real
[2013/10/26 14:15:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/10/26 14:14:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2013/10/24 12:16:46 | 000,000,000 | ---D | C] -- C:\Program Files\Uninstaller
[2013/10/24 12:15:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vafmusic9
[2013/10/24 12:15:15 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\Conduit
[2013/10/24 12:14:32 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\CRE
[2013/10/24 12:13:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SearchProtect
[2013/10/24 12:12:26 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\defaulttab
[2013/10/22 09:26:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AOL Toolbar
[2013/10/22 09:26:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Software Update Utility
[2013/10/22 09:25:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AOL Desktop 9.7a
[2013/10/22 08:07:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[10 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/11/20 17:32:08 | 000,000,922 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/20 17:23:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
[2013/11/20 17:12:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/20 16:39:19 | 000,000,512 | ---- | M] () -- C:\Users\suesarkis\Desktop\MBR.dat
[2013/11/20 13:42:05 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\suesarkis\Desktop\aswmbr.exe
[2013/11/20 13:39:35 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\suesarkis\Desktop\tdsskiller.exe
[2013/11/20 13:33:26 | 001,957,964 | ---- | M] (Farbar) -- C:\Users\suesarkis\Desktop\FRST64.exe
[2013/11/20 12:46:06 | 000,001,457 | ---- | M] () -- C:\Users\suesarkis\Desktop\HijackThis.exe - Shortcut.lnk
[2013/11/20 12:18:39 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/20 12:17:40 | 000,000,444 | ---- | M] () -- C:\Windows\tasks\DriverUpdate Startup.job
[2013/11/20 12:17:26 | 000,016,152 | ---- | M] () -- C:\Windows\SysNative\drivers\SWDUMon.sys
[2013/11/20 12:15:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/20 12:15:08 | 000,017,408 | ---- | M] () -- C:\Windows\SysNative\rpcnetp.exe
[2013/11/20 11:30:49 | 000,942,994 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/11/20 11:30:49 | 000,784,932 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/11/20 11:30:49 | 000,158,904 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/11/20 11:23:46 | 000,034,752 | ---- | M] () -- C:\Windows\SysNative\drivers\WPRO_41_2001.sys
[2013/11/20 11:23:36 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWow64\rpcnet.dll
[2013/11/20 11:23:36 | 000,017,408 | ---- | M] () -- C:\Windows\SysWow64\rpcnetp.dll
[2013/11/20 11:23:33 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForsuesarkis.job
[2013/11/20 11:23:30 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/11/20 11:23:29 | 2489,966,591 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/20 11:23:13 | 000,017,408 | ---- | M] () -- C:\Windows\SysWow64\rpcnetp.exe
[2013/11/20 11:23:11 | 000,029,336 | ---- | M] () -- C:\Windows\SysNative\wpbbin.exe
[2013/11/20 08:02:06 | 000,003,723 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
[2013/11/20 08:01:40 | 000,046,368 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2013/11/17 21:30:15 | 000,000,186 | -H-- | M] () -- C:\IPH.PH
[2013/11/16 21:15:24 | 000,178,252 | ---- | M] () -- C:\Users\suesarkis\Documents\=windows-1252Qrangers_May_be_Spreading_=AB_CBS_DC=2Ehtm=
[2013/11/16 12:10:55 | 000,002,279 | ---- | M] () -- C:\Users\suesarkis\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/11/16 12:10:54 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/16 10:54:01 | 000,045,328 | ---- | M] () -- C:\Users\suesarkis\Documents\teewww.nrcc.org-NationalRepublicanCongressionalCommittee.htm
[2013/11/14 21:04:13 | 000,039,287 | ---- | M] () -- C:\Users\suesarkis\Documents\Albertson list.wpd
[2013/11/14 20:42:53 | 000,004,150 | ---- | M] () -- C:\Users\suesarkis\Documents\Vons List.wpd
[2013/11/14 20:38:17 | 000,047,289 | ---- | M] () -- C:\Users\suesarkis\Documents\Ralphs current.wpd
[2013/11/13 21:30:54 | 000,056,513 | ---- | M] () -- C:\Users\suesarkis\Documents\NovemberChargeFail.zip
[2013/11/08 22:10:07 | 000,032,752 | ---- | M] () -- C:\Windows\SysWow64\NTAgent.exe
[2013/11/08 07:55:38 | 007,109,105 | ---- | M] () -- C:\Users\suesarkis\Documents\You_Picked_a_Fine_Time.wmv
[2013/11/06 15:23:38 | 000,028,940 | ---- | M] () -- C:\Users\suesarkis\Documents\1450237_10200924221575685_1328301829_n.jpg
[2013/11/04 09:02:21 | 001,859,296 | ---- | M] (Coupons.com Incorporated) -- C:\Program Files (x86)\couponprinter.exe
[2013/10/31 08:06:58 | 001,177,088 | ---- | M] () -- C:\Users\suesarkis\Documents\AFewMoreCritters.pps
[2013/10/30 12:12:51 | 000,026,120 | ---- | M] () -- C:\Users\suesarkis\Documents\1173823_10200555030254274_1340834328_n
[2013/10/29 09:40:40 | 000,109,052 | ---- | M] () -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY.zip
[2013/10/29 08:27:20 | 000,002,985 | ---- | M] () -- C:\Users\suesarkis\Documents\Mike -Unless I hear back differently.wpd
[2013/10/28 21:03:04 | 000,043,520 | ---- | M] () -- C:\Users\suesarkis\Documents\Mr
[2013/10/28 19:55:31 | 000,043,520 | ---- | M] () -- C:\Users\suesarkis\Documents\Pirouzians case
[2013/10/28 17:49:48 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWow64\rpcnet.exe
[2013/10/27 16:01:02 | 000,371,582 | ---- | M] () -- C:\Users\suesarkis\Documents\GLN1012813GPDOpechee.pdf
[2013/10/27 11:40:33 | 000,061,678 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JPR.{PB
[2013/10/27 11:40:33 | 000,012,358 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JCM.{PB
[2013/10/27 11:26:29 | 356,947,576 | ---- | M] () -- C:\Users\suesarkis\Desktop\Backup.reg
[2013/10/26 19:10:11 | 000,870,099 | ---- | M] () -- C:\Users\suesarkis\Documents\image001.zip
[2013/10/26 14:19:09 | 000,001,264 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013/10/26 14:17:31 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/10/26 14:12:53 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/10/26 11:41:28 | 000,419,648 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/24 13:18:48 | 000,003,505 | ---- | M] () -- C:\Windows\wininit.ini
[2013/10/24 12:12:34 | 000,000,258 | RHS- | M] () -- C:\Users\suesarkis\ntuser.pol
[2013/10/22 09:27:00 | 000,001,130 | ---- | M] () -- C:\Users\suesarkis\Application Data\Microsoft\Internet Explorer\Quick Launch\AOL Desktop 9.7.lnk
[2013/10/22 09:26:55 | 000,001,034 | ---- | M] () -- C:\Users\Public\Desktop\AOL Desktop 9.7.lnk
[2013/10/22 08:07:31 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk
[10 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ]
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/11/20 14:21:10 | 000,000,512 | ---- | C] () -- C:\Users\suesarkis\Desktop\MBR.dat
[2013/11/20 12:46:06 | 000,001,457 | ---- | C] () -- C:\Users\suesarkis\Desktop\HijackThis.exe - Shortcut.lnk
[2013/11/17 21:29:55 | 000,000,186 | -H-- | C] () -- C:\IPH.PH
[2013/11/16 21:15:21 | 000,178,252 | ---- | C] () -- C:\Users\suesarkis\Documents\=windows-1252Qrangers_May_be_Spreading_=AB_CBS_DC=2Ehtm=
[2013/11/16 10:54:00 | 000,045,328 | ---- | C] () -- C:\Users\suesarkis\Documents\teewww.nrcc.org-NationalRepublicanCongressionalCommittee.htm
[2013/11/14 21:04:13 | 000,039,287 | ---- | C] () -- C:\Users\suesarkis\Documents\Albertson list.wpd
[2013/11/14 20:42:53 | 000,004,150 | ---- | C] () -- C:\Users\suesarkis\Documents\Vons List.wpd
[2013/11/14 20:38:17 | 000,047,289 | ---- | C] () -- C:\Users\suesarkis\Documents\Ralphs current.wpd
[2013/11/13 21:30:53 | 000,056,513 | ---- | C] () -- C:\Users\suesarkis\Documents\NovemberChargeFail.zip
[2013/11/08 22:08:57 | 000,032,752 | ---- | C] () -- C:\Windows\SysWow64\NTAgent.exe
[2013/11/08 07:54:51 | 007,109,105 | ---- | C] () -- C:\Users\suesarkis\Documents\You_Picked_a_Fine_Time.wmv
[2013/11/06 15:23:37 | 000,028,940 | ---- | C] () -- C:\Users\suesarkis\Documents\1450237_10200924221575685_1328301829_n.jpg
[2013/10/31 08:05:42 | 001,177,088 | ---- | C] () -- C:\Users\suesarkis\Documents\AFewMoreCritters.pps
[2013/10/30 12:12:50 | 000,026,120 | ---- | C] () -- C:\Users\suesarkis\Documents\1173823_10200555030254274_1340834328_n
[2013/10/29 09:40:39 | 000,109,052 | ---- | C] () -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY.zip
[2013/10/29 08:04:56 | 000,002,985 | ---- | C] () -- C:\Users\suesarkis\Documents\Mike -Unless I hear back differently.wpd
[2013/10/28 21:03:03 | 000,043,520 | ---- | C] () -- C:\Users\suesarkis\Documents\Mr
[2013/10/28 19:55:30 | 000,043,520 | ---- | C] () -- C:\Users\suesarkis\Documents\Pirouzians case
[2013/10/27 16:00:59 | 000,371,582 | ---- | C] () -- C:\Users\suesarkis\Documents\GLN1012813GPDOpechee.pdf
[2013/10/27 11:26:09 | 356,947,576 | ---- | C] () -- C:\Users\suesarkis\Desktop\Backup.reg
[2013/10/26 19:10:06 | 000,870,099 | ---- | C] () -- C:\Users\suesarkis\Documents\image001.zip
[2013/10/26 14:19:07 | 000,001,264 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013/10/26 11:41:14 | 000,419,648 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/24 22:16:31 | 000,386,923 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2013/10/24 14:07:36 | 000,002,058 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[2013/10/24 13:18:26 | 000,003,505 | ---- | C] () -- C:\Windows\wininit.ini
[2013/10/24 12:12:33 | 000,000,258 | RHS- | C] () -- C:\Users\suesarkis\ntuser.pol
[2013/09/28 12:24:11 | 000,003,723 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
[2013/09/25 09:06:38 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\rpcnetp.dll
[2013/09/12 08:49:08 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/07/26 15:26:30 | 000,000,006 | ---- | C] () -- C:\Windows\msoffice.ini
[2013/07/16 22:05:15 | 000,007,607 | ---- | C] () -- C:\Users\suesarkis\AppData\Local\resmon.resmoncfg
[2013/06/03 14:39:25 | 000,598,384 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin
[2013/06/03 14:39:15 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/06/03 14:39:13 | 000,754,652 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin
[2013/05/02 11:48:49 | 000,061,678 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JPR.{PB
[2013/05/02 11:48:49 | 000,012,358 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JCM.{PB
[2013/05/02 11:17:48 | 000,000,264 | ---- | C] () -- C:\Windows\SysWow64\BDEMERGE.INI
[2013/04/14 12:49:52 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat
[2013/04/14 12:03:16 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\rpcnetp.exe
[2012/08/03 14:40:09 | 000,959,336 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/07/26 00:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012/07/26 00:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012/07/25 23:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012/07/25 17:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012/07/25 12:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012/07/25 12:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012/07/25 12:22:54 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2012/07/25 12:22:54 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2012/07/25 12:22:54 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2012/06/02 06:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2012/04/20 13:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2012/10/31 17:24:30 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/08/01 22:28:20 | 019,758,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/08/01 21:08:10 | 017,561,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/25 19:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/25 19:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/25 19:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/08/22 08:34:08 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG
[2013/07/13 11:11:20 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG2013
[2013/10/24 17:19:23 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\defaulttab
[2013/09/28 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\DriverCure
[2013/09/28 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\SpeedMaxPc
[2013/04/14 12:11:50 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Synaptics
[2013/07/13 11:10:26 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\TuneUp Software

========== Purity Check ==========

========== Custom Scans ==========

< c:\windows\*. /SL >
[2012/07/25 23:22:10 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013/04/17 11:07:14 | 000,000,918 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2013/04/17 11:07:17 | 000,000,922 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2013/04/30 15:30:29 | 000,000,366 | ---- | C] () -- C:\Windows\Tasks\HPCeeScheduleForsuesarkis.job
[2013/09/11 11:43:51 | 000,000,444 | ---- | C] () -- C:\Windows\Tasks\DriverUpdate Startup.job
[2013/09/20 13:18:39 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< c:\windows\*. /RP >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013/05/08 11:26:45 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Adobe
[2013/09/04 08:59:35 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AOL
[2013/08/22 08:34:08 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG
[2013/07/13 11:11:20 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG2013
[2013/05/17 15:28:44 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Corel
[2013/10/24 17:19:23 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\defaulttab
[2013/09/28 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\DriverCure
[2013/04/29 14:43:00 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Hewlett-Packard
[2013/04/29 14:55:36 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\hpqlog
[2013/06/03 18:37:54 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Intel
[2012/10/31 17:33:17 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Macromedia
[2013/07/13 12:56:16 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Malwarebytes
[2013/10/28 19:55:38 | 000,000,000 | --SD | M] -- C:\Users\suesarkis\AppData\Roaming\Microsoft
[2013/10/22 09:21:36 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Mozilla
[2013/10/26 14:19:22 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Real
[2013/10/26 14:19:35 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\RealNetworks
[2013/09/28 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\SpeedMaxPc
[2013/04/14 12:11:50 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Synaptics
[2013/07/13 11:10:26 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\TuneUp Software
[2013/08/06 07:32:32 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\vlc

< %APPDATA%\*.exe /s >
[2012/10/31 17:33:14 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\suesarkis\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2012/06/12 12:33:12 | 000,470,528 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\aolToolbarData\install\sqlite3.exe

< %SYSTEMDRIVE%\*.exe >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[10 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\drivers\*.sys /90 >

< End of report >

Do you want the EXTRAS.txt ????

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-11-20 14:20:32
-----------------------------
14:20:32.678 OS Version: Windows x64 6.2.9200
14:20:32.678 Number of processors: 4 586 0x3A09
14:20:32.678 ComputerName: SUESBABY UserName:
14:20:32.678 Initialze error 1
14:20:48.320 AVAST engine defs: 13111900
14:20:51.836 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000042
14:20:51.836 Disk 0 Vendor: Hitachi_HTS545050A7E380 GG2OA7A0 Size: 476940MB BusType: 8
14:20:51.836 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000043
14:20:51.836 Disk 1 Vendor: Intel___ 1.0. Size: 8192MB BusType: 8
14:20:51.851 Disk 0 MBR read successfully
14:20:51.851 Disk 0 MBR scan
14:20:51.867 Disk 0 unknown MBR code
14:20:51.867 Disk 0 Partition 1 00 EE GPT 2097151 MB offset 1
14:20:51.867 Disk 0 scanning C:\Windows\system32\drivers
14:20:51.867 Service scanning
14:20:52.586 Modules scanning
14:20:52.586 Disk 0 trace - called modules:
14:20:52.617 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys storport.sys hal.dll iaStorA.sys
14:20:52.632 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800aac1060]
14:20:52.648 3 CLASSPNP.SYS[fffff88000a74e0a] -> nt!IofCallDriver -> [0xfffffa80093e2b10]
14:20:52.664 5 hpdskflt.sys[fffff88001fdd379] -> nt!IofCallDriver -> \Device\00000042[0xfffffa80091ca060]
14:20:52.664 AVAST engine scan C:\Windows
14:20:52.679 AVAST engine scan C:\Windows\system32
14:20:52.679 AVAST engine scan C:\Windows\system32\drivers
14:20:52.695 AVAST engine scan C:\Users\suesarkis
14:20:52.695 AVAST engine scan C:\ProgramData
14:20:52.695 Scan finished successfully
14:21:10.352 Disk 0 MBR has been saved successfully to "C:\Users\suesarkis\Desktop\MBR.dat"
14:21:10.352 The log file has been saved successfully to "C:\Users\suesarkis\Desktop\aswMBR.txt"
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-11-20 14:20:32
-----------------------------
14:20:32.678 OS Version: Windows x64 6.2.9200
14:20:32.678 Number of processors: 4 586 0x3A09
14:20:32.678 ComputerName: SUESBABY UserName:
14:20:32.678 Initialze error 1
14:20:48.320 AVAST engine defs: 13111900
14:20:51.836 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000042
14:20:51.836 Disk 0 Vendor: Hitachi_HTS545050A7E380 GG2OA7A0 Size: 476940MB BusType: 8
14:20:51.836 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000043
14:20:51.836 Disk 1 Vendor: Intel___ 1.0. Size: 8192MB BusType: 8
14:20:51.851 Disk 0 MBR read successfully
14:20:51.851 Disk 0 MBR scan
14:20:51.867 Disk 0 unknown MBR code
14:20:51.867 Disk 0 Partition 1 00 EE GPT 2097151 MB offset 1
14:20:51.867 Disk 0 scanning C:\Windows\system32\drivers
14:20:51.867 Service scanning
14:20:52.586 Modules scanning
14:20:52.586 Disk 0 trace - called modules:
14:20:52.617 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys storport.sys hal.dll iaStorA.sys
14:20:52.632 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800aac1060]
14:20:52.648 3 CLASSPNP.SYS[fffff88000a74e0a] -> nt!IofCallDriver -> [0xfffffa80093e2b10]
14:20:52.664 5 hpdskflt.sys[fffff88001fdd379] -> nt!IofCallDriver -> \Device\00000042[0xfffffa80091ca060]
14:20:52.664 AVAST engine scan C:\Windows
14:20:52.679 AVAST engine scan C:\Windows\system32
14:20:52.679 AVAST engine scan C:\Windows\system32\drivers
14:20:52.695 AVAST engine scan C:\Users\suesarkis
14:20:52.695 AVAST engine scan C:\ProgramData
14:20:52.695 Scan finished successfully
14:21:10.352 Disk 0 MBR has been saved successfully to "C:\Users\suesarkis\Desktop\MBR.dat"
14:21:10.352 The log file has been saved successfully to "C:\Users\suesarkis\Desktop\aswMBR.txt"
16:39:18.771 Disk 0 MBR has been saved successfully to "C:\Users\suesarkis\Desktop\MBR.dat"
16:39:19.003 The log file has been saved successfully to "C:\Users\suesarkis\Desktop\aswMBR.txt"

#4
Essexboy

Posted 21 November 2013 - 04:06 PM

GeekU Moderator

Retired Staff
69,964 posts

OK lets get you tidied up

After this run can you let me know what problems remain

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following

:Commands
[CREATERESTOREPOINT]

:OTL
SRV - [2013/11/06 07:28:31 | 000,166,352 | ---- | M] (APN LLC.) [Auto | Running] -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe -- (APNMCP)
IE:64bit: - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPNTDF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.coupons.com/
IE - HKLM\..\URLSearchHook: {845cab51-d8d2-472f-8bd9-2b44642d97c2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {E33F5319-BF45-4B58-91F5-608FF08AFD51}
IE - HKLM\..\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}: "URL" = http://search.ask.co...&l=dis&o=HPNTDF
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://search.coupon...q={searchTerms}
IE - HKCU\..\SearchScopes\{D7A59045-AE04-4DD9-82FF-0753CBC8C10C}: "URL" = http://isearch.shopa...q={searchTerms}
IE - HKCU\..\SearchScopes\970848F068E64C87A04FD32509D0F57D: "URL" = http://search.condui...6422161828&UM=2
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:62082;https=127.0.0.1:62082
FF - HKCU\Software\MozillaPlugins\pokki.com/PokkiDownloadHelper: C:\Users\suesarkis\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}: C:\Program Files (x86)\Coupons.com CouponBar\firefox\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}\Coupons.com.xpi [2013/07/15 08:54:55 | 000,185,164 | ---- | M] ()
[2013/11/13 15:11:33 | 000,000,000 | ---D | M] (InternetHelper3.1) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}
[2013/11/18 18:26:17 | 000,000,000 | ---D | M] (WhiteSmoke New) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}
[2013/10/24 12:13:13 | 000,000,000 | ---D | M] (Vafmusic9) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}
[2013/10/24 12:12:26 | 000,044,294 | ---- | M] () (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\[email protected]
[2013/10/27 12:57:33 | 000,002,273 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\searchplugins\bingp.xml
O2:64bit: - BHO: (Ask Toolbar) - {41525333-2D56-3700-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport_x64.dll (APN LLC.)
O2 - BHO: (Ask Toolbar) - {41525333-2D56-3700-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport.dll (APN LLC.)
O2 - BHO: (Vafmusic9 Toolbar) - {845cab51-d8d2-472f-8bd9-2b44642d97c2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
O2 - BHO: (TBSB07898 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {41525333-2D56-3700-76A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport.dll (APN LLC.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Vafmusic9 Toolbar) - {845cab51-d8d2-472f-8bd9-2b44642d97c2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Coupons.com CouponBar) - {8660E5B3-6C41-44DE-8503-98D99BBECD41} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Vafmusic9 Toolbar) - {845CAB51-D8D2-472F-8BD9-2B44642D97C2} - C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Coupons.com CouponBar) - {8660E5B3-6C41-44DE-8503-98D99BBECD41} - C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll ()
O4 - HKCU..\Run: [BackgroundContainer] C:\Users\suesarkis\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll (Conduit Ltd.)
O4 - HKCU..\Run: [TBHostSupport] C:\Users\suesarkis\AppData\Local\TBHostSupport\TBHostSupport.dll (Conduit Ltd.)
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL) - File not found
O20 - AppInit_DLLs: (c:\progra~2\optimi~1\optpro~1.dll) - File not found
[2013/11/17 11:27:08 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\NativeMessaging
[2013/11/17 11:27:07 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\WhiteListing
[2013/11/04 09:57:30 | 001,859,296 | ---- | C] (Coupons.com Incorporated) -- C:\Program Files (x86)\couponprinter.exe
[2013/10/31 22:05:37 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\TBHostSupport
[2013/10/24 12:16:46 | 000,000,000 | ---D | C] -- C:\Program Files\Uninstaller
[2013/10/24 12:15:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vafmusic9
[2013/10/24 12:15:15 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\Conduit
[2013/10/24 12:14:32 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Local\CRE
[2013/10/24 12:13:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SearchProtect
[2013/10/24 12:12:26 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\defaulttab
[2013/10/22 09:26:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Software Update Utility
[2013/10/24 17:19:23 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\defaulttab
[2013/09/28 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\DriverCure
[2013/09/28 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\SpeedMaxPc
[2013/09/11 11:43:51 | 000,000,444 | ---- | C] () -- C:\Windows\Tasks\DriverUpdate Startup.job
[2013/10/24 17:19:23 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\defaulttab
[2013/09/28 09:28:46 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\DriverCure

:Files
C:\Users\suesarkis\AppData\Local\Pokki
C:\Program Files (x86)\AskPartnerNetwork
C:\Program Files (x86)\Vafmusic9
C:\Program Files (x86)\Coupons.com CouponBar
C:\Users\suesarkis\AppData\Local\Conduit
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm

:Commands
[resethosts]
[emptytemp]
[Reboot]

Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done
Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

THEN

Please download Junkware Removal Tool to your desktop.

Right-mouse click JRT.exe and select "Run as Administrator" the tool will open and start scanning your system
please be patient as this can take a while to complete depending on your system's specifications
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
post the contents of JRT.txt into your next message.

#5
sweetsuzee

Posted 21 November 2013 - 05:31 PM

Member

Topic Starter
Member
55 posts

Essexboy - I might have messed up in that I am not sure if this log is the one you wanted. I'm not sure how I got this one but I did run a Quick Scan which I will follow with that one. Without the Pokki I'm having difficulty maneuvering since I'm truly not a windows 8 fan but that's okay for now. Things are working a little better but my browser keeps hanging up whereby I have had to shut down via Task manager. It is not as bad as it was and it is truly too early to tell. Anyway, here's the 1 log -

All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Service APNMCP stopped successfully!
Service APNMCP deleted successfully!
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{845cab51-d8d2-472f-8bd9-2b44642d97c2} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\ deleted successfully.
C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll moved successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827}\ not found.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D7A59045-AE04-4DD9-82FF-0753CBC8C10C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D7A59045-AE04-4DD9-82FF-0753CBC8C10C}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\ deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyOverride| /E : value set successfully!
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer| /E : value set successfully!
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\pokki.com/PokkiDownloadHelper\ deleted successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}\ not found.
File C:\Program Files (x86)\Coupons.com CouponBar\firefox\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D}\Coupons.com.xpi [2013/07/15 08:54:55 | 000,185,164 | ---- | M] not found.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Plugins folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\modules folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\META-INF folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\lib folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\defaults\preferences folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\defaults folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\components\mam folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\components folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\mam\content folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\mam folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\sl folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\lib\jquery.jscrollpane folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\lib\jquery.alerts\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\lib\jquery.alerts folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\lib folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\core folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\WEATHER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\WEATHER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\WEATHER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\TWITTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\TWITTER\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\TWITTER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\view\style\rsx folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\view\style folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\view\script folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\view folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\Css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH\buildSettings folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\SEARCH folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\RADIO_PLAYER\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\RADIO_PLAYER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\RADIO_PLAYER\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\RADIO_PLAYER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\RADIO_PLAYER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\PRICE_GONG\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\PRICE_GONG\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\PRICE_GONG\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\PRICE_GONG\agreement folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\PRICE_GONG folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\Optimizer\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\Optimizer folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\NOTIFICATION\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\NOTIFICATION\images\light folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\NOTIFICATION\images\dark folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\NOTIFICATION\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\NOTIFICATION\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\NOTIFICATION folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\MULTI_RSS\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\MULTI_RSS\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\MULTI_RSS\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\MULTI_RSS\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\MULTI_RSS folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\HIGHLIGHTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\HIGHLIGHTER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\HIGHLIGHTER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\EMAIL_NOTIFIER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\EMAIL_NOTIFIER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\EMAIL_NOTIFIER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\APPLICATION_BUTTON\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\APPLICATION_BUTTON\Js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa\APPLICATION_BUTTON folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\wa folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\menu\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\menu\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\menu\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\menu folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\gf\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\gf\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\gf\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\gf folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\gadgetFrame folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\dlg\ftd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\dlg\ftd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui\dlg folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ui folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\sp\spsd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\sp\spsd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\sp\spbd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\sp\spbd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\sp\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\sp folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\options\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\options\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\options\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\options\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\options folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\msd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\api folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ac\res folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ac\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ac\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\ac folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\aboutBox\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\aboutBox\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al\aboutBox folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb\al folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\tb folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\logic\uninstall\dialog\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\logic\uninstall\dialog\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\logic\uninstall\dialog\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\logic\uninstall\dialog folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\logic\uninstall folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content\logic folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663\content folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome\CT3289663 folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3}\Chrome folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{07cbf788-1359-421b-a4e3-5a8d041b90a3} folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Plugins folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\modules folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\META-INF folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\lib folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\defaults\preferences folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\defaults folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\components\mam folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\components folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\mam\content folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\mam folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\sl folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\lib\jquery.jscrollpane folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\lib\jquery.alerts\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\lib\jquery.alerts folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\lib folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\core folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\WEATHER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\WEATHER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\WEATHER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\TWITTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\TWITTER\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\TWITTER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\view\style\rsx folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\view\style folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\view\script folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\view folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\Css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH\buildSettings folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\SEARCH folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\RADIO_PLAYER\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\RADIO_PLAYER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\RADIO_PLAYER\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\RADIO_PLAYER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\RADIO_PLAYER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\PRICE_GONG\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\PRICE_GONG\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\PRICE_GONG\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\PRICE_GONG\agreement folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\PRICE_GONG folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\Optimizer\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\Optimizer folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\NOTIFICATION\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\NOTIFICATION\images\light folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\NOTIFICATION\images\dark folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\NOTIFICATION\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\NOTIFICATION\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\NOTIFICATION folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\MULTI_RSS\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\MULTI_RSS\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\MULTI_RSS\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\MULTI_RSS\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\MULTI_RSS folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\HIGHLIGHTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\HIGHLIGHTER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\HIGHLIGHTER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\EMAIL_NOTIFIER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\EMAIL_NOTIFIER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\EMAIL_NOTIFIER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\APPLICATION_BUTTON\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\APPLICATION_BUTTON\Js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa\APPLICATION_BUTTON folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\wa folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\menu\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\menu\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\menu\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\menu folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\gf\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\gf\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\gf\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\gf folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\gadgetFrame folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\dlg\ftd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\dlg\ftd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui\dlg folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ui folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\sp\spsd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\sp\spsd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\sp\spbd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\sp\spbd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\sp\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\sp folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\options\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\options\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\options\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\options\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\options folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\msd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\api folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ac\res folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ac\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ac\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\ac folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\aboutBox\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\aboutBox\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al\aboutBox folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb\al folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\tb folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\logic\uninstall\dialog\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\logic\uninstall\dialog\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\logic\uninstall\dialog\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\logic\uninstall\dialog folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\logic\uninstall folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content\logic folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847\content folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome\CT3289847 folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\Chrome folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a} folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Plugins folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\modules folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\META-INF folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\lib folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\defaults\preferences folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\defaults folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\components folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\sl folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\lib\jquery.jscrollpane folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\lib\jquery.alerts\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\lib\jquery.alerts folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\lib folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\core folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\WEATHER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\WEATHER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\WEATHER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\TWITTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\TWITTER\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\TWITTER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\view\style\rsx folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\view\style folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\view\script folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\view folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\Css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH\buildSettings folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\SEARCH folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\RADIO_PLAYER\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\RADIO_PLAYER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\RADIO_PLAYER\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\RADIO_PLAYER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\RADIO_PLAYER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\PRICE_GONG\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\PRICE_GONG\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\PRICE_GONG\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\PRICE_GONG\agreement folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\PRICE_GONG folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\Optimizer\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\Optimizer folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\NOTIFICATION\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\NOTIFICATION\images\light folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\NOTIFICATION\images\dark folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\NOTIFICATION\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\NOTIFICATION\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\NOTIFICATION folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\MULTI_RSS\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\MULTI_RSS\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\MULTI_RSS\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\MULTI_RSS\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\MULTI_RSS folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\HIGHLIGHTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\HIGHLIGHTER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\HIGHLIGHTER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\EMAIL_NOTIFIER\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\EMAIL_NOTIFIER\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\EMAIL_NOTIFIER folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\APPLICATION_BUTTON\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\APPLICATION_BUTTON\Js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa\APPLICATION_BUTTON folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\wa folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\menu\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\menu\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\menu\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\menu folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\gf\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\gf\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\gf\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\gf folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\gadgetFrame folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\dlg\ftd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\dlg\ftd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui\dlg folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ui folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\sp\spsd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\sp\spsd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\sp\spbd\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\sp\spbd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\sp\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\sp folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\options\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\options\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\options\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\options\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\options folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\msd folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\api folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ac\res folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ac\img folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ac\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\ac folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\aboutBox\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\aboutBox\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al\aboutBox folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb\al folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\tb folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\logic\uninstall\dialog\js folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\logic\uninstall\dialog\images folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\logic\uninstall\dialog\css folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\logic\uninstall\dialog folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\logic\uninstall folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content\logic folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002\content folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome\CT3303002 folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\Chrome folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{845cab51-d8d2-472f-8bd9-2b44642d97c2} folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\[email protected] moved successfully.
C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\searchplugins\bingp.xml moved successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41525333-2D56-3700-76A7-7A786E7484D7}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41525333-2D56-3700-76A7-7A786E7484D7}\ deleted successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport_x64.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{41525333-2D56-3700-76A7-7A786E7484D7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41525333-2D56-3700-76A7-7A786E7484D7}\ deleted successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Passport.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\ not found.
File C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ deleted successfully.
C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{41525333-2D56-3700-76A7-7A786E7484D7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{41525333-2D56-3700-76A7-7A786E7484D7}\ not found.
File V7\Passport.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Unable to delete registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ .
File move failed. C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll scheduled to be moved on reboot.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{845cab51-d8d2-472f-8bd9-2b44642d97c2} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{845cab51-d8d2-472f-8bd9-2b44642d97c2}\ not found.
File C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8660E5B3-6C41-44DE-8503-98D99BBECD41} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8660E5B3-6C41-44DE-8503-98D99BBECD41}\ deleted successfully.
File C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{845CAB51-D8D2-472F-8BD9-2B44642D97C2} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{845CAB51-D8D2-472F-8BD9-2B44642D97C2}\ not found.
File C:\Program Files (x86)\Vafmusic9\prxtbVafm.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{8660E5B3-6C41-44DE-8503-98D99BBECD41} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8660E5B3-6C41-44DE-8503-98D99BBECD41}\ not found.
File C:\Program Files (x86)\Coupons.com CouponBar\tbcore3.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\BackgroundContainer deleted successfully.
C:\Users\suesarkis\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\TBHostSupport deleted successfully.
C:\Users\suesarkis\AppData\Local\TBHostSupport\TBHostSupport.dll moved successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:c:\progra~2\optimi~1\optpro~1.dll deleted successfully.
C:\Users\suesarkis\AppData\Local\NativeMessaging\CT3303002\1_0_0_4 folder moved successfully.
C:\Users\suesarkis\AppData\Local\NativeMessaging\CT3303002 folder moved successfully.
C:\Users\suesarkis\AppData\Local\NativeMessaging folder moved successfully.
C:\Users\suesarkis\AppData\Local\WhiteListing folder moved successfully.
C:\Program Files (x86)\couponprinter.exe moved successfully.
C:\Users\suesarkis\AppData\Local\TBHostSupport folder moved successfully.
C:\Program Files\Uninstaller folder moved successfully.
C:\Program Files (x86)\Vafmusic9 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Conduit\BackgroundContainer folder moved successfully.
C:\Users\suesarkis\AppData\Local\Conduit folder moved successfully.
C:\Users\suesarkis\AppData\Local\CRE folder moved successfully.
C:\Program Files (x86)\SearchProtect folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\defaulttab folder moved successfully.
C:\Program Files (x86)\Common Files\Software Update Utility folder moved successfully.
Folder C:\Users\suesarkis\AppData\Roaming\defaulttab\ not found.
C:\Users\suesarkis\AppData\Roaming\DriverCure folder moved successfully.
C:\Users\suesarkis\AppData\Roaming\SpeedMaxPc\SpeedMaxPc folder moved successfully.
C:\Windows\Tasks\DriverUpdate Startup.job moved successfully.
Folder C:\Users\suesarkis\AppData\Roaming\defaulttab\ not found.
Folder C:\Users\suesarkis\AppData\Roaming\DriverCure\ not found.
========== FILES ==========
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications-websheet\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications-websheet\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications-websheet folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications\User StyleSheets folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications\Local Storage folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications\databases\file__0 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications\databases folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\notifications folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1-websheet folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\User StyleSheets folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Local Storage folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\f22abfeae27a67446927d078890381efc546d3e1 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\Default\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\Default\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\Default folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8-websheet\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8-websheet\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8-websheet folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\User StyleSheets folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\Local Storage folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\a8a104e3c52413a90b17bc1de0627f77b9baf9a8 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1-websheet\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1-websheet\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1-websheet folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1\User StyleSheets folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1\Local Storage folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1\Extension State folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1\Cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData\15521a10f8daaba5ae582ce1aa3c73688cb827b1 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\UserData folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\PokkiIconCache\persistant folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\PokkiIconCache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1\f59ac6c5bf4d5639931b04c7508e65a452e322db\js\lib folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1\f59ac6c5bf4d5639931b04c7508e65a452e322db\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1\f59ac6c5bf4d5639931b04c7508e65a452e322db\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1\f59ac6c5bf4d5639931b04c7508e65a452e322db\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1\f59ac6c5bf4d5639931b04c7508e65a452e322db folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\f22abfeae27a67446927d078890381efc546d3e1 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\1c863e207a08f0dfd73f53774253c0ccbf817bf5\sound folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\1c863e207a08f0dfd73f53774253c0ccbf817bf5\lib\OAuth folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\1c863e207a08f0dfd73f53774253c0ccbf817bf5\lib folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\1c863e207a08f0dfd73f53774253c0ccbf817bf5\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\1c863e207a08f0dfd73f53774253c0ccbf817bf5\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\1c863e207a08f0dfd73f53774253c0ccbf817bf5\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8\1c863e207a08f0dfd73f53774253c0ccbf817bf5 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\a8a104e3c52413a90b17bc1de0627f77b9baf9a8 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg\store\data\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg\store\data\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg\store\data\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg\store\data folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg\store folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg\kilnbfiles folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg\cache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd\.hg folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1\ae30fdf1e089c94c99727aa241c4c40cf58853cd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies\15521a10f8daaba5ae582ce1aa3c73688cb827b1 folder moved successfully.
Folder move failed. C:\Users\suesarkis\AppData\Local\Pokki\Pokkies scheduled to be moved on reboot.
C:\Users\suesarkis\AppData\Local\Pokki\IconCache\persistent folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\IconCache folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\zh-CN folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\sv folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\ru folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\pt-BR folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\no folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\it folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\fr folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\fi folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\es-419 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\es folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\en-US folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\de folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages\da folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\languages folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\svg folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\styles\themes folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\styles folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts\sidebar folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts\platform\views folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts\platform\templates folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts\platform\models folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts\platform\controllers folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts\platform folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts\lib folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\scripts folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\images\oem\lenovo folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\images\oem folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\images\dark folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets\build folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications\assets folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps\notifications folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\sysapps folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\Microsoft.VC90.CRT folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\inspector\Images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\inspector folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\windowshadow\inactive folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\windowshadow\active folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\windowshadow folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\websheetshadow\inactive folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\websheetshadow\active folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\websheetshadow folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\fullscreen folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames\frame folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine\frames folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Engine folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Download Helper folder moved successfully.
Folder move failed. C:\Users\suesarkis\AppData\Local\Pokki scheduled to be moved on reboot.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\ARS3-V7 folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\program files\VNT folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\program files\AskPartnerNetwork\Toolbar\{PartnerID} folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\program files\AskPartnerNetwork\Toolbar\Updater\{PartnerID} folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\program files\AskPartnerNetwork\Toolbar\Updater folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\program files\AskPartnerNetwork\Toolbar folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\program files\AskPartnerNetwork folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\program files folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\common appdata\AskPartnerNetwork\Toolbar\{PartnerID}\CRX\{Crx_Version} folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\common appdata\AskPartnerNetwork\Toolbar\{PartnerID}\CRX folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\common appdata\AskPartnerNetwork\Toolbar\{PartnerID} folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\common appdata\AskPartnerNetwork\Toolbar folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\common appdata\AskPartnerNetwork folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\common appdata folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\appdata\Mozilla\Firefox\Profiles\{DefaultProfilesFolder}\extensions folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\appdata\Mozilla\Firefox\Profiles\{DefaultProfilesFolder} folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\appdata\Mozilla\Firefox\Profiles folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\appdata\Mozilla\Firefox folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\appdata\Mozilla folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source\appdata folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\Source folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7\CRX folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ARS3-V7 folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork\Toolbar folder moved successfully.
C:\Program Files (x86)\AskPartnerNetwork folder moved successfully.
File\Folder C:\Program Files (x86)\Vafmusic9 not found.
C:\Program Files (x86)\Coupons.com CouponBar\Uninstall folder moved successfully.
C:\Program Files (x86)\Coupons.com CouponBar\firefox\{1C43BAF1-00C2-40A8-A09E-F84CFD79546D} folder moved successfully.
C:\Program Files (x86)\Coupons.com CouponBar\firefox folder moved successfully.
C:\Program Files (x86)\Coupons.com CouponBar\chrome\coupons.com.crx folder moved successfully.
C:\Program Files (x86)\Coupons.com CouponBar\chrome folder moved successfully.
C:\Program Files (x86)\Coupons.com CouponBar folder moved successfully.
File\Folder C:\Users\suesarkis\AppData\Local\Conduit not found.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\_locales\en folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\_locales folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\WhiteListing folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\toolbarImages folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\TBHostSupport folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\sl folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\lib\jquery.jscrollpane folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\lib\jquery.alerts\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\lib\jquery.alerts folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\lib folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\core folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\WEATHER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\WEATHER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\WEATHER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\TWITTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\TWITTER\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\TWITTER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\view\style\rsx folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\view\style folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\view\script folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\view folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\Css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH\buildSettings folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\SEARCH folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\RADIO_PLAYER\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\RADIO_PLAYER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\RADIO_PLAYER\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\RADIO_PLAYER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\RADIO_PLAYER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\PRICE_GONG\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\PRICE_GONG\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\PRICE_GONG\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\PRICE_GONG\agreement folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\PRICE_GONG folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\Optimizer\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\Optimizer folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\NOTIFICATION\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\NOTIFICATION\images\light folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\NOTIFICATION\images\dark folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\NOTIFICATION\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\NOTIFICATION\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\NOTIFICATION folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\MULTI_RSS\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\MULTI_RSS\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\MULTI_RSS\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\MULTI_RSS\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\MULTI_RSS folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\HIGHLIGHTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\HIGHLIGHTER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\HIGHLIGHTER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\EMAIL_NOTIFIER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\EMAIL_NOTIFIER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\EMAIL_NOTIFIER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\APPLICATION_BUTTON\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\APPLICATION_BUTTON\Js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa\APPLICATION_BUTTON folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\wa folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\menu\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\menu\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\menu\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\menu folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\gf\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\gf\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\gf\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\gf folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\gadgetFrame folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\dlg\ftd\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\dlg\ftd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui\dlg folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ui folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\sp\spsd\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\sp\spsd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\sp\spbd\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\sp\spbd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\sp\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\sp folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\options\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\options\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\options\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\options\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\options folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\msd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\api folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ac\res folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ac\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ac\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\ac folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\aboutBox\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\aboutBox\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al\aboutBox folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb\al folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\tb folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\plugins folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\NewTabPages\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\NewTabPages\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\NewTabPages\html folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\NewTabPages\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\NewTabPages\API folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\NewTabPages folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search\html folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\Search folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\plugins folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\nativeMessaging folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\mam\scripts\contentScripts folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\mam\scripts folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\mam folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\js\toolbarAPI folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\js\tabs\back folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\js\tabs folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\js\options folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\js\lib folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.5.510_0 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\_locales\en folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\_locales folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\WhiteListing folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\toolbarImages folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\TBHostSupport folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\sl folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\lib\jquery.jscrollpane folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\lib\jquery.alerts\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\lib\jquery.alerts folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\lib folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\core folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\WEATHER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\WEATHER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\WEATHER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\TWITTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\TWITTER\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\TWITTER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\view\style\rsx folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\view\style folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\view\script folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\view folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\Css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH\buildSettings folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\SEARCH folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\RADIO_PLAYER\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\RADIO_PLAYER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\RADIO_PLAYER\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\RADIO_PLAYER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\RADIO_PLAYER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\PRICE_GONG\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\PRICE_GONG\css\custom-theme folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\PRICE_GONG\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\PRICE_GONG\agreement folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\PRICE_GONG folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\Optimizer\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\Optimizer folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\NOTIFICATION\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\NOTIFICATION\images\light folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\NOTIFICATION\images\dark folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\NOTIFICATION\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\NOTIFICATION\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\NOTIFICATION folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\MULTI_RSS\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\MULTI_RSS\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\MULTI_RSS\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\MULTI_RSS\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\MULTI_RSS folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\HIGHLIGHTER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\HIGHLIGHTER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\HIGHLIGHTER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\EMAIL_NOTIFIER\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\EMAIL_NOTIFIER\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\EMAIL_NOTIFIER folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\APPLICATION_BUTTON\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\APPLICATION_BUTTON\Js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa\APPLICATION_BUTTON folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\wa folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\menu\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\menu\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\menu\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\menu folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\gf\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\gf\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\gf\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\gf folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\gadgetFrame folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\dlg\ftd\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\dlg\ftd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui\dlg folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ui folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\sp\spsd\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\sp\spsd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\sp\spbd\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\sp\spbd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\sp\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\sp folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\options\js\resources folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\options\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\options\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\options\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\options folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\msd folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\api folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ac\res folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ac\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ac\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\ac folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\aboutBox\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\aboutBox\images folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al\aboutBox folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb\al folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\tb folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\plugins folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\NewTabPages\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\NewTabPages\img folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\NewTabPages\html folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\NewTabPages\css folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\NewTabPages\API folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\NewTabPages folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search\html folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\Search folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\plugins folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\nativeMessaging folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\mam\scripts\contentScripts folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\mam\scripts folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\mam folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\js\toolbarAPI folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\js\tabs\back folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\js\tabs folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\js\options folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\js\lib folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0\js folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm\10.22.3.518_0 folder moved successfully.
C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cepjofekolhpdankoembdgfbpehkfkjm folder moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 1426 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 343 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56466 bytes

User: Default User

User: Public

User: suesarkis
->Temp folder emptied: 123816040 bytes
->Temporary Internet Files folder emptied: 5443264 bytes
->Java cache emptied: 798404 bytes
->FireFox cache emptied: 21403292 bytes
->Google Chrome cache emptied: 44724084 bytes
->Flash cache emptied: 60313 bytes

User: TEMP

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 2194080 bytes
%systemroot%\System32 (64bit) .tmp files removed: 94656 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1867019 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 52084 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 191.00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 11212013_143644

Files\Folders moved on Reboot...
C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki\Pokkies folder moved successfully.
C:\Users\suesarkis\AppData\Local\Pokki folder moved successfully.
C:\Users\suesarkis\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\suesarkis\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
C:\Windows\SysNative\WPRO_41_2001woem.tmp moved successfully.
File move failed. C:\Windows\temp\avg_secure_search.log scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#6
sweetsuzee

Posted 21 November 2013 - 05:35 PM

Member

Topic Starter
Member
55 posts

And here's the Quick Scan log - now I'll go run the Junkware Removal Tool -

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.90 Gb Total Physical Memory | 5.91 Gb Available Physical Memory | 74.80% Memory free
9.09 Gb Paging File | 6.64 Gb Available in Paging File | 73.13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 445.79 Gb Total Space | 371.95 Gb Free Space | 83.43% Space Free | Partition Type: NTFS
Drive D: | 19.19 Gb Total Space | 2.42 Gb Free Space | 12.60% Space Free | Partition Type: NTFS
Drive E: | 29.94 Gb Total Space | 4.54 Gb Free Space | 15.18% Space Free | Partition Type: FAT32
Drive F: | 1.92 Gb Total Space | 1.76 Gb Free Space | 91.72% Space Free | Partition Type: FAT

Computer Name: SUESBABY | User Name: suesarkis | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/20 17:23:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
PRC - [2013/11/20 08:01:40 | 001,643,696 | ---- | M] (AVG Secure Search) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe
PRC - [2013/11/20 08:01:40 | 000,161,968 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\loggingserver.exe
PRC - [2013/10/28 17:49:48 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWOW64\rpcnet.exe
PRC - [2013/10/26 14:17:19 | 000,295,512 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2013/10/08 13:16:01 | 001,053,696 | ---- | M] (Microsoft) -- C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_1.7.0.30918_x86__8wekyb3d8bbwe\Solitaire.exe
PRC - [2013/10/07 17:27:35 | 000,237,960 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
PRC - [2013/09/07 09:20:56 | 000,071,224 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\waol.exe
PRC - [2013/09/07 09:20:48 | 000,045,624 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\shellmon.exe
PRC - [2013/09/06 19:53:15 | 002,368,568 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\AOLBrowser\aolbrowser.exe
PRC - [2013/08/14 14:19:24 | 000,039,056 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/07/23 18:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2013/07/19 10:07:36 | 034,072,896 | ---- | M] (SlimWare Utilities, Inc.) -- C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
PRC - [2013/07/04 14:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
PRC - [2013/06/03 17:46:06 | 000,015,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/05/20 20:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe
PRC - [2013/05/11 02:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/29 14:54:08 | 000,193,576 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\irstrtsv.exe
PRC - [2012/11/06 08:18:50 | 001,140,672 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2012/11/06 08:18:34 | 001,120,192 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2012/11/05 15:14:34 | 001,343,904 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
PRC - [2012/10/02 16:23:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
PRC - [2012/08/28 07:53:14 | 000,036,744 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe
PRC - [2012/08/24 10:09:20 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
PRC - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2011/06/16 16:00:28 | 000,315,256 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
PRC - [2010/03/07 23:27:49 | 000,041,800 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\Common Files\AOL\1374881847\ee\aolsoftware.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2006/10/23 04:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe
PRC - [2002/10/10 20:47:44 | 000,589,824 | ---- | M] (PC Dynamics, Inc.) -- C:\Program Files (x86)\Corkboard\CORK.EXE
PRC - [1998/12/23 15:15:20 | 000,359,936 | ---- | M] () -- C:\Program Files (x86)\The Cleaner 2\CLEANER.EXE

========== Modules (No Company Name) ==========

MOD - [2013/11/16 22:54:55 | 016,237,448 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
MOD - [2013/10/26 11:08:14 | 000,237,056 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\CEServices\ad96bb4dbf5e0059ce85bffede6313b4\CEServices.ni.dll
MOD - [2013/10/26 11:08:07 | 000,592,896 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Ad1735b4ba#\3284bd3ecad3b35be18dcd8cbace7223\Arkadium.Advertisement.ni.dll
MOD - [2013/10/26 11:08:03 | 001,687,040 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Dae4911807#\9b1313bc2057c5c9eed380ef3fbc0827\Arkadium.DailyChallengeModule.ni.dll
MOD - [2013/10/26 11:04:53 | 002,959,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\8089e3484b45e44781f0c7a1a78881d5\System.IdentityModel.ni.dll
MOD - [2013/10/25 07:43:39 | 000,397,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\6029d35b6cfaf94b1d39ec54c724a8c7\System.Xml.Linq.ni.dll
MOD - [2013/10/25 07:43:31 | 019,537,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\6b40a60180e23feff705e28e351e10e1\System.ServiceModel.ni.dll
MOD - [2013/10/25 07:43:19 | 002,786,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\e1c6945213ca43ec9769fe95576962ce\System.Runtime.Serialization.ni.dll
MOD - [2013/10/25 07:43:15 | 000,964,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\c508451271803f1677317735db499f5c\System.Configuration.ni.dll
MOD - [2013/10/25 07:43:11 | 006,998,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\79e8b7b183668471ab364d4132fb8018\System.Core.ni.dll
MOD - [2013/10/25 06:58:11 | 000,491,008 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.Xbox\cbe3482ed6250d451d379d6d0f5097e9\Microsoft.Xbox.ni.dll
MOD - [2013/10/25 06:58:00 | 000,121,856 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Xaba8eb3bf#\f5dbcb9bcfacc3d70475b3df6022e313\Arkadium.Xaml.Toolkit.ni.dll
MOD - [2013/10/25 06:57:57 | 000,280,576 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Wi4bbc307d#\88902ba01125c0ea2b1902ba53d5f41d\Arkadium.WindowsStoreModule.ni.dll
MOD - [2013/10/25 06:57:53 | 000,300,544 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Le816657bc#\8e155af423fd335295ff967c55e9a642\Arkadium.LeaderboardModule.ni.dll
MOD - [2013/10/25 06:57:53 | 000,255,488 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Awd4f12c8f#\3d0d43299139b63f1f75c256d3dcb854\Arkadium.AwardsModule.ni.dll
MOD - [2013/10/25 06:57:42 | 000,148,992 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Acc213f109#\6a1e90beff65864e881919f454c29553\Arkadium.AchievementsModule.ni.dll
MOD - [2013/10/25 06:57:42 | 000,132,608 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Ap4e5cc921#\5fbb1b16270d423c19d4def327ba6dee\Arkadium.ApplicationFramework.ni.dll
MOD - [2013/09/07 09:20:57 | 000,048,640 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\zlib.dll
MOD - [2013/09/07 09:19:37 | 021,117,440 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libcef.dll
MOD - [2013/09/07 09:19:35 | 000,648,704 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libGLESv2.dll
MOD - [2013/09/07 09:19:35 | 000,122,880 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libEGL.dll
MOD - [2013/09/07 09:19:22 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\components\Tier2Svc.dll
MOD - [2013/09/07 09:19:22 | 000,060,928 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\components\DataSvcs.dll
MOD - [2013/08/29 16:33:34 | 000,121,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\3df2fdd27a3e685ce5dda8bce4956e5b\SMDiagnostics.ni.dll
MOD - [2013/08/29 16:33:32 | 000,802,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\d438e7ec4899763070e7b5db3f166373\System.ServiceModel.Internals.ni.dll
MOD - [2013/08/28 11:46:03 | 007,566,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\624ad6159b6e241ad6d28bf4dca9f14b\System.Xml.ni.dll
MOD - [2013/08/28 11:44:40 | 009,937,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\375a937eec7d6faa53ac11ab2973eb76\System.ni.dll
MOD - [2013/07/12 11:06:13 | 000,041,472 | ---- | M] () -- C:\Users\suesarkis\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.G42d2c636#\bf163658b943f649bc04dbd74ebe0b3a\Microsoft.Games.Sentient.ni.dll
MOD - [2013/07/12 11:02:22 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Resoc6338000#\e58f0fe212542564e0997fab2607c898\System.Resources.ResourceManager.ni.dll
MOD - [2013/07/12 11:02:21 | 000,384,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Devices\ee7951b8b4d699767e4639aae13c8655\Windows.Devices.ni.dll
MOD - [2013/07/12 11:02:21 | 000,228,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Data\6fc0ecc568789f11327769d886e43e49\Windows.Data.ni.dll
MOD - [2013/07/12 11:02:20 | 000,297,472 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Graphics\1fe6a5dee08f37ba6cf3321e9b4b21b3\Windows.Graphics.ni.dll
MOD - [2013/07/12 11:02:20 | 000,015,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9e372c89#\95edc76d52748f05cc0ec2c5ec8c1f79\System.Runtime.InteropServices.ni.dll
MOD - [2013/07/12 11:02:20 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.XDocument\992adeb387b89b5a5b3d39ec0e7193a5\System.Xml.XDocument.ni.dll
MOD - [2013/07/12 11:02:19 | 000,254,464 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Security\3e93ca7eb2a44fba99291e89f78d8b0c\Windows.Security.ni.dll
MOD - [2013/07/12 11:02:15 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Diagaa8d7fa5#\394d6897fb987f30c8d80b86d9a9f4a3\System.Diagnostics.Debug.ni.dll
MOD - [2013/07/12 11:02:14 | 000,152,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Gloaae92e31#\0faebf70db2023edce1d4c398da0f6a3\Windows.Globalization.ni.dll
MOD - [2013/07/12 11:02:14 | 000,126,976 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.System\ec76129bfa5ddffed43cad742a54f0da\Windows.System.ni.dll
MOD - [2013/07/12 11:02:14 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Diaga973505f#\22b644d61efb672e1f89db555f97641b\System.Diagnostics.Tools.ni.dll
MOD - [2013/07/12 11:02:13 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Text.Encoding\5f71921f11000be1960932ccc9ed8307\System.Text.Encoding.ni.dll
MOD - [2013/07/12 11:02:13 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Globalization\101d4a6f8f7f5591010da347704d2ac8\System.Globalization.ni.dll
MOD - [2013/07/12 11:02:11 | 000,172,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IO.Cb3b124c8#\4be2e5f6cacd49230ea4cc7d73224be0\System.IO.Compression.ni.dll
MOD - [2013/07/12 11:02:11 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Colldfb0b5ae#\8b052bb1fe65747089b9e4af84fa49fb\System.Collections.Concurrent.ni.dll
MOD - [2013/07/12 11:02:09 | 000,693,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Storage\6ad1c9f68ace08186f0671a7de0f8cff\Windows.Storage.ni.dll
MOD - [2013/07/12 11:02:08 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt6a32fdc5#\5940a4a9797e6a658cde030946774a0c\System.Runtime.Serialization.Xml.ni.dll
MOD - [2013/07/12 11:02:08 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IO\bcc2a4b0907a31dfd78713ca41642e32\System.IO.ni.dll
MOD - [2013/07/12 11:02:07 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtdf6812ee#\c86be3356d34eb2f3bf0cc22748bb9bd\System.Runtime.Serialization.Primitives.ni.dll
MOD - [2013/07/12 11:02:02 | 000,491,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Networking\48c2e4346c32df24c33f7a095339881c\Windows.Networking.ni.dll
MOD - [2013/07/12 11:02:02 | 000,017,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servdea05680#\1ca01a50f054b0e94a72b5a5754bf42b\System.ServiceModel.Primitives.ni.dll
MOD - [2013/07/12 11:02:01 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt1e58aa76#\b9cecbbb468b738a2f13a4f2a78a5c42\System.Runtime.Extensions.ni.dll
MOD - [2013/07/12 11:02:00 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.caf7096d#\26a72cdeffee633bb6b1aba4840469f6\System.Net.Primitives.ni.dll
MOD - [2013/07/12 11:01:59 | 000,369,152 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Media\b51de696730ae1c8840974c522a9badc\Windows.Media.ni.dll
MOD - [2013/07/12 11:01:59 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Reflection\33ec130540a5a89bd9b1613f286e21ed\System.Reflection.ni.dll
MOD - [2013/07/12 11:01:59 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Linq\9115f022d844cf710bfef821d5243201\System.Linq.ni.dll
MOD - [2013/07/12 11:01:57 | 000,011,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Thre7bb2aad0#\85dde792f0758d660c1a500b3524860d\System.Threading.Tasks.ni.dll
MOD - [2013/07/12 11:01:57 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ObjectModel\38767dc25c10e2542320333432daa41e\System.ObjectModel.ni.dll
MOD - [2013/07/12 11:01:56 | 000,762,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.UI\00aa600e653bd297c85bbd73199900e3\Windows.UI.ni.dll
MOD - [2013/07/12 11:01:56 | 000,184,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.Foundation\387a593cd07b32b07cbdf0e94ae9a092\Windows.Foundation.ni.dll
MOD - [2013/07/12 11:01:56 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Threading\5afc88b11e1d3f685be5d3b1eb04cd6e\System.Threading.ni.dll
MOD - [2013/07/12 09:45:04 | 000,660,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.App640a3541#\7193464c9be87709b0e8f59dd3bdeca8\Windows.ApplicationModel.ni.dll
MOD - [2013/07/12 09:45:04 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Collections\388cbb70eab6deb623e665301428d24a\System.Collections.ni.dll
MOD - [2013/07/12 09:45:03 | 002,856,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Windows.UI.Xaml\6cbd6ec6ef8013d08e3f069ee02f1d50\Windows.UI.Xaml.ni.dll
MOD - [2013/07/12 09:45:03 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtbff93e24#\4049672c80eddb85857ed94bba0b9970\System.Runtime.InteropServices.WindowsRuntime.ni.dll
MOD - [2013/07/12 09:45:01 | 000,021,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime\27e4fccf50c6e9890fdf8bdc597035ef\System.Runtime.ni.dll
MOD - [2013/07/12 09:37:54 | 000,558,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt0d283adf#\fc2343ad4a4bebccc57ed09fbebb43c5\System.Runtime.WindowsRuntime.ni.dll
MOD - [2013/07/12 09:37:54 | 000,099,840 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtc259d85b#\c09c3b5f4ce90b4c3e68f534d2e92026\System.Runtime.WindowsRuntime.UI.Xaml.ni.dll
MOD - [2013/07/12 09:37:49 | 000,523,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\a237f503e206d5c091327b2cdd813629\System.Net.Http.ni.dll
MOD - [2013/07/12 09:37:03 | 016,547,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\5e3a9f3d64adfb3c69b49d37368bf454\mscorlib.ni.dll
MOD - [2012/05/29 22:51:08 | 000,699,280 | R--- | M] () -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\wincfi39.dll
MOD - [1998/12/23 15:15:20 | 000,359,936 | ---- | M] () -- C:\Program Files (x86)\The Cleaner 2\CLEANER.EXE

========== Services (SafeList) ==========

SRV:64bit: - [2013/08/15 21:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/07/01 16:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/06/24 14:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/06/01 01:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/05/03 22:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/05/03 22:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/04/08 20:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/03/01 18:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/03/01 18:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/01/09 15:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/01/09 15:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2012/09/24 15:03:12 | 001,153,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2012/09/24 15:02:54 | 000,272,176 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2012/09/24 15:02:42 | 000,617,776 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2012/09/24 15:02:16 | 000,149,296 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2012/09/24 12:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2012/09/19 22:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012/09/13 03:33:50 | 000,731,688 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2012/08/19 21:45:20 | 000,323,072 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2012/08/16 19:36:54 | 000,149,032 | ---- | M] () [Auto | Running] -- C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe -- (ISCTAgent)
SRV:64bit: - [2012/08/15 16:08:14 | 000,135,984 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012/07/25 19:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012/07/25 19:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/25 19:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/25 19:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/25 19:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/25 19:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/25 19:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/25 19:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/25 19:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/25 19:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/25 19:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/04/20 14:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2013/11/20 08:01:40 | 001,643,696 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe -- (vToolbarUpdater17.1.3)
SRV - [2013/11/16 22:54:55 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/11/15 18:52:14 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/10/28 17:49:48 | 000,069,792 | ---- | M] (Absolute Software Corp.) [Auto | Running] -- C:\Windows\SysWOW64\rpcnet.exe -- (rpcnet)
SRV - [2013/08/14 14:19:24 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/07/23 18:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2013/07/04 14:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/06/03 17:46:06 | 000,015,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2013/06/03 14:38:50 | 000,277,640 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/05/20 20:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe -- (NIS)
SRV - [2013/05/11 02:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/29 14:54:08 | 000,193,576 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysWOW64\irstrtsv.exe -- (irstrtsv)
SRV - [2013/02/05 07:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService)
SRV - [2012/11/06 08:18:50 | 001,140,672 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2012/11/06 08:18:34 | 001,120,192 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2012/09/27 10:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2012/09/07 21:06:26 | 002,464,400 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2012/08/24 10:09:20 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV - [2012/07/25 19:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/07/25 19:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2012/07/25 19:18:41 | 000,408,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2012/07/25 19:17:52 | 000,060,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/04/24 13:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
SRV - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2006/10/23 04:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe -- (AOL ACS)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/11/21 14:41:46 | 000,016,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SWDUMon.sys -- (SWDUMon)
DRV:64bit: - [2013/11/21 14:41:38 | 000,034,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WPRO_41_2001.sys -- (WPRO_41_2001)
DRV:64bit: - [2013/09/05 00:43:42 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2013/08/15 21:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2013/07/20 00:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2013/07/20 00:50:56 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2013/07/20 00:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2013/07/20 00:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2013/07/18 01:04:48 | 000,248,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\avgwfpa.sys -- (Avgwfpa)
DRV:64bit: - [2013/07/09 00:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/07/01 17:41:47 | 000,447,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/07/01 17:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/07/01 17:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/07/01 16:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/07/01 14:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/07/01 00:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2013/06/28 22:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/06/18 17:02:15 | 000,177,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2013/06/10 13:17:46 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/06/03 14:38:37 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/06/03 13:39:45 | 000,650,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/05/31 19:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/05/22 21:25:28 | 001,139,800 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symefa64.sys -- (SymEFA)
DRV:64bit: - [2013/05/20 21:02:00 | 000,493,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symds64.sys -- (SymDS)
DRV:64bit: - [2013/05/15 21:02:14 | 000,796,760 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2013/05/03 23:34:15 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/04/29 14:54:08 | 000,043,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\irstrtdv.sys -- (irstrtdv)
DRV:64bit: - [2013/04/24 16:43:56 | 000,433,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symnets.sys -- (SymNetS)
DRV:64bit: - [2013/04/15 18:41:14 | 000,169,048 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\ccsetx64.sys -- (ccSet_NIS)
DRV:64bit: - [2013/03/04 17:40:08 | 000,224,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\ironx64.sys -- (SymIRON)
DRV:64bit: - [2013/03/04 17:21:35 | 000,036,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\srtspx64.sys -- (SRTSPX)
DRV:64bit: - [2013/03/02 02:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/03/02 02:45:20 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/03/02 02:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/01/29 17:15:04 | 000,050,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\point64.sys -- (Point64)
DRV:64bit: - [2013/01/09 17:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2012/11/26 19:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012/11/19 20:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012/11/06 08:19:20 | 001,345,920 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2012/11/05 19:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012/10/30 10:31:16 | 000,131,968 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2012/10/26 03:17:44 | 000,020,912 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\avgboota.sys -- (Avgboota)
DRV:64bit: - [2012/10/12 00:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/10/10 23:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012/10/10 10:18:16 | 004,309,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NETwew00.sys -- (NETwNe64)
DRV:64bit: - [2012/09/24 12:40:56 | 000,043,840 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2012/09/24 12:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2012/09/19 23:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012/09/19 23:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012/09/17 05:57:36 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2012/09/14 14:09:34 | 000,457,528 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012/09/14 14:09:32 | 000,043,832 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:64bit: - [2012/09/14 14:09:32 | 000,041,272 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Smb_driver_AMDASF.sys -- (SmbDrv)
DRV:64bit: - [2012/09/13 03:35:08 | 000,162,344 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012/09/13 03:35:08 | 000,162,344 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2012/09/06 15:14:02 | 000,273,040 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2012/08/31 09:40:24 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver)
DRV:64bit: - [2012/08/19 21:45:20 | 000,542,208 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2012/08/16 19:31:28 | 000,046,016 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ISCTD64.sys -- (ISCT)
DRV:64bit: - [2012/08/16 19:31:28 | 000,019,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\imsevent.sys -- (imsevent)
DRV:64bit: - [2012/08/16 19:31:26 | 000,020,968 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ikbevent.sys -- (ikbevent)
DRV:64bit: - [2012/08/12 03:47:16 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2012/08/06 10:07:08 | 000,068,136 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\iBtFltCoex.sys -- (ibtfltcoex)
DRV:64bit: - [2012/07/31 00:04:12 | 000,690,832 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/07/25 21:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/25 21:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/25 21:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/25 21:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/25 21:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/25 21:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/25 21:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/25 21:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/25 21:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/25 21:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/25 21:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/25 21:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/25 21:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/25 21:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/25 21:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/25 21:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/25 21:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/25 20:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/25 20:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/25 19:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/25 18:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/25 18:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/25 18:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/25 18:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/25 18:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/25 18:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/25 18:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/25 18:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/25 18:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/25 18:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/25 18:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/25 18:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/25 18:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/25 18:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/25 18:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/25 18:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/25 18:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/25 18:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/25 18:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2012/07/25 18:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/25 18:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/25 18:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/07/02 15:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/06/20 13:27:30 | 000,023,448 | R--- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SysNative\Drivers\NISx64\1404000.028\symelam.sys -- (SymELAM)
DRV:64bit: - [2012/06/19 22:40:52 | 000,342,528 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2006/11/29 14:24:49 | 000,024,064 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\wanatw64.sys -- (wanatw)
DRV - [2013/05/01 03:05:28 | 002,087,664 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130516.003\ex64.sys -- (NAVEX15)
DRV - [2013/05/01 03:05:28 | 000,484,512 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2013/05/01 03:05:28 | 000,138,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2013/05/01 03:05:28 | 000,126,192 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20130516.003\eng64.sys -- (NAVENG)
DRV - [2013/04/30 14:47:40 | 000,513,184 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20130515.001\IDSviA64.sys -- (IDSVia64)
DRV - [2013/04/12 23:09:32 | 001,390,680 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20130502.001\BHDrvx64.sys -- (BHDrvx64)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT13/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...0TR&pc=HPNTDFJS
IE:64bit: - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPNTDF
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...0TR&pc=HPNTDFJS
IE - HKLM\..\SearchScopes\{3ED50F13-D9B3-45AD-9D82-E4AFB74E7E09}: "URL" = http://search.aol.co...ionType=msie70a
IE - HKLM\..\SearchScopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}: "URL" = http://search.yahoo....psg&type=HPNTDF

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.1.3.1&pid=safeguard&sg=0&sap=hp"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1
FF - prefs.js..keyword.URL: "http://www.bing.com/...9DF&PC=U079&q="

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.40.2: C:\Windows\system32\npDeployJava1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.3\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\suesarkis\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn\ [2013/11/20 11:26:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFFPlgn\ [2013/04/14 12:16:19 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.1.3.1 [2013/11/20 08:02:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/10/26 14:18:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/10/26 14:18:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/11/15 18:52:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{57319509-7821-41B0-9FDF-3B58F146AE33}: c:\program files (x86)\copernic desktop search - home\firefoxconnector [2013/06/17 15:56:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/11/15 18:52:11 | 000,000,000 | ---D | M]

[2013/09/20 13:14:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Extensions
[2013/11/21 14:37:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions
[2013/10/22 09:26:37 | 000,000,000 | ---D | M] (AOL Toolbar) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2013/11/15 18:52:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/11/15 18:52:15 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/10/26 14:17:50 | 000,124,504 | ---- | M] (RealPlayer) -- C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll

========== Chrome ==========

CHR - default_search_provider: AVG Secure Search (Enabled)
CHR - default_search_provider: search_url = http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR - default_search_provider: suggest_url = http://toolbar.avg.c...earchTerms}&o=1,
CHR - homepage: http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=hp
CHR - Extension: Google Docs = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1\
CHR - Extension: Google Drive = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: YouTube = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1\
CHR - Extension: Google Search = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
CHR - Extension: RealDownloader = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0\
CHR - Extension: Norton Identity Protection = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.0.10_1\
CHR - Extension: AVG SafeGuard = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.1.3.1_0\
CHR - Extension: Google Wallet = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Gmail = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\

O1 HOSTS File: ([2013/11/21 14:38:57 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (AOL Toolbar Loader) - {3ef64538-8b54-4573-b48f-4d34b0238ab2} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll File not found
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found.
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {41525333-2D56-3700-76A7-7A786E7484D7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll (AOL Inc.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SetDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe (Hewlett-Packard Development Company, L.P.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [ApnTBMon] "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" File not found
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [HostManager] C:\Program Files (x86)\Common Files\AOL\1374881847\ee\aolsoftware.exe (AOL Inc.)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe ()
O4 - HKCU..\Run: [AOL Fast Start] C:\Program Files (x86)\AOL Desktop 9.7a\AOL.EXE (AOL Inc.)
O4 - HKCU..\Run: [Copernic Desktop Search - Home] C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearchService.exe (Copernic Inc.)
O4 - HKCU..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform File not found
O4 - HKCU..\Run: [Private WiFi Client] C:\Program Files (x86)\Private Communications\PRIVATE WiFi\WiFiPrivacyClient.exe (Private Communications Corp)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4:64bit: - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O4 - Startup: C:\Users\suesarkis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyCorkboard.lnk = C:\Program Files (x86)\Corkboard\CORK.EXE (PC Dynamics, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O9:64bit: - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://zone.msn.com/...aploader_v6.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.4.1 8.8.8.8 8.8.4.4 4.2.2.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C1A05F8D-24DB-43C5-8454-FC2348130097}: DhcpNameServer = 192.168.4.1 8.8.8.8 8.8.4.4 4.2.2.6
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.3\ViProtocol.dll (AVG Secure Search)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/21 14:36:44 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/11/21 10:09:45 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/11/20 18:15:12 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Desktop\RK_Quarantine
[2013/11/20 17:15:10 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
[2013/11/20 13:44:28 | 000,000,000 | ---D | C] -- C:\FRST
[2013/11/20 13:41:55 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\suesarkis\Desktop\aswmbr.exe
[2013/11/20 13:39:30 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\suesarkis\Desktop\tdsskiller.exe
[2013/11/20 13:33:22 | 001,957,964 | ---- | C] (Farbar) -- C:\Users\suesarkis\Desktop\FRST64.exe
[2013/11/15 18:52:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/11/13 21:30:54 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\NovemberChargeFail
[2013/10/29 09:40:40 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY
[2013/10/26 19:10:12 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\image001
[2013/10/26 14:19:35 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\RealNetworks
[2013/10/26 14:18:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RealNetworks
[2013/10/26 14:18:54 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2013/10/26 14:18:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2013/10/26 14:17:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2013/10/26 14:17:31 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/10/26 14:16:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2013/10/26 14:16:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/10/26 14:15:42 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\Real
[2013/10/26 14:15:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/10/26 14:14:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Real

========== Files - Modified Within 30 Days ==========

[2013/11/21 15:12:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/21 14:43:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/21 14:41:50 | 000,000,444 | ---- | M] () -- C:\Windows\tasks\DriverUpdate Startup.job
[2013/11/21 14:41:46 | 000,016,152 | ---- | M] () -- C:\Windows\SysNative\drivers\SWDUMon.sys
[2013/11/21 14:41:45 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/21 14:41:38 | 000,034,752 | ---- | M] () -- C:\Windows\SysNative\drivers\WPRO_41_2001.sys
[2013/11/21 14:41:28 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWow64\rpcnet.dll
[2013/11/21 14:41:28 | 000,017,408 | ---- | M] () -- C:\Windows\SysWow64\rpcnetp.dll
[2013/11/21 14:41:09 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/11/21 14:41:03 | 2489,966,591 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/21 14:40:49 | 000,017,408 | ---- | M] () -- C:\Windows\SysWow64\rpcnetp.exe
[2013/11/21 14:40:49 | 000,017,408 | ---- | M] () -- C:\Windows\SysNative\rpcnetp.exe
[2013/11/21 14:40:45 | 000,029,336 | ---- | M] () -- C:\Windows\SysNative\wpbbin.exe
[2013/11/21 14:38:57 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2013/11/21 14:32:00 | 000,000,922 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/21 10:09:18 | 001,085,542 | ---- | M] () -- C:\Users\suesarkis\Desktop\adwcleaner.exe
[2013/11/20 17:54:44 | 003,679,744 | ---- | M] () -- C:\Users\suesarkis\Desktop\RogueKiller.exe
[2013/11/20 17:23:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
[2013/11/20 16:39:19 | 000,000,512 | ---- | M] () -- C:\Users\suesarkis\Desktop\MBR.dat
[2013/11/20 13:42:05 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\suesarkis\Desktop\aswmbr.exe
[2013/11/20 13:39:35 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\suesarkis\Desktop\tdsskiller.exe
[2013/11/20 13:33:26 | 001,957,964 | ---- | M] (Farbar) -- C:\Users\suesarkis\Desktop\FRST64.exe
[2013/11/20 12:46:06 | 000,001,457 | ---- | M] () -- C:\Users\suesarkis\Desktop\HijackThis.exe - Shortcut.lnk
[2013/11/20 11:30:49 | 000,942,994 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/11/20 11:30:49 | 000,784,932 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/11/20 11:30:49 | 000,158,904 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/11/20 11:23:33 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForsuesarkis.job
[2013/11/20 08:02:06 | 000,003,723 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
[2013/11/20 08:01:40 | 000,046,368 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2013/11/17 21:30:15 | 000,000,186 | -H-- | M] () -- C:\IPH.PH
[2013/11/16 21:15:24 | 000,178,252 | ---- | M] () -- C:\Users\suesarkis\Documents\=windows-1252Qrangers_May_be_Spreading_=AB_CBS_DC=2Ehtm=
[2013/11/16 12:10:55 | 000,002,279 | ---- | M] () -- C:\Users\suesarkis\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/11/16 12:10:54 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/16 10:54:01 | 000,045,328 | ---- | M] () -- C:\Users\suesarkis\Documents\teewww.nrcc.org-NationalRepublicanCongressionalCommittee.htm
[2013/11/14 21:04:13 | 000,039,287 | ---- | M] () -- C:\Users\suesarkis\Documents\Albertson list.wpd
[2013/11/14 20:42:53 | 000,004,150 | ---- | M] () -- C:\Users\suesarkis\Documents\Vons List.wpd
[2013/11/14 20:38:17 | 000,047,289 | ---- | M] () -- C:\Users\suesarkis\Documents\Ralphs current.wpd
[2013/11/13 21:30:54 | 000,056,513 | ---- | M] () -- C:\Users\suesarkis\Documents\NovemberChargeFail.zip
[2013/11/08 22:10:07 | 000,032,752 | ---- | M] () -- C:\Windows\SysWow64\NTAgent.exe
[2013/11/08 07:55:38 | 007,109,105 | ---- | M] () -- C:\Users\suesarkis\Documents\You_Picked_a_Fine_Time.wmv
[2013/11/06 15:23:38 | 000,028,940 | ---- | M] () -- C:\Users\suesarkis\Documents\1450237_10200924221575685_1328301829_n.jpg
[2013/10/31 08:06:58 | 001,177,088 | ---- | M] () -- C:\Users\suesarkis\Documents\AFewMoreCritters.pps
[2013/10/30 12:12:51 | 000,026,120 | ---- | M] () -- C:\Users\suesarkis\Documents\1173823_10200555030254274_1340834328_n
[2013/10/29 09:40:40 | 000,109,052 | ---- | M] () -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY.zip
[2013/10/29 08:27:20 | 000,002,985 | ---- | M] () -- C:\Users\suesarkis\Documents\Mike -Unless I hear back differently.wpd
[2013/10/28 21:03:04 | 000,043,520 | ---- | M] () -- C:\Users\suesarkis\Documents\Mr
[2013/10/28 19:55:31 | 000,043,520 | ---- | M] () -- C:\Users\suesarkis\Documents\Pirouzians case
[2013/10/28 17:49:48 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWow64\rpcnet.exe
[2013/10/27 16:01:02 | 000,371,582 | ---- | M] () -- C:\Users\suesarkis\Documents\GLN1012813GPDOpechee.pdf
[2013/10/27 11:40:33 | 000,061,678 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JPR.{PB
[2013/10/27 11:40:33 | 000,012,358 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JCM.{PB
[2013/10/27 11:26:29 | 356,947,576 | ---- | M] () -- C:\Users\suesarkis\Desktop\Backup.reg
[2013/10/26 19:10:11 | 000,870,099 | ---- | M] () -- C:\Users\suesarkis\Documents\image001.zip
[2013/10/26 14:19:09 | 000,001,264 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013/10/26 14:17:31 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/10/26 14:12:53 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/10/26 11:41:28 | 000,419,648 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/24 13:18:48 | 000,003,505 | ---- | M] () -- C:\Windows\wininit.ini
[2013/10/24 12:12:34 | 000,000,258 | RHS- | M] () -- C:\Users\suesarkis\ntuser.pol

========== Files Created - No Company Name ==========

[2013/11/21 14:41:49 | 000,000,444 | ---- | C] () -- C:\Windows\tasks\DriverUpdate Startup.job
[2013/11/21 10:09:08 | 001,085,542 | ---- | C] () -- C:\Users\suesarkis\Desktop\adwcleaner.exe
[2013/11/20 17:53:23 | 003,679,744 | ---- | C] () -- C:\Users\suesarkis\Desktop\RogueKiller.exe
[2013/11/20 14:21:10 | 000,000,512 | ---- | C] () -- C:\Users\suesarkis\Desktop\MBR.dat
[2013/11/20 12:46:06 | 000,001,457 | ---- | C] () -- C:\Users\suesarkis\Desktop\HijackThis.exe - Shortcut.lnk
[2013/11/17 21:29:55 | 000,000,186 | -H-- | C] () -- C:\IPH.PH
[2013/11/16 21:15:21 | 000,178,252 | ---- | C] () -- C:\Users\suesarkis\Documents\=windows-1252Qrangers_May_be_Spreading_=AB_CBS_DC=2Ehtm=
[2013/11/16 10:54:00 | 000,045,328 | ---- | C] () -- C:\Users\suesarkis\Documents\teewww.nrcc.org-NationalRepublicanCongressionalCommittee.htm
[2013/11/14 21:04:13 | 000,039,287 | ---- | C] () -- C:\Users\suesarkis\Documents\Albertson list.wpd
[2013/11/14 20:42:53 | 000,004,150 | ---- | C] () -- C:\Users\suesarkis\Documents\Vons List.wpd
[2013/11/14 20:38:17 | 000,047,289 | ---- | C] () -- C:\Users\suesarkis\Documents\Ralphs current.wpd
[2013/11/13 21:30:53 | 000,056,513 | ---- | C] () -- C:\Users\suesarkis\Documents\NovemberChargeFail.zip
[2013/11/08 22:08:57 | 000,032,752 | ---- | C] () -- C:\Windows\SysWow64\NTAgent.exe
[2013/11/08 07:54:51 | 007,109,105 | ---- | C] () -- C:\Users\suesarkis\Documents\You_Picked_a_Fine_Time.wmv
[2013/11/06 15:23:37 | 000,028,940 | ---- | C] () -- C:\Users\suesarkis\Documents\1450237_10200924221575685_1328301829_n.jpg
[2013/10/31 08:05:42 | 001,177,088 | ---- | C] () -- C:\Users\suesarkis\Documents\AFewMoreCritters.pps
[2013/10/30 12:12:50 | 000,026,120 | ---- | C] () -- C:\Users\suesarkis\Documents\1173823_10200555030254274_1340834328_n
[2013/10/29 09:40:39 | 000,109,052 | ---- | C] () -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY.zip
[2013/10/29 08:04:56 | 000,002,985 | ---- | C] () -- C:\Users\suesarkis\Documents\Mike -Unless I hear back differently.wpd
[2013/10/28 21:03:03 | 000,043,520 | ---- | C] () -- C:\Users\suesarkis\Documents\Mr
[2013/10/28 19:55:30 | 000,043,520 | ---- | C] () -- C:\Users\suesarkis\Documents\Pirouzians case
[2013/10/27 16:00:59 | 000,371,582 | ---- | C] () -- C:\Users\suesarkis\Documents\GLN1012813GPDOpechee.pdf
[2013/10/27 11:26:09 | 356,947,576 | ---- | C] () -- C:\Users\suesarkis\Desktop\Backup.reg
[2013/10/26 19:10:06 | 000,870,099 | ---- | C] () -- C:\Users\suesarkis\Documents\image001.zip
[2013/10/26 14:19:07 | 000,001,264 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013/10/26 11:41:14 | 000,419,648 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/10/24 22:16:31 | 000,386,923 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2013/10/24 14:07:36 | 000,002,058 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[2013/10/24 13:18:26 | 000,003,505 | ---- | C] () -- C:\Windows\wininit.ini
[2013/10/24 12:12:33 | 000,000,258 | RHS- | C] () -- C:\Users\suesarkis\ntuser.pol
[2013/09/28 12:24:11 | 000,003,723 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
[2013/09/25 09:06:38 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\rpcnetp.dll
[2013/09/12 08:49:08 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/07/26 15:26:30 | 000,000,006 | ---- | C] () -- C:\Windows\msoffice.ini
[2013/07/16 22:05:15 | 000,007,607 | ---- | C] () -- C:\Users\suesarkis\AppData\Local\resmon.resmoncfg
[2013/06/03 14:39:25 | 000,598,384 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin
[2013/06/03 14:39:15 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/06/03 14:39:13 | 000,754,652 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin
[2013/05/02 11:48:49 | 000,061,678 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JPR.{PB
[2013/05/02 11:48:49 | 000,012,358 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JCM.{PB
[2013/05/02 11:17:48 | 000,000,264 | ---- | C] () -- C:\Windows\SysWow64\BDEMERGE.INI
[2013/04/14 12:49:52 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat
[2013/04/14 12:03:16 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\rpcnetp.exe
[2012/08/03 14:40:09 | 000,959,336 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/07/26 00:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012/07/26 00:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012/07/25 23:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012/07/25 17:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012/07/25 12:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012/07/25 12:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012/07/25 12:22:54 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2012/07/25 12:22:54 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2012/07/25 12:22:54 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2012/06/02 06:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2012/04/20 13:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2012/10/31 17:24:30 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/08/01 22:28:20 | 019,758,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/08/01 21:08:10 | 017,561,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/25 19:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/25 19:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/25 19:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/08/22 08:34:08 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG
[2013/07/13 11:11:20 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG2013
[2013/11/21 14:37:54 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\SpeedMaxPc
[2013/04/14 12:11:50 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Synaptics
[2013/07/13 11:10:26 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\TuneUp Software

========== Purity Check ==========

< End of report >

#7
sweetsuzee

Posted 21 November 2013 - 05:54 PM

Member

Topic Starter
Member
55 posts

JRT log -

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8 x64
Ran by suesarkis on Thu 11/21/2013 at 15:38:17.70
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

Value Name Type Value Data
========================================================================================
Pokki REG_EXPAND_SZ C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\dnu.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\scripthelper.exe
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\AppID\viprotocol.dll
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\aol toolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\searchprotect
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitsearchscopes
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\pricegong
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\toolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\aol toolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\defaulttab
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\firstsearch
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\searchprotect
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\axmetastream.metastreamctl
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\axmetastream.metastreamctl.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\axmetastream.metastreamctlsecondary
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\axmetastream.metastreamctlsecondary.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdate
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloaduibrowser
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloaduibrowser.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloadupdcontroller
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\dnupdater.downloadupdcontroller.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\protocols\handler\viprotocol
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\s
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\scripthelper.scripthelperapi.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\viprotocol.viprotocolole.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\viewpointmediaplayer
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TBSB07898.IEToolbar
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TBSB07898.IEToolbar.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TBSB07898.TBSB07898
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TBSB07898.TBSB07898.3
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Toolbar3.TBSB07898
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Toolbar3.TBSB07898.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TBSB07898.IEToolbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TBSB07898.IEToolbar.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TBSB07898.TBSB07898
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TBSB07898.TBSB07898.3
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar3.TBSB07898
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar3.TBSB07898.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3303002
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{3ED50F13-D9B3-45AD-9D82-E4AFB74E7E09}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3EF64538-8B54-4573-B48F-4D34B0238AB2}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Successfully deleted: [Registry Key] "hkey_current_user\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_local_machine\software\askpartnernetwork"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{44cbc005-6243-4502-8a02-3a096a282664}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{80703783-e415-4ee3-ab60-d36981c5a6f1}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{d8278076-bc68-4484-9233-6e7f1628b56c}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\clsid\{f297534d-7b06-459d-bc19-2dd8ef69297b}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\typelib\{9945959c-aad8-4312-8b57-2de11927e770}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\internet explorer\low rights\elevationpolicy\{6978f29a-3493-40b2-8cdc-9c13a02f85a4}"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\internet explorer\low rights\elevationpolicy\{d7949a66-d936-4028-9552-14f7dc50f38d}"

~~~ Files

Successfully deleted: [File] "C:\Windows\Tasks\driverupdate startup.job"
Successfully deleted: [File] "C:\Users\suesarkis\appdata\local\google\chrome\user data\default\local storage\http_app.mam.conduit.com_0.localstorage"
Successfully deleted: [File] "C:\Users\suesarkis\appdata\local\google\chrome\user data\default\local storage\http_app.mam.conduit.com_0.localstorage-journal"
Successfully deleted: [File] "C:\Users\suesarkis\appdata\local\google\chrome\user data\default\local storage\http_pricegong.conduitapps.com_0.localstorage"
Successfully deleted: [File] "C:\Users\suesarkis\appdata\local\google\chrome\user data\default\local storage\http_pricegong.conduitapps.com_0.localstorage-journal"
Successfully deleted: [File] "C:\Users\suesarkis\appdata\local\google\chrome\user data\default\local storage\http_storage.conduit.com_0.localstorage"

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\aol toolbar"
Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\conduit"
Successfully deleted: [Folder] "C:\ProgramData\speedmaxpc"
Successfully deleted: [Folder] "C:\ProgramData\viewpoint"
Successfully deleted: [Folder] "C:\Users\suesarkis\AppData\Roaming\speedmaxpc"
Successfully deleted: [Folder] "C:\Users\suesarkis\appdata\local\aol toolbar"
Successfully deleted: [Folder] "C:\Users\suesarkis\appdata\local\swvupdater"
Successfully deleted: [Folder] "C:\Users\suesarkis\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Users\suesarkis\appdata\locallow\pricegong"
Successfully deleted: [Folder] "C:\Users\suesarkis\appdata\locallow\toolbar4"
Successfully deleted: [Folder] "C:\Program Files (x86)\aol toolbar"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"
Failed to delete: [Folder] "C:\Program Files (x86)\viewpoint"
Successfully deleted: [Folder] "C:\ProgramData\AskPartnerNetwork"

~~~ FireFox

Successfully deleted: [File] C:\Users\suesarkis\AppData\Roaming\mozilla\firefox\profiles\lkyzsjpu.default\user.js
Successfully deleted: [Folder] C:\Users\suesarkis\AppData\Roaming\mozilla\firefox\profiles\lkyzsjpu.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
Successfully deleted the following from C:\Users\suesarkis\AppData\Roaming\mozilla\firefox\profiles\lkyzsjpu.default\prefs.js

user_pref("browser.startup.homepage", "hxxp://mysearch.avg.com?cid={161D8711-46E8-4D68-8FC4-A6005C9D12A7}&mid=b5a29dbfddf547d39cbabd72a39f4b82-5fe379cac391f6cdd897d42e2165b362

~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 11/21/2013 at 15:47:02.32
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#8
Essexboy

Posted 22 November 2013 - 07:12 AM

GeekU Moderator

Retired Staff
69,964 posts

Lets replace the Poki with a decent windows 8 shell... This will return you to a windows 7 type interface. It is free and adware free http://www.classicshell.net/

Now we will need to remove one of the two antivirus programmes that you have. Do you wish to keep Norton or AVG, let me know and I will provide the tools to remove the other

#9
sweetsuzee

Posted 22 November 2013 - 10:10 AM

Member

Topic Starter
Member
55 posts

I'm leaning toward wanting to keep the AVG. I'm still having some weird things go on and I just don't understand it. For instance, there are websites I cannot get to such as www.nuwavepic.com When I go there whether in AOL, Firefox or Chrome, the site launches and the webpage starts to load ever so briefly. In AOL and Chrome I see text and graphics whereas in Firefox just the text. However, this is for a split second only as the page turns white although I'm prompted that it has loaded. When I go to Walgreen's website, although I can maneuver around their website, their weekly deals will not load and again I'm just looking at a blank white area where a newspaper type spreadsheet should be situated. UGH !!!!

#10
Essexboy

Posted 22 November 2013 - 12:53 PM

GeekU Moderator

Retired Staff
69,964 posts

OK Norton removal Download and run the removal tool from here https://support.nort...erProfile_en_us

Then once done could you try those sites using Internet Explorer and let me know if you get the same problem

#11
sweetsuzee

Posted 23 November 2013 - 02:48 PM

Member

Topic Starter
Member
55 posts

I have followed your insructions and am so frustrated I could cry. When I went to launch the Walgreens site at IE, for the very first time I received a notice that my flash player was not up to date. This made no sense to me as that was one of the very first things I checked. I verified what the current ver is and went to my Control Panel which clearly indicated the correct version. I then decided to launch Adobe's flash player check site on all 4 browsers. AOL, Firefox and Chrome met with positive results. However, IE did not. When I went to install the update, I was prompted that it wasn't necessary since the current version comes embedded in Win 8. However, I knew that was wrong. I then attempted to manually update and I spent the better part of yesterday repeatedly attempting to do the same to no avail following Adobe's instructions to the best of my ability. However, eventually it worked after I received a prompt informing me that the c: drive recycle bin was corrupted and I emptied it. So, now I have the correct flash player version working on this computer completely and I still cannot work the websites I previously complained about such as Walgreens and nuwavepic.com. However, I have seen improvements in other areas although my pages still load slower than they should. However, I do want to thank you for your time and energy already expended in trying to help me solve this problem. Any other thoughts or suggestions about what I should try? Please advise. Sincerely, Sue

#12
Essexboy

Posted 23 November 2013 - 03:13 PM

GeekU Moderator

Retired Staff
69,964 posts

OK Sue lets have a fresh OTL scan and see what it looks like now .. Then we will play with IE

Posted Image

[*]Select All Users
[*]Select LOP and Purity
[*]Under the Custom Scan box paste this in

netsvcs
BASESERVICES
%SYSTEMDRIVE%\*.exe
CREATERESTOREPOINT

[*]Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open one notepad window.

[/list]

#13
sweetsuzee

Posted 23 November 2013 - 03:42 PM

Member

Topic Starter
Member
55 posts

OTL logfile created on: 11/23/2013 1:34:08 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\suesarkis\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16736)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.90 Gb Total Physical Memory | 5.76 Gb Available Physical Memory | 72.87% Memory free
9.09 Gb Paging File | 6.83 Gb Available in Paging File | 75.19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 445.79 Gb Total Space | 369.69 Gb Free Space | 82.93% Space Free | Partition Type: NTFS
Drive D: | 19.19 Gb Total Space | 2.42 Gb Free Space | 12.60% Space Free | Partition Type: NTFS
Drive E: | 29.94 Gb Total Space | 4.54 Gb Free Space | 15.18% Space Free | Partition Type: FAT32
Drive F: | 1.92 Gb Total Space | 1.76 Gb Free Space | 91.72% Space Free | Partition Type: FAT

Computer Name: SUESBABY | User Name: suesarkis | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/22 19:45:45 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWOW64\rpcnet.exe
PRC - [2013/11/20 17:23:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
PRC - [2013/10/26 14:17:19 | 000,295,512 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2013/10/07 17:27:35 | 000,237,960 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
PRC - [2013/09/07 09:20:56 | 000,071,224 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\waol.exe
PRC - [2013/09/07 09:20:48 | 000,045,624 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\shellmon.exe
PRC - [2013/09/06 19:53:15 | 002,368,568 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\AOL Desktop 9.7a\AOLBrowser\aolbrowser.exe
PRC - [2013/08/14 14:19:24 | 000,039,056 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/07/23 18:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
PRC - [2013/07/04 14:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
PRC - [2013/06/03 17:46:06 | 000,015,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/05/11 02:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/29 14:54:08 | 000,193,576 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\irstrtsv.exe
PRC - [2012/11/06 08:18:50 | 001,140,672 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
PRC - [2012/11/06 08:18:34 | 001,120,192 | ---- | M] (Motorola Solutions, Inc.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
PRC - [2012/11/05 15:14:34 | 001,343,904 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
PRC - [2012/10/02 16:23:36 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
PRC - [2012/08/28 07:53:14 | 000,036,744 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe
PRC - [2012/08/24 10:09:20 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
PRC - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2010/03/07 23:27:49 | 000,041,800 | ---- | M] (AOL Inc.) -- C:\Program Files (x86)\Common Files\AOL\1374881847\ee\aolsoftware.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 14:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2006/10/23 04:50:35 | 000,046,640 | R--- | M] (AOL LLC) -- C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe
PRC - [2002/10/10 20:47:44 | 000,589,824 | ---- | M] (PC Dynamics, Inc.) -- C:\Program Files (x86)\Corkboard\CORK.EXE

========== Modules (No Company Name) ==========

MOD - [2013/11/22 11:18:15 | 016,237,448 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll
MOD - [2013/09/07 09:20:57 | 000,048,640 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\zlib.dll
MOD - [2013/09/07 09:19:37 | 021,117,440 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libcef.dll
MOD - [2013/09/07 09:19:35 | 000,648,704 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libGLESv2.dll
MOD - [2013/09/07 09:19:35 | 000,122,880 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\libEGL.dll
MOD - [2013/09/07 09:19:22 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\components\Tier2Svc.dll
MOD - [2013/09/07 09:19:22 | 000,060,928 | ---- | M] () -- C:\Program Files (x86)\AOL Desktop 9.7a\components\DataSvcs.dll

========== Services (SafeList) ==========

SRV:64bit: - [2013/08/28 16:24:04 | 003,378,416 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2013/08/28 16:23:48 | 000,273,136 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2013/08/28 16:23:40 | 000,626,416 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2013/08/28 16:23:20 | 000,149,744 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2013/08/15 21:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/07/01 16:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/06/24 14:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/06/01 01:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/05/03 22:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/05/03 22:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/04/08 20:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/03/01 18:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/03/01 18:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/01/09 15:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/01/09 15:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2012/09/24 12:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2012/09/19 22:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2012/09/13 03:33:50 | 000,731,688 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2012/08/19 21:45:20 | 000,323,072 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2012/08/16 19:36:54 | 000,149,032 | ---- | M] () [Auto | Running] -- C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe -- (ISCTAgent)
SRV:64bit: - [2012/08/15 16:08:14 | 000,135,984 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012/07/25 19:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012/07/25 19:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/25 19:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/25 19:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/25 19:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/25 19:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/25 19:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/25 19:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/25 19:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/25 19:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/25 19:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2012/07/25 16:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/04/20 14:16:12 | 000,635,104 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV - [2013/11/22 19:45:45 | 000,069,792 | ---- | M] (Absolute Software Corp.) [Auto | Running] -- C:\Windows\SysWOW64\rpcnet.exe -- (rpcnet)
SRV - [2013/11/22 11:18:16 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/11/15 18:52:14 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/08/14 14:19:24 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/07/23 18:09:28 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
SRV - [2013/07/04 14:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/06/03 17:46:06 | 000,015,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2013/06/03 14:38:50 | 000,277,640 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/05/11 02:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/29 14:54:08 | 000,193,576 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysWOW64\irstrtsv.exe -- (irstrtsv)
SRV - [2013/02/05 07:48:00 | 000,235,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe -- (McComponentHostService)
SRV - [2012/11/06 08:18:50 | 001,140,672 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2012/11/06 08:18:34 | 001,120,192 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2012/09/27 10:55:16 | 000,086,528 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2012/09/07 21:06:26 | 002,464,400 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2012/08/24 10:09:20 | 000,035,232 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV - [2012/07/25 19:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/07/25 19:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2012/07/25 19:18:41 | 000,408,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2012/07/25 19:17:52 | 000,060,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2012/07/17 17:10:32 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/17 17:10:30 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/17 17:10:16 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/04/24 13:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
SRV - [2011/09/14 21:06:38 | 000,169,624 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor10.0)
SRV - [2006/10/23 04:50:35 | 000,046,640 | R--- | M] (AOL LLC) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\AOL\acs\AOLacsd.exe -- (AOL ACS)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/11/23 08:42:29 | 000,034,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WPRO_41_2001.sys -- (WPRO_41_2001)
DRV:64bit: - [2013/11/21 14:41:46 | 000,016,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SWDUMon.sys -- (SWDUMon)
DRV:64bit: - [2013/10/10 03:53:35 | 000,096,600 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/10/08 22:12:46 | 003,345,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\NETwew00.sys -- (NETwNe64)
DRV:64bit: - [2013/09/05 00:43:42 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2013/08/15 21:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/09 22:30:22 | 000,151,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/07/20 00:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2013/07/20 00:50:56 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2013/07/20 00:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2013/07/20 00:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\Drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2013/07/18 01:04:48 | 000,248,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\avgwfpa.sys -- (Avgwfpa)
DRV:64bit: - [2013/07/09 00:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/07/01 17:41:47 | 000,447,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/07/01 17:41:47 | 000,337,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/07/01 17:41:47 | 000,213,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/07/01 16:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/07/01 14:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/07/01 00:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\Drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2013/06/28 22:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/06/03 14:38:37 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/06/03 13:39:45 | 000,650,808 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/05/31 19:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/05/03 23:34:15 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/04/29 14:54:08 | 000,043,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\irstrtdv.sys -- (irstrtdv)
DRV:64bit: - [2013/03/02 02:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/03/02 02:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/01/29 17:15:04 | 000,050,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\point64.sys -- (Point64)
DRV:64bit: - [2013/01/09 17:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2012/11/26 19:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2012/11/19 20:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2012/11/06 08:19:20 | 001,345,920 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2012/11/05 19:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2012/10/30 10:31:16 | 000,131,968 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btmaux.sys -- (btmaux)
DRV:64bit: - [2012/10/26 03:17:44 | 000,020,912 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\avgboota.sys -- (Avgboota)
DRV:64bit: - [2012/10/12 00:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/10/10 23:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2012/09/24 12:40:56 | 000,043,840 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2012/09/24 12:40:56 | 000,031,040 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2012/09/19 23:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2012/09/19 23:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2012/09/17 05:57:36 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tap0901.sys -- (tap0901)
DRV:64bit: - [2012/09/14 14:09:34 | 000,457,528 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012/09/14 14:09:32 | 000,043,832 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:64bit: - [2012/09/14 14:09:32 | 000,041,272 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Smb_driver_AMDASF.sys -- (SmbDrv)
DRV:64bit: - [2012/09/13 03:35:08 | 000,162,344 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012/09/13 03:35:08 | 000,162,344 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2012/09/06 15:14:02 | 000,273,040 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2012/08/31 09:40:24 | 000,020,800 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WirelessButtonDriver64.sys -- (WirelessButtonDriver)
DRV:64bit: - [2012/08/19 21:45:20 | 000,542,208 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2012/08/16 19:31:28 | 000,046,016 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ISCTD64.sys -- (ISCT)
DRV:64bit: - [2012/08/16 19:31:28 | 000,019,944 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\imsevent.sys -- (imsevent)
DRV:64bit: - [2012/08/16 19:31:26 | 000,020,968 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\ikbevent.sys -- (ikbevent)
DRV:64bit: - [2012/08/12 03:47:16 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2012/08/06 10:07:08 | 000,068,136 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\iBtFltCoex.sys -- (ibtfltcoex)
DRV:64bit: - [2012/07/31 00:04:12 | 000,690,832 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/07/25 21:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/25 21:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/25 21:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/25 21:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/25 21:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/25 21:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/25 21:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/25 21:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/25 21:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/25 21:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/25 21:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/25 21:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/25 21:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/25 21:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/25 21:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/25 21:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/25 21:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/25 20:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/25 20:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/25 19:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/25 18:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/25 18:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/25 18:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/25 18:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/25 18:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/25 18:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/25 18:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/25 18:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/25 18:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/25 18:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/25 18:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/25 18:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/25 18:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/25 18:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/25 18:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/25 18:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/25 18:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/25 18:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/25 18:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2012/07/25 18:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/25 18:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/25 18:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/07/02 15:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/06/19 22:40:52 | 000,342,528 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2006/11/29 14:24:49 | 000,024,064 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\wanatw64.sys -- (wanatw)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT13/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...0TR&pc=HPNTDFJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT13/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1
FF - prefs.js..keyword.URL: "http://www.bing.com/...9DF&PC=U079&q="
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.40.2: C:\Windows\system32\npDeployJava1.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files (x86)\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\suesarkis\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/10/26 14:18:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/10/26 14:18:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/11/15 18:52:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{57319509-7821-41B0-9FDF-3B58F146AE33}: c:\program files (x86)\copernic desktop search - home\firefoxconnector [2013/06/17 15:56:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/11/15 18:52:11 | 000,000,000 | ---D | M]

[2013/09/20 13:14:35 | 000,000,000 | ---D | M] (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Extensions
[2013/11/21 15:46:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\suesarkis\AppData\Roaming\Mozilla\Firefox\Profiles\lkyzsjpu.default\extensions
[2013/11/15 18:52:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/11/15 18:52:15 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/10/26 14:17:50 | 000,124,504 | ---- | M] (RealPlayer) -- C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll

========== Chrome ==========

CHR - default_search_provider: AVG Secure Search (Enabled)
CHR - default_search_provider: search_url = http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
CHR - default_search_provider: suggest_url = http://toolbar.avg.c...earchTerms}&o=1,
CHR - homepage: http://mysearch.avg....fr&d=2013-11-04 18:16:37&v=17.0.1.12&pid=safeguard&sg=0&sap=hp
CHR - Extension: Google Docs = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_1\
CHR - Extension: Google Drive = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1\
CHR - Extension: YouTube = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1\
CHR - Extension: Google Search = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1\
CHR - Extension: RealDownloader = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0\
CHR - Extension: Google Wallet = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Gmail = C:\Users\suesarkis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\

O1 HOSTS File: ([2013/11/21 14:38:57 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {41525333-2D56-3700-76A7-7A786E7484D7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {ba00b7b1-0351-477a-b948-23e3ee5a73d4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll File not found
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (AOL Toolbar) - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll File not found
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {311B58DC-A4DC-4B04-B1B5-60299AD3D803} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (AOL Toolbar) - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll File not found
O3 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\..\Toolbar\WebBrowser: (AOL Toolbar) - {BA00B7B1-0351-477A-B948-23E3EE5A73D4} - C:\Program Files (x86)\AOL Toolbar\aoltb.dll File not found
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SetDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe (Hewlett-Packard Development Company, L.P.)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [HostManager] C:\Program Files (x86)\Common Files\AOL\1374881847\ee\aolsoftware.exe (AOL Inc.)
O4 - HKLM..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001..\Run: [AOL Fast Start] C:\Program Files (x86)\AOL Desktop 9.7a\AOL.EXE (AOL Inc.)
O4 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001..\Run: [Copernic Desktop Search - Home] C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearchService.exe (Copernic Inc.)
O4 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001..\Run: [Private WiFi Client] C:\Program Files (x86)\Private Communications\PRIVATE WiFi\WiFiPrivacyClient.exe (Private Communications Corp)
O4 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4:64bit: - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O4 - Startup: C:\Users\suesarkis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyCorkboard.lnk = C:\Program Files (x86)\Corkboard\CORK.EXE (PC Dynamics, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O8 - Extra context menu item: Send to Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm ()
O9:64bit: - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\..Trusted Domains: google.com ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-2069550446-780284186-1707450264-1001\..Trusted Domains: www.walgreens,com ([]https in Trusted sites)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://zone.msn.com/...aploader_v6.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.4.1 8.8.8.8 8.8.4.4 4.2.2.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C1A05F8D-24DB-43C5-8454-FC2348130097}: DhcpNameServer = 192.168.4.1 8.8.8.8 8.8.4.4 4.2.2.6
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:64bit: SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/11/23 08:46:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2013/11/23 08:42:52 | 000,078,296 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/11/23 08:42:51 | 000,694,232 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/11/23 08:35:33 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
[2013/11/23 08:35:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel
[2013/11/22 22:03:08 | 000,096,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wfplwfs.sys
[2013/11/22 22:02:56 | 013,661,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2013/11/22 22:02:53 | 010,799,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2013/11/22 22:02:45 | 001,173,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2013/11/22 22:02:45 | 000,914,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2013/11/22 22:02:44 | 001,622,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2013/11/22 22:02:44 | 000,773,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2013/11/22 22:02:44 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2013/11/22 22:02:44 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2013/11/22 22:02:44 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll
[2013/11/22 22:02:44 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2013/11/22 22:02:44 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll
[2013/11/22 22:02:44 | 000,151,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys
[2013/11/22 22:02:44 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2013/11/22 22:02:44 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2013/11/22 22:02:44 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2013/11/22 22:02:44 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2013/11/22 22:02:44 | 000,061,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\crashdmp.sys
[2013/11/22 22:02:44 | 000,059,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2013/11/22 22:02:44 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2013/11/22 22:02:43 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2013/11/22 22:02:41 | 001,300,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2013/11/22 22:02:37 | 001,890,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2013/11/22 22:02:04 | 003,959,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/11/22 22:01:59 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/11/22 22:01:59 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/11/22 22:01:59 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/11/22 22:01:59 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/11/21 21:29:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Viewpoint
[2013/11/21 21:29:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Viewpoint
[2013/11/21 15:38:14 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/11/21 15:36:33 | 001,034,531 | ---- | C] (Thisisu) -- C:\Users\suesarkis\Desktop\JRT.exe
[2013/11/21 14:36:44 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/11/21 10:09:45 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/11/20 22:32:36 | 000,915,368 | ---- | C] (Oracle Corporation) -- C:\Users\suesarkis\Desktop\chromeinstall-7u45.exe
[2013/11/20 18:15:12 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Desktop\RK_Quarantine
[2013/11/20 17:15:10 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
[2013/11/20 13:44:28 | 000,000,000 | ---D | C] -- C:\FRST
[2013/11/20 13:41:55 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\suesarkis\Desktop\aswmbr.exe
[2013/11/20 13:39:30 | 002,237,968 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\suesarkis\Desktop\tdsskiller.exe
[2013/11/20 13:33:22 | 001,957,964 | ---- | C] (Farbar) -- C:\Users\suesarkis\Desktop\FRST64.exe
[2013/11/15 18:52:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/11/13 21:30:54 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\NovemberChargeFail
[2013/10/29 09:40:40 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY
[2013/10/26 19:10:12 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\Documents\image001
[2013/10/26 14:22:48 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013/10/26 14:22:45 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013/10/26 14:22:45 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013/10/26 14:22:45 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013/10/26 14:19:35 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\RealNetworks
[2013/10/26 14:18:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RealNetworks
[2013/10/26 14:18:54 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2013/10/26 14:18:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2013/10/26 14:18:00 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013/10/26 14:17:37 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013/10/26 14:17:37 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013/10/26 14:17:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2013/10/26 14:17:31 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/10/26 14:16:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2013/10/26 14:16:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/10/26 14:15:42 | 000,000,000 | ---D | C] -- C:\Users\suesarkis\AppData\Roaming\Real
[2013/10/26 14:15:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/10/26 14:14:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2013/10/24 22:16:47 | 001,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2013/10/24 22:16:47 | 001,245,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2013/10/24 22:16:47 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll
[2013/10/24 22:16:47 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
[2013/10/24 22:16:47 | 000,437,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll
[2013/10/24 22:16:47 | 000,399,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
[2013/10/24 22:16:35 | 010,116,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2013/10/24 22:16:35 | 008,858,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2013/10/24 22:16:34 | 001,125,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2013/10/24 22:16:32 | 002,304,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2013/10/24 22:16:32 | 002,035,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2013/10/24 22:16:32 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSync.dll
[2013/10/24 22:16:32 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mbsmsapi.dll
[2013/10/24 22:16:32 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2013/10/24 22:16:31 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSync.dll
[2013/10/24 22:16:31 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mbsmsapi.dll
[2013/10/24 22:16:31 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncInfo.dll
[2013/10/24 22:14:39 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/10/24 22:14:39 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2013/10/24 22:14:38 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/10/24 22:14:38 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2013/10/24 22:14:38 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/10/24 22:14:37 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll
[2013/10/24 22:14:37 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/10/24 22:14:37 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/10/24 22:14:35 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/10/24 22:13:46 | 000,652,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2013/10/24 22:08:29 | 000,054,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2013/10/24 22:08:27 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2013/10/24 22:08:27 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys
[2013/10/24 22:08:25 | 000,447,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2013/10/24 22:08:25 | 000,362,496 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2013/10/24 22:08:25 | 000,337,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS
[2013/10/24 22:08:25 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2013/10/24 22:08:25 | 000,213,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UCX01000.SYS
[2013/10/24 22:08:25 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2013/10/24 22:08:25 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2013/10/24 22:08:24 | 000,498,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2013/10/24 22:08:24 | 000,021,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2013/10/24 22:08:18 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2013/10/24 22:08:18 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/11/23 13:32:44 | 000,000,922 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/23 13:12:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/23 08:44:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/23 08:43:25 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/23 08:42:29 | 000,034,752 | ---- | M] () -- C:\Windows\SysNative\drivers\WPRO_41_2001.sys
[2013/11/23 08:42:25 | 000,017,408 | ---- | M] () -- C:\Windows\SysWow64\rpcnetp.dll
[2013/11/23 08:42:24 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWow64\rpcnet.dll
[2013/11/23 08:42:12 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013/11/23 08:42:10 | 2489,966,591 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/23 08:41:53 | 000,017,408 | ---- | M] () -- C:\Windows\SysWow64\rpcnetp.exe
[2013/11/23 08:41:53 | 000,017,408 | ---- | M] () -- C:\Windows\SysNative\rpcnetp.exe
[2013/11/23 08:41:51 | 000,029,336 | ---- | M] () -- C:\Windows\SysNative\wpbbin.exe
[2013/11/22 19:45:45 | 000,069,792 | ---- | M] (Absolute Software Corp.) -- C:\Windows\SysWow64\rpcnet.exe
[2013/11/22 18:09:06 | 000,000,369 | -H-- | M] () -- C:\IPH.PH
[2013/11/22 16:59:14 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForsuesarkis.job
[2013/11/22 09:55:21 | 000,003,820 | ---- | M] () -- C:\Users\suesarkis\Documents\Vons 11-22-2013.wpd
[2013/11/22 09:54:06 | 000,002,654 | ---- | M] () -- C:\Users\suesarkis\Documents\Albertsonss 11-22-2013.wpd
[2013/11/21 17:53:32 | 002,121,436 | ---- | M] () -- C:\Users\suesarkis\Documents\20131121_122849.jpg
[2013/11/21 15:36:33 | 001,034,531 | ---- | M] (Thisisu) -- C:\Users\suesarkis\Desktop\JRT.exe
[2013/11/21 14:41:46 | 000,016,152 | ---- | M] () -- C:\Windows\SysNative\drivers\SWDUMon.sys
[2013/11/21 14:38:57 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2013/11/21 10:09:18 | 001,085,542 | ---- | M] () -- C:\Users\suesarkis\Desktop\adwcleaner.exe
[2013/11/20 22:32:37 | 000,915,368 | ---- | M] (Oracle Corporation) -- C:\Users\suesarkis\Desktop\chromeinstall-7u45.exe
[2013/11/20 17:54:44 | 003,679,744 | ---- | M] () -- C:\Users\suesarkis\Desktop\RogueKiller.exe
[2013/11/20 17:23:36 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\suesarkis\Desktop\OTL.exe
[2013/11/20 16:39:19 | 000,000,512 | ---- | M] () -- C:\Users\suesarkis\Desktop\MBR.dat
[2013/11/20 13:42:05 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\suesarkis\Desktop\aswmbr.exe
[2013/11/20 13:39:35 | 002,237,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\suesarkis\Desktop\tdsskiller.exe
[2013/11/20 13:33:26 | 001,957,964 | ---- | M] (Farbar) -- C:\Users\suesarkis\Desktop\FRST64.exe
[2013/11/20 12:46:06 | 000,001,457 | ---- | M] () -- C:\Users\suesarkis\Desktop\HijackThis.exe - Shortcut.lnk
[2013/11/20 11:30:49 | 000,942,994 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/11/20 11:30:49 | 000,784,932 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/11/20 11:30:49 | 000,158,904 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/11/20 08:02:06 | 000,003,723 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
[2013/11/20 08:01:40 | 000,046,368 | ---- | M] (AVG Technologies) -- C:\Windows\SysNative\drivers\avgtpx64.sys
[2013/11/16 21:15:24 | 000,178,252 | ---- | M] () -- C:\Users\suesarkis\Documents\=windows-1252Qrangers_May_be_Spreading_=AB_CBS_DC=2Ehtm=
[2013/11/16 12:10:55 | 000,002,279 | ---- | M] () -- C:\Users\suesarkis\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/11/16 12:10:54 | 000,002,255 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/16 10:54:01 | 000,045,328 | ---- | M] () -- C:\Users\suesarkis\Documents\teewww.nrcc.org-NationalRepublicanCongressionalCommittee.htm
[2013/11/14 21:04:13 | 000,039,287 | ---- | M] () -- C:\Users\suesarkis\Documents\Albertson list.wpd
[2013/11/14 20:42:53 | 000,004,150 | ---- | M] () -- C:\Users\suesarkis\Documents\Vons List.wpd
[2013/11/14 20:38:17 | 000,047,289 | ---- | M] () -- C:\Users\suesarkis\Documents\Ralphs current.wpd
[2013/11/13 21:30:54 | 000,056,513 | ---- | M] () -- C:\Users\suesarkis\Documents\NovemberChargeFail.zip
[2013/11/08 07:55:38 | 007,109,105 | ---- | M] () -- C:\Users\suesarkis\Documents\You_Picked_a_Fine_Time.wmv
[2013/11/06 15:23:38 | 000,028,940 | ---- | M] () -- C:\Users\suesarkis\Documents\1450237_10200924221575685_1328301829_n.jpg
[2013/11/05 14:58:57 | 000,694,232 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/11/05 14:58:57 | 000,078,296 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/10/31 08:06:58 | 001,177,088 | ---- | M] () -- C:\Users\suesarkis\Documents\AFewMoreCritters.pps
[2013/10/30 12:12:51 | 000,026,120 | ---- | M] () -- C:\Users\suesarkis\Documents\1173823_10200555030254274_1340834328_n
[2013/10/29 09:40:40 | 000,109,052 | ---- | M] () -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY.zip
[2013/10/29 08:27:20 | 000,002,985 | ---- | M] () -- C:\Users\suesarkis\Documents\Mike -Unless I hear back differently.wpd
[2013/10/28 21:03:04 | 000,043,520 | ---- | M] () -- C:\Users\suesarkis\Documents\Mr
[2013/10/28 19:55:31 | 000,043,520 | ---- | M] () -- C:\Users\suesarkis\Documents\Pirouzians case
[2013/10/27 16:01:02 | 000,371,582 | ---- | M] () -- C:\Users\suesarkis\Documents\GLN1012813GPDOpechee.pdf
[2013/10/27 11:40:33 | 000,061,678 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JPR.{PB
[2013/10/27 11:40:33 | 000,012,358 | ---- | M] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JCM.{PB
[2013/10/27 11:26:29 | 356,947,576 | ---- | M] () -- C:\Users\suesarkis\Desktop\Backup.reg
[2013/10/26 19:10:11 | 000,870,099 | ---- | M] () -- C:\Users\suesarkis\Documents\image001.zip
[2013/10/26 14:19:09 | 000,001,264 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013/10/26 14:18:00 | 000,201,872 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013/10/26 14:17:37 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013/10/26 14:17:37 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013/10/26 14:17:31 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2013/10/26 14:12:53 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[1 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/11/22 09:54:06 | 000,002,654 | ---- | C] () -- C:\Users\suesarkis\Documents\Albertsonss 11-22-2013.wpd
[2013/11/22 09:37:47 | 000,003,820 | ---- | C] () -- C:\Users\suesarkis\Documents\Vons 11-22-2013.wpd
[2013/11/21 17:53:06 | 002,121,436 | ---- | C] () -- C:\Users\suesarkis\Documents\20131121_122849.jpg
[2013/11/21 10:09:08 | 001,085,542 | ---- | C] () -- C:\Users\suesarkis\Desktop\adwcleaner.exe
[2013/11/20 17:53:23 | 003,679,744 | ---- | C] () -- C:\Users\suesarkis\Desktop\RogueKiller.exe
[2013/11/20 14:21:10 | 000,000,512 | ---- | C] () -- C:\Users\suesarkis\Desktop\MBR.dat
[2013/11/20 12:46:06 | 000,001,457 | ---- | C] () -- C:\Users\suesarkis\Desktop\HijackThis.exe - Shortcut.lnk
[2013/11/17 21:29:55 | 000,000,369 | -H-- | C] () -- C:\IPH.PH
[2013/11/16 21:15:21 | 000,178,252 | ---- | C] () -- C:\Users\suesarkis\Documents\=windows-1252Qrangers_May_be_Spreading_=AB_CBS_DC=2Ehtm=
[2013/11/16 10:54:00 | 000,045,328 | ---- | C] () -- C:\Users\suesarkis\Documents\teewww.nrcc.org-NationalRepublicanCongressionalCommittee.htm
[2013/11/14 21:04:13 | 000,039,287 | ---- | C] () -- C:\Users\suesarkis\Documents\Albertson list.wpd
[2013/11/14 20:42:53 | 000,004,150 | ---- | C] () -- C:\Users\suesarkis\Documents\Vons List.wpd
[2013/11/14 20:38:17 | 000,047,289 | ---- | C] () -- C:\Users\suesarkis\Documents\Ralphs current.wpd
[2013/11/13 21:30:53 | 000,056,513 | ---- | C] () -- C:\Users\suesarkis\Documents\NovemberChargeFail.zip
[2013/11/08 07:54:51 | 007,109,105 | ---- | C] () -- C:\Users\suesarkis\Documents\You_Picked_a_Fine_Time.wmv
[2013/11/06 15:23:37 | 000,028,940 | ---- | C] () -- C:\Users\suesarkis\Documents\1450237_10200924221575685_1328301829_n.jpg
[2013/10/31 08:05:42 | 001,177,088 | ---- | C] () -- C:\Users\suesarkis\Documents\AFewMoreCritters.pps
[2013/10/30 12:12:50 | 000,026,120 | ---- | C] () -- C:\Users\suesarkis\Documents\1173823_10200555030254274_1340834328_n
[2013/10/29 09:40:39 | 000,109,052 | ---- | C] () -- C:\Users\suesarkis\Documents\WONDERFULGRADUATIONMEMORY.zip
[2013/10/29 08:04:56 | 000,002,985 | ---- | C] () -- C:\Users\suesarkis\Documents\Mike -Unless I hear back differently.wpd
[2013/10/28 21:03:03 | 000,043,520 | ---- | C] () -- C:\Users\suesarkis\Documents\Mr
[2013/10/28 19:55:30 | 000,043,520 | ---- | C] () -- C:\Users\suesarkis\Documents\Pirouzians case
[2013/10/27 16:00:59 | 000,371,582 | ---- | C] () -- C:\Users\suesarkis\Documents\GLN1012813GPDOpechee.pdf
[2013/10/27 11:26:09 | 356,947,576 | ---- | C] () -- C:\Users\suesarkis\Desktop\Backup.reg
[2013/10/26 19:10:06 | 000,870,099 | ---- | C] () -- C:\Users\suesarkis\Documents\image001.zip
[2013/10/26 14:19:07 | 000,001,264 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
[2013/10/24 22:16:31 | 000,386,923 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2013/10/24 14:07:36 | 000,002,058 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[2013/10/24 13:18:26 | 000,003,505 | ---- | C] () -- C:\Windows\wininit.ini
[2013/10/24 12:12:33 | 000,000,258 | RHS- | C] () -- C:\Users\suesarkis\ntuser.pol
[2013/09/28 12:24:11 | 000,003,723 | ---- | C] () -- C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
[2013/09/25 09:06:38 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\rpcnetp.dll
[2013/09/12 08:49:08 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/07/26 15:26:30 | 000,000,006 | ---- | C] () -- C:\Windows\msoffice.ini
[2013/07/16 22:05:15 | 000,007,607 | ---- | C] () -- C:\Users\suesarkis\AppData\Local\resmon.resmoncfg
[2013/06/03 14:39:25 | 000,598,384 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin
[2013/06/03 14:39:15 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013/06/03 14:39:13 | 000,754,652 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin
[2013/05/02 11:48:49 | 000,061,678 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JPR.{PB
[2013/05/02 11:48:49 | 000,012,358 | ---- | C] () -- C:\Users\suesarkis\AppData\Roaming\PFP110JCM.{PB
[2013/05/02 11:17:48 | 000,000,264 | ---- | C] () -- C:\Windows\SysWow64\BDEMERGE.INI
[2013/04/14 12:49:52 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat
[2013/04/14 12:03:16 | 000,017,408 | ---- | C] () -- C:\Windows\SysWow64\rpcnetp.exe
[2012/08/03 14:40:09 | 000,959,336 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/07/26 00:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012/07/26 00:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012/07/25 23:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012/07/25 17:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012/07/25 12:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012/07/25 12:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012/07/25 12:22:54 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2012/07/25 12:22:54 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2012/07/25 12:22:54 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2012/06/02 06:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2012/04/20 13:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2012/10/31 17:24:30 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/08/01 22:28:20 | 019,758,080 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/08/01 21:08:10 | 017,561,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/25 19:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/25 19:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/25 19:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/01/14 09:17:09 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Synaptics
[2013/07/30 07:25:02 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013/08/22 08:34:08 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG
[2013/07/13 11:11:20 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\AVG2013
[2013/04/14 12:11:50 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\Synaptics
[2013/07/13 11:10:26 | 000,000,000 | ---D | M] -- C:\Users\suesarkis\AppData\Roaming\TuneUp Software

========== Purity Check ==========

========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2012/09/19 22:30:35 | 000,190,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2013/03/05 22:29:15 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2012/07/25 19:08:16 | 000,094,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2012/07/25 19:07:01 | 000,826,368 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2013/10/10 01:20:43 | 000,723,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2012/07/25 19:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV - [2012/07/25 19:18:47 | 000,043,520 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/25 19:05:36 | 000,507,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2012/07/25 19:18:26 | 000,394,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2012/07/25 19:05:12 | 000,134,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2013/07/12 22:16:06 | 000,068,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2012/07/25 19:07:06 | 000,817,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2012/10/10 21:43:40 | 000,331,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2012/10/10 21:06:02 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2012/09/19 22:31:07 | 000,210,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2012/07/25 19:05:34 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:64bit: - [2012/07/25 19:05:46 | 000,036,352 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2012/07/25 19:18:34 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2012/07/25 19:05:51 | 000,438,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2012/07/25 19:05:51 | 000,474,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2012/07/25 19:07:25 | 000,502,784 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2012/09/19 22:31:57 | 000,080,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2012/07/25 19:06:34 | 000,255,488 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2013/05/03 22:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2012/09/19 22:32:17 | 000,356,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2012/07/25 21:26:47 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2012/09/19 22:33:04 | 000,107,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2012/07/25 19:08:47 | 000,769,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
No service found with a name of ProtectedStorage
No service found with a name of EMDMgmt
SRV:64bit: - [2012/07/25 19:07:03 | 000,099,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2012/07/25 19:07:03 | 000,358,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2012/07/25 19:07:06 | 000,817,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2012/07/25 19:07:09 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2012/09/19 22:33:39 | 000,035,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2013/04/08 20:51:41 | 000,099,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2012/07/25 19:07:23 | 000,309,248 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2012/07/25 19:07:16 | 000,565,760 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2012/07/25 19:19:59 | 000,506,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2013/04/08 20:50:39 | 001,285,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2012/07/25 19:07:28 | 000,305,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2012/07/25 19:20:06 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2012/07/25 19:07:30 | 000,047,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2012/07/25 19:07:00 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2013/05/03 22:59:51 | 001,483,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2013/06/01 01:19:42 | 000,785,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:64bit: - [2013/04/08 20:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2012/07/25 19:07:08 | 000,148,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:64bit: - [2013/07/01 16:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2012/07/25 19:07:47 | 001,731,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:64bit: - [2012/10/10 21:44:35 | 000,904,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2012/07/25 19:07:47 | 000,570,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2012/07/25 19:08:34 | 000,124,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2012/07/25 19:20:50 | 000,062,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2012/07/25 19:08:06 | 000,219,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2013/09/13 14:33:54 | 003,279,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2012/07/25 19:05:31 | 000,252,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2012/11/05 20:19:59 | 001,386,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:64bit: - [2012/07/25 19:08:02 | 000,191,488 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< End of report >

#14
Essexboy

Posted 23 November 2013 - 04:16 PM

GeekU Moderator

Retired Staff
69,964 posts

OK first we will download and update IE to version 10, to get Version 11 you will need windows 8.1 which you will need to update to at some stage

Download the 64 bit version of IE10 from here and install http://windows.micro...dwide-languages

Once installed the check the sites again and let me know if they now function

#15
sweetsuzee

Posted 23 November 2013 - 05:12 PM

Member

Topic Starter
Member
55 posts

Sorry to say but that didn't change anything either. However, I must admit that the nuwavepic.com site actually stayed open for about 8 seconds in AOL before it disappeared. Although the video was not visible, I did see the text and graphics. that's the most I've seen in a while. I am having difficulty understanding what could have chagned so drastically since a few months ago I was able to visit both sites, as well as all others, without any difficulty. Also, ther was no option at th elink provided for Windows 8, 64 bit so I selected Windows 7, 64 bit as the only other option didn't feel comfortable. Since I'm still not over the culture shock of Windows 8, should I go ahead and upgrade and then install the IE ver 11?