Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

cant download any files and cant find the problem with my internet it


  • This topic is locked This topic is locked

#1
tgsaxon

tgsaxon

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 3/16/2014 1:39:39 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\cary\AppData\Local\Microsoft\Windows\INetCache\IE\W2H4VFMF
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.75 Gb Total Physical Memory | 1.52 Gb Available Physical Memory | 40.43% Memory free
4.37 Gb Paging File | 1.67 Gb Available in Paging File | 38.15% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.91 Gb Total Space | 194.88 Gb Free Space | 43.22% Space Free | Partition Type: NTFS
Drive D: | 4.38 Gb Total Space | 0.06 Gb Free Space | 1.34% Space Free | Partition Type: UDF

Computer Name: CARY-PC | User Name: cary | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/03/16 13:39:29 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\cary\AppData\Local\Microsoft\Windows\INetCache\IE\W2H4VFMF\OTL.exe
PRC - [2014/03/14 18:08:41 | 000,527,872 | ---- | M] (hdplus) -- C:\Program Files (x86)\hdshop\hdshop-bg.exe
PRC - [2014/03/14 18:08:37 | 000,527,872 | ---- | M] (freeven) -- C:\Program Files (x86)\media enhance\media enhance-bg.exe
PRC - [2014/03/14 15:40:06 | 002,153,984 | ---- | M] (PC Gizmos) -- C:\Users\cary\AppData\Roaming\PC-Gizmos\SoundcloudDLD-PC_173913.en_84.exe
PRC - [2014/02/19 13:17:38 | 001,387,328 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
PRC - [2014/02/19 13:13:32 | 000,807,800 | ---- | M] (Spigot, Inc.) -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
PRC - [2014/02/17 02:02:58 | 000,223,112 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
PRC - [2013/12/20 23:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/11/23 14:34:38 | 000,131,912 | ---- | M] (Desura Pty Ltd) -- C:\Program Files (x86)\Common Files\Desura\desura_service.exe
PRC - [2013/11/23 14:34:37 | 002,529,096 | ---- | M] (Desura Pty Ltd) -- C:\Program Files (x86)\Desura\desura.exe
PRC - [2013/10/07 08:12:14 | 002,404,376 | ---- | M] () -- C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
PRC - [2013/06/22 16:22:44 | 034,163,008 | ---- | M] (SlimWare Utilities, Inc.) -- C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
PRC - [2012/12/14 16:42:22 | 000,316,360 | ---- | M] (Azureus Software, Inc) -- C:\Program Files (x86)\Vuze\Azureus.exe
PRC - [2008/11/09 13:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe


========== Modules (No Company Name) ==========

MOD - [2013/11/23 14:34:49 | 014,289,408 | ---- | M] () -- C:\Program Files (x86)\Desura\bin\wxmsw290u_vc_desura.dll
MOD - [2013/11/23 14:34:41 | 018,300,416 | ---- | M] () -- C:\Program Files (x86)\Desura\bin\cef_desura.dll
MOD - [2013/11/23 14:34:39 | 001,577,761 | ---- | M] () -- C:\Program Files (x86)\Desura\bin\avcodec-53.dll
MOD - [2013/11/23 14:34:39 | 000,213,022 | ---- | M] () -- C:\Program Files (x86)\Desura\bin\avformat-53.dll
MOD - [2013/11/23 14:34:39 | 000,134,035 | ---- | M] () -- C:\Program Files (x86)\Desura\bin\avutil-51.dll
MOD - [2013/10/07 08:12:14 | 002,404,376 | ---- | M] () -- C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
MOD - [2012/12/14 16:42:22 | 000,077,768 | ---- | M] () -- C:\Users\cary\AppData\Roaming\Azureus\plugins\azitunes\jacob-1.17-M2-x86.dll
MOD - [2012/12/14 16:42:22 | 000,053,160 | ---- | M] () -- C:\Program Files (x86)\Vuze\aereg.dll
MOD - [2012/12/14 16:42:22 | 000,019,368 | ---- | M] () -- C:\Users\cary\AppData\Roaming\Azureus\plugins\azitunes\libProcessAccess.dll


========== Services (SafeList) ==========

SRV:64bit: - [2014/02/06 03:48:45 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/01/27 13:45:12 | 000,710,976 | ---- | M] () [Auto | Running] -- C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher64.exe -- (Level Quality Watcher)
SRV:64bit: - [2013/12/07 09:46:16 | 013,368,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\vmms.exe -- (vmms)
SRV:64bit: - [2013/12/07 09:46:16 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2013/12/07 09:46:16 | 000,533,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2013/12/07 09:41:45 | 000,279,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dsrolesrv.dll -- (DsRoleSvc)
SRV:64bit: - [2013/12/07 09:41:45 | 000,146,944 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tlntsvr.exe -- (TlntSvr)
SRV:64bit: - [2013/12/07 09:41:43 | 000,034,816 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\iprip.dll -- (iprip)
SRV:64bit: - [2013/12/07 09:41:37 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\inetsrv\w3logsvc.dll -- (w3logsvc)
SRV:64bit: - [2013/12/07 09:41:35 | 000,050,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\snmp.exe -- (SNMP)
SRV:64bit: - [2013/12/07 09:41:33 | 000,005,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe -- (c2wts)
SRV:64bit: - [2013/12/07 09:41:26 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mqsvc.exe -- (MSMQ)
SRV:64bit: - [2013/11/27 08:36:30 | 003,395,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/11/27 02:17:40 | 000,263,168 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/11/22 21:50:00 | 000,282,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/11/07 20:41:17 | 001,302,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2013/10/30 17:29:53 | 000,348,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2013/10/30 17:29:53 | 000,023,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/09/29 21:03:25 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/09/29 21:03:24 | 001,555,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/09/29 21:03:23 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2013/09/29 20:51:09 | 000,183,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2013/09/29 20:51:09 | 000,090,464 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
SRV:64bit: - [2013/08/22 05:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013/08/22 04:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 04:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 04:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 04:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 04:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 03:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 03:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 03:04:53 | 000,716,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2013/08/22 03:03:39 | 000,011,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\TCPSVCS.EXE -- (simptcp)
SRV:64bit: - [2013/08/22 03:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 02:59:26 | 000,832,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2013/08/22 02:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 02:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 02:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 02:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 02:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 02:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 02:40:14 | 000,398,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2013/08/22 02:39:33 | 000,198,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/08/22 02:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 02:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2014/03/12 12:12:20 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/02/19 13:13:32 | 000,807,800 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2013/12/20 23:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/11 12:40:36 | 000,569,768 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/12/07 09:41:47 | 000,475,648 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2013/12/07 09:41:47 | 000,475,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2013/12/07 09:41:35 | 000,066,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\w3logsvc.dll -- (w3logsvc)
SRV - [2013/12/07 09:41:32 | 000,046,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\snmp.exe -- (SNMP)
SRV - [2013/12/07 09:41:30 | 000,062,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2013/11/23 14:34:38 | 000,131,912 | ---- | M] (Desura Pty Ltd) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Desura\desura_service.exe -- (Desura Install Service)
SRV - [2013/09/29 21:03:22 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/08/22 05:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/21 20:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/21 19:54:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\TCPSVCS.EXE -- (simptcp)
SRV - [2013/08/21 19:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2008/11/09 13:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014/03/15 20:23:09 | 000,016,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SWDUMon.sys -- (SWDUMon)
DRV:64bit: - [2013/12/07 09:46:16 | 000,686,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmswitch.sys -- (VMSVSP)
DRV:64bit: - [2013/12/07 09:46:16 | 000,686,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmswitch.sys -- (VMSVSF)
DRV:64bit: - [2013/12/07 09:46:16 | 000,686,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmswitch.sys -- (VMSP)
DRV:64bit: - [2013/12/07 09:46:16 | 000,686,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vmswitch.sys -- (VMSMP)
DRV:64bit: - [2013/12/07 09:46:16 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2013/12/07 09:44:08 | 000,136,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/12/07 09:41:45 | 000,173,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mqac.sys -- (MQAC)
DRV:64bit: - [2013/12/07 09:41:44 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\passthruparser.sys -- (passthruparser)
DRV:64bit: - [2013/12/07 09:41:38 | 000,068,960 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\hvservice.sys -- (hvservice)
DRV:64bit: - [2013/12/07 09:41:37 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pvhdparser.sys -- (pvhdparser)
DRV:64bit: - [2013/12/07 09:41:32 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lunparser.sys -- (lunparser)
DRV:64bit: - [2013/12/07 09:41:28 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdparser.sys -- (vhdparser)
DRV:64bit: - [2013/11/10 19:48:41 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2013/11/09 04:55:11 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/11/01 04:39:53 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/10/30 17:58:59 | 000,372,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/10/30 17:29:36 | 000,236,888 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/10/30 17:29:36 | 000,124,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2013/10/30 17:28:47 | 000,035,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/10/25 18:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2013/09/29 21:03:22 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/09/29 21:03:22 | 000,236,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/09/29 21:03:22 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2013/09/29 20:51:11 | 000,022,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kbldfltr.sys -- (kbldfltr)
DRV:64bit: - [2013/09/29 20:51:09 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013/09/29 20:51:00 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/09/29 20:50:59 | 000,220,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
DRV:64bit: - [2013/09/29 20:50:59 | 000,129,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2013/09/29 20:50:59 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2013/09/29 20:50:59 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2013/08/22 06:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 06:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 05:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 05:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 05:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 05:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 05:43:48 | 000,146,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/08/22 05:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 05:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 05:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 05:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 05:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 05:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 05:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 05:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 05:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 05:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 05:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 05:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 05:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 05:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 05:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 05:43:33 | 000,189,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/08/22 05:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 05:43:32 | 000,078,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2013/08/22 05:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 05:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 05:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 05:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 05:41:08 | 000,054,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2013/08/22 05:39:44 | 000,377,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2013/08/22 05:39:15 | 000,924,512 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2013/08/22 05:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 05:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 05:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 04:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 04:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 04:39:28 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2013/08/22 04:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 04:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 04:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 04:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 04:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 04:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 04:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 04:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 04:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 04:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 04:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 04:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 04:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 04:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 04:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 04:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 04:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 04:36:23 | 000,144,384 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rmcast.sys -- (RMCAST)
DRV:64bit: - [2013/08/22 04:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 04:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 04:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 01:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/12 16:25:46 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/09 17:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 11:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 12:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 07:45:14 | 000,425,984 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2013/03/31 18:52:04 | 000,080,552 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2013/03/31 18:52:04 | 000,026,280 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/06/19 07:09:14 | 000,360,448 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/06/19 07:05:46 | 011,926,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.dosear...q={searchTerms}
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.dosear...q={searchTerms}
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.dosear...q={searchTerms}
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snapdo.c...Date=09/11/2013
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{7f5cae72-31fd-4f9e-9b93-686e9a0e374f}: "URL" = http://search.tb.ask...r={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.c...Date=09/11/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.c...Date=09/11/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.c...Date=09/11/2013
IE - HKCU\..\URLSearchHook: {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\8.8\vuzeToolbarIE.dll (Spigot, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
IE - HKCU\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://search.condui...rchTerms}&SSPV=
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE11SR
IE - HKCU\..\SearchScopes\{4875C4FA-74F3-4AA4-85F4-51D9BC24B877}: "URL" = http://search.yahoo....p={searchTerms}
IE - HKCU\..\SearchScopes\{A896873C-608B-4A87-B012-87CF87174A88}: "URL" = http://search.yahoo....46,19890,0,25,0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\cary\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:29:01 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\FIREFOX\EXTENSIONS\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\FIREFOX\EXTENSIONS\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\FIREFOX\EXTENSIONS\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:29:01 | 000,000,000 | ---D | M]

[2013/12/11 03:29:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\cary\AppData\Roaming\Mozilla\Extensions
[2013/12/11 03:29:01 | 000,000,000 | ---D | M] (Free Games (4357)) -- C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected]
[2013/12/11 03:09:40 | 000,000,000 | ---D | M] (SeeSimilar02) -- C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected]
[2013/12/11 03:09:40 | 000,000,000 | ---D | M] (Speed Test (4354)) -- C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected]
[2014/01/07 04:40:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions

========== Chrome ==========

CHR - Extension: No name found = C:\Users\cary\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfaifkapfifnanhhiidacmhldddojchn\1.0_0\
CHR - Extension: No name found = C:\Users\cary\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmefeobenkkfehkedambkbkichojonc\2.1\

O1 HOSTS File: ([2013/08/22 06:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (media enhance) - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\media enhance\media enhance-bho64.dll (freeven)
O2:64bit: - BHO: (hdshop) - {11111111-1111-1111-1111-110511281100} - C:\Program Files (x86)\hdshop\hdshop-bho64.dll (hdplus)
O2 - BHO: (Vuze Remote Toolbar) - {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\8.8\vuzeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (media enhance) - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\media enhance\media enhance-bho.dll (freeven)
O2 - BHO: (hdshop) - {11111111-1111-1111-1111-110511281100} - C:\Program Files (x86)\hdshop\hdshop-bho.dll (hdplus)
O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No CLSID value found.
O2 - BHO: (SoundCloud Downloader) - {A817C286-3D6B-4ECD-A99C-E44E50DBC523} - C:\Users\cary\AppData\Roaming\PC-Gizmos\PCGizmosBHO.dll (PC Gizmos)
O3:64bit: - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\8.8\vuzeToolbarIE64.dll (Spigot, Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\8.8\vuzeToolbarIE.dll (Spigot, Inc.)
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [BrowserSafeguard] "C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe" File not found
O4 - HKLM..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe File not found
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe File not found
O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [ShopAtHomeUpdater] C:\Users\cary\AppData\Roaming\ShopAtHome\ShopAtHomeHelper\ShopAtHomeUpdater.exe File not found
O4 - HKLM..\Run: [ShopAtHomeWatcher] C:\Users\cary\AppData\Roaming\ShopAtHome\ShopAtHomeHelper\ShopAtHomeWatcher.exe File not found
O4 - HKLM..\Run: [Starter] C:\Program Files (x86)\Driver-Soft\DriverGenius\StarterW3i.exe File not found
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe ()
O4 - HKCU..\Run: [Desura] C:\Program Files (x86)\Desura\desura.exe (Desura Pty Ltd)
O4 - HKCU..\Run: [Driver Pro] C:\Program Files (x86)\Driver Pro\DPLauncher.exe (PC Utilities Pro)
O4 - HKCU..\Run: [MobileAppSync] "C:\Program Files (x86)\Mobile App Sync\D2MClient.exe" File not found
O4 - HKCU..\Run: [NextLive] C:\Users\cary\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe)
O4 - HKCU..\Run: [OutfoxTV] C:\Program Files\OutfoxTV\OutfoxTV\DesktopContainer.exe File not found
O4 - HKCU..\Run: [PC_GIZMOS] "C:\Users\cary\AppData\Roaming\PC-Gizmos\SoundcloudDLD-PC_173913.en_84.exe" --update File not found
O4 - HKCU..\Run: [TBHostSupport] C:\Users\cary\AppData\Local\TBHostSupport\TBHostSupport.dll (Conduit Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DFCE1038-1464-4C77-B242-0481420E8A15}: DhcpNameServer = 192.168.0.1
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.0.12\ViProtocol.dll File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{58f64a45-9a8b-11e3-beb0-d067e522bda1}\Shell - "" = AutoRun
O33 - MountPoints2\{58f64a45-9a8b-11e3-beb0-d067e522bda1}\Shell\AutoRun\command - "" = "I:\Windows\AutoRun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/03/16 13:12:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2014/03/16 13:12:22 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2014/03/16 03:30:41 | 000,000,000 | ---D | C] -- C:\Program Files\SavingsBull
[2014/03/15 23:43:31 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Roaming\Wizards of the Coast
[2014/03/15 23:43:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wizards of the Coast
[2014/03/15 23:43:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wizards of the Coast
[2014/03/15 23:01:21 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\WeatherAlerts
[2014/03/15 14:10:57 | 000,000,000 | ---D | C] -- C:\Users\cary\Documents\Mount&Blade Warband Savegames
[2014/03/15 14:09:19 | 000,000,000 | ---D | C] -- C:\Users\cary\Documents\Mount&Blade Warband
[2014/03/15 14:09:13 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
[2014/03/15 14:07:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mount&Blade Warband
[2014/03/15 11:06:12 | 000,000,000 | R--D | C] -- C:\Users\cary\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/03/14 18:15:52 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\Tuguu_SL
[2014/03/14 18:08:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AnyProtectEx
[2014/03/14 18:08:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\media enhance
[2014/03/14 18:07:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\hdshop
[2014/03/14 15:39:07 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Roaming\PC-Gizmos
[2014/03/10 17:20:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cache
[2014/03/10 16:51:04 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ADAM
[2014/03/10 02:59:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lightspark 0.5.3-git
[2014/03/10 02:56:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iWebar
[2014/03/10 02:56:27 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\Installer
[2014/03/10 02:56:12 | 000,000,000 | ---D | C] -- C:\ProgramData\ShopperPro
[2014/03/10 02:56:06 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\ShopperPro
[2014/03/10 02:56:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ShopperPro
[2014/03/10 02:55:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\YTDownloader
[2014/03/10 02:55:16 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\CrashRpt
[2014/03/09 23:11:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Plus-HD-9.1
[2014/03/09 23:05:14 | 000,000,000 | ---D | C] -- C:\Support
[2014/03/09 23:05:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free_soft_to_day
[2014/03/09 23:05:08 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\fst_us_9
[2014/03/09 23:05:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\fst_us_9
[2014/03/09 23:05:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Supporter
[2014/03/09 23:04:30 | 000,000,000 | ---D | C] -- C:\ProgramData\SaveClicker
[2014/03/09 23:04:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SaveClicker
[2014/03/09 23:04:24 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\Torch
[2014/03/09 23:04:23 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\Comodo
[2014/03/08 16:43:11 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\Diagnostics
[2014/03/08 11:28:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[2014/03/05 09:56:13 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Roaming\Oracle
[2014/03/05 09:54:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\McAfee Security Scan
[2014/03/04 20:31:47 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\Deployment
[2014/02/24 07:23:36 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Roaming\vlc
[2014/02/24 04:17:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2014/02/21 17:03:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vuze Remote Toolbar
[2014/02/21 17:03:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Application Updater
[2014/02/20 16:32:41 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/02/17 14:56:08 | 000,000,000 | ---D | C] -- C:\fd9533bc39c2c8326b193c45ee10
[2014/02/17 14:55:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BitLord 2
[2014/02/17 00:22:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vuze
[2014/02/17 00:20:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\SearchProtect
[2014/02/16 02:00:25 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Roaming\ShopAtHome
[2014/02/15 15:23:58 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan
[2013/12/06 16:28:25 | 000,716,360 | ---- | C] (MindSpark) -- C:\Program Files (x86)\82Uninstall PhotoFriendzy.dll
[2 C:\Users\cary\AppData\Local\*.tmp files -> C:\Users\cary\AppData\Local\*.tmp -> ]
[1 C:\Users\cary\*.tmp files -> C:\Users\cary\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/03/16 13:12:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014/03/16 13:08:00 | 000,000,910 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/03/16 12:08:14 | 000,001,586 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-updater.job
[2014/03/16 12:08:12 | 000,001,492 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-updater.job
[2014/03/16 12:08:09 | 000,003,086 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-chromeinstaller.job
[2014/03/16 12:08:08 | 000,002,368 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-firefoxinstaller.job
[2014/03/16 12:08:05 | 000,003,114 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-chromeinstaller.job
[2014/03/16 12:08:05 | 000,002,286 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-firefoxinstaller.job
[2014/03/16 12:08:02 | 000,001,440 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-enabler.job
[2014/03/16 12:08:02 | 000,001,346 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-enabler.job
[2014/03/16 12:08:01 | 000,001,540 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-codedownloader.job
[2014/03/16 12:08:01 | 000,001,446 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-codedownloader.job
[2014/03/16 10:07:00 | 000,000,358 | ---- | M] () -- C:\WINDOWS\tasks\bench-sys.job
[2014/03/16 02:36:20 | 000,003,584 | ---- | M] () -- C:\Users\cary\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/03/16 01:08:00 | 000,000,906 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/03/15 23:49:08 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\Magic Online.lnk
[2014/03/15 20:26:57 | 000,948,930 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/03/15 20:26:57 | 000,792,934 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/03/15 20:26:57 | 000,156,760 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/03/15 20:24:33 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/03/15 20:24:25 | 027,590,656 | ---- | M] () -- C:\WINDOWS\SysNative\vmguest.iso
[2014/03/15 20:23:15 | 000,000,432 | ---- | M] () -- C:\WINDOWS\tasks\DriverUpdate Startup.job
[2014/03/15 20:23:09 | 000,016,152 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\SWDUMon.sys
[2014/03/15 20:22:29 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/03/15 20:22:27 | 3220,361,216 | -HS- | M] () -- C:\hiberfil.sys
[2014/03/15 18:54:31 | 000,000,378 | ---- | M] () -- C:\WINDOWS\tasks\APSnotifierPP2.job
[2014/03/15 14:09:13 | 000,001,154 | ---- | M] () -- C:\Users\cary\Desktop\Mount&Blade Warband.lnk
[2014/03/15 13:34:48 | 000,000,116 | ---- | M] () -- C:\Users\Public\Documents\SAH_Install.ini
[2014/03/15 13:09:58 | 000,000,066 | ---- | M] () -- C:\WINDOWS\GPlrLanc.dat
[2014/03/14 19:08:12 | 000,000,380 | ---- | M] () -- C:\WINDOWS\tasks\APSnotifierPP1.job
[2014/03/14 18:18:35 | 000,000,378 | ---- | M] () -- C:\WINDOWS\tasks\APSnotifierPP3.job
[2014/03/14 18:13:43 | 000,001,448 | ---- | M] () -- C:\Users\cary\AppData\Roaming\aps.scan.results
[2014/03/14 18:13:43 | 000,000,621 | ---- | M] () -- C:\Users\cary\AppData\Roaming\aps.scan.quick.results
[2014/03/14 18:13:43 | 000,000,162 | ---- | M] () -- C:\Users\cary\AppData\Roaming\aps.uninstall.scan.results
[2014/03/14 15:40:09 | 000,000,209 | ---- | M] () -- C:\Users\cary\AppData\Roaming\uninstall.bat
[2014/03/14 06:55:15 | 000,335,784 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/03/14 06:52:08 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\DriverUpdate Scan.job
[2014/03/11 17:40:08 | 000,000,435 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts.ics
[2014/02/21 10:09:56 | 000,309,118 | ---- | M] () -- C:\Users\cary\Documents\TaxReturn.pdf
[2014/02/17 00:22:21 | 000,001,862 | ---- | M] () -- C:\Users\Public\Desktop\Vuze.lnk
[2014/02/17 00:22:21 | 000,001,862 | ---- | M] () -- C:\Users\cary\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2014/02/16 11:01:31 | 000,000,304 | ---- | M] () -- C:\WINDOWS\tasks\SaveSense.job
[2014/02/16 11:01:10 | 000,000,107 | ---- | M] () -- C:\Users\cary\AppData\Roaming\WB.CFG
[2014/02/16 10:29:10 | 000,002,763 | ---- | M] () -- C:\ProgramData\connector.swf
[2014/02/16 10:28:03 | 000,003,647 | ---- | M] () -- C:\Users\cary\AppData\Roaming\data.sec
[2 C:\Users\cary\AppData\Local\*.tmp files -> C:\Users\cary\AppData\Local\*.tmp -> ]
[1 C:\Users\cary\*.tmp files -> C:\Users\cary\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/03/15 23:49:08 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\Magic Online.lnk
[2014/03/15 14:09:13 | 000,001,154 | ---- | C] () -- C:\Users\cary\Desktop\Mount&Blade Warband.lnk
[2014/03/15 13:34:46 | 000,000,116 | ---- | C] () -- C:\Users\Public\Documents\SAH_Install.ini
[2014/03/15 13:09:58 | 000,000,066 | ---- | C] () -- C:\WINDOWS\GPlrLanc.dat
[2014/03/14 18:13:43 | 000,001,448 | ---- | C] () -- C:\Users\cary\AppData\Roaming\aps.scan.results
[2014/03/14 18:11:51 | 000,000,378 | ---- | C] () -- C:\WINDOWS\tasks\APSnotifierPP3.job
[2014/03/14 18:11:51 | 000,000,378 | ---- | C] () -- C:\WINDOWS\tasks\APSnotifierPP2.job
[2014/03/14 18:11:50 | 000,000,380 | ---- | C] () -- C:\WINDOWS\tasks\APSnotifierPP1.job
[2014/03/14 18:10:43 | 000,000,621 | ---- | C] () -- C:\Users\cary\AppData\Roaming\aps.scan.quick.results
[2014/03/14 18:10:43 | 000,000,162 | ---- | C] () -- C:\Users\cary\AppData\Roaming\aps.uninstall.scan.results
[2014/03/14 18:08:42 | 000,001,586 | ---- | C] () -- C:\WINDOWS\tasks\media enhance-updater.job
[2014/03/14 18:08:38 | 000,001,440 | ---- | C] () -- C:\WINDOWS\tasks\media enhance-enabler.job
[2014/03/14 18:08:34 | 000,001,540 | ---- | C] () -- C:\WINDOWS\tasks\media enhance-codedownloader.job
[2014/03/14 18:08:15 | 000,002,368 | ---- | C] () -- C:\WINDOWS\tasks\media enhance-firefoxinstaller.job
[2014/03/14 18:08:12 | 000,003,114 | ---- | C] () -- C:\WINDOWS\tasks\media enhance-chromeinstaller.job
[2014/03/14 18:08:09 | 000,001,492 | ---- | C] () -- C:\WINDOWS\tasks\hdshop-updater.job
[2014/03/14 18:08:05 | 000,001,346 | ---- | C] () -- C:\WINDOWS\tasks\hdshop-enabler.job
[2014/03/14 18:08:02 | 000,001,446 | ---- | C] () -- C:\WINDOWS\tasks\hdshop-codedownloader.job
[2014/03/14 18:07:43 | 000,002,286 | ---- | C] () -- C:\WINDOWS\tasks\hdshop-firefoxinstaller.job
[2014/03/14 18:07:41 | 000,003,086 | ---- | C] () -- C:\WINDOWS\tasks\hdshop-chromeinstaller.job
[2014/03/14 15:39:49 | 000,000,209 | ---- | C] () -- C:\Users\cary\AppData\Roaming\uninstall.bat
[2014/03/13 04:42:36 | 000,386,722 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014/02/21 10:09:56 | 000,309,118 | ---- | C] () -- C:\Users\cary\Documents\TaxReturn.pdf
[2014/02/17 00:22:21 | 000,001,862 | ---- | C] () -- C:\Users\Public\Desktop\Vuze.lnk
[2014/02/17 00:22:21 | 000,001,862 | ---- | C] () -- C:\Users\cary\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2014/02/17 00:22:21 | 000,001,862 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
[2014/02/16 11:09:23 | 000,009,701 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-results.searchconnector-ms
[2014/02/16 11:09:23 | 000,009,701 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-results.searchconnector-ms
[2014/02/16 10:26:23 | 000,002,763 | ---- | C] () -- C:\ProgramData\connector.swf
[2014/02/16 10:26:02 | 000,003,647 | ---- | C] () -- C:\Users\cary\AppData\Roaming\data.sec
[2014/02/11 04:57:19 | 000,002,181 | ---- | C] () -- C:\Users\cary\AppData\Local\recently-used.xbel
[2014/01/24 17:38:56 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/01/07 09:01:01 | 000,000,107 | ---- | C] () -- C:\Users\cary\AppData\Roaming\WB.CFG
[2013/12/07 10:42:22 | 000,000,884 | RHS- | C] () -- C:\Users\cary\ntuser.pol
[2013/12/07 10:02:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2013/12/06 16:28:25 | 000,190,856 | ---- | C] () -- C:\Program Files (x86)\82res.dll
[2013/11/09 19:22:21 | 000,703,117 | ---- | C] () -- C:\Users\cary\AppData\Roaming\technic-launcher.jar
[2013/11/03 03:23:46 | 000,003,584 | ---- | C] () -- C:\Users\cary\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/10/23 00:17:05 | 000,007,610 | ---- | C] () -- C:\Users\cary\AppData\Local\resmon.resmoncfg
[2013/08/22 08:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 08:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 07:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 00:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/21 20:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/21 16:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/21 16:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/07/27 19:52:35 | 000,102,091 | ---- | C] () -- C:\Users\cary\tardis.xcf
[2013/07/26 13:18:14 | 145,394,418 | ---- | C] () -- C:\Users\cary\AppData\Local\ACCCx189.zip.aamdownload
[2013/07/26 13:18:14 | 000,001,811 | ---- | C] () -- C:\Users\cary\AppData\Local\ACCCx189.zip.aamdownload.aamd
[2012/12/22 14:44:23 | 000,000,043 | ---- | C] () -- C:\Users\cary\jagex_cl_runescape_LIVE.dat
[2012/12/22 14:44:23 | 000,000,024 | ---- | C] () -- C:\Users\cary\random.dat

========== ZeroAccess Check ==========

[2013/12/11 03:29:06 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/11/23 04:49:06 | 021,196,664 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/11/23 01:19:35 | 018,642,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 02:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/21 19:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 02:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/07/08 20:35:33 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\.mono
[2013/06/20 15:16:26 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\.StarMade
[2013/11/09 19:22:34 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\.techniclauncher
[2013/12/03 17:31:02 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Awesomium
[2014/03/16 13:48:33 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Azureus
[2014/02/20 16:45:31 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\BitLord
[2013/11/09 09:42:19 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\defaulttab
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Driver Pro
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\freegames4357
[2014/01/07 06:22:54 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\iSafe
[2013/11/09 19:22:19 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\logs
[2013/11/09 22:51:49 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Mount&Blade
[2013/11/11 15:49:41 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Mount&Blade Warband
[2014/01/12 10:48:23 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\MusicNet
[2013/07/20 12:53:22 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\MusicOasis
[2014/03/15 20:23:37 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\newnext.me
[2014/01/26 11:02:53 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\OpenCandy
[2013/12/17 20:38:02 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\openvr
[2014/03/05 09:56:13 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Oracle
[2014/03/14 15:40:10 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\PC-Gizmos
[2013/12/11 10:54:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\PerformerSoft
[2013/11/08 22:20:10 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Python-Eggs
[2013/12/03 14:31:26 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\RIFT
[2013/08/13 17:19:45 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Robocraft
[2014/02/16 10:43:28 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\SaveSense
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\SeeSimilar02
[2014/03/15 13:34:28 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\ShopAtHome
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\speedtest4354
[2013/05/31 16:08:04 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\SpinTires
[2014/03/15 23:04:58 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Systweak
[2014/01/14 09:42:28 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\TFP
[2014/03/15 23:56:58 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Wizards of the Coast

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 94 bytes -> C:\Users\cary\SkyDrive:ms-properties
@Alternate Data Stream - 148 bytes -> C:\ProgramData\TEMP:07F6D9E4
@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:373E1720

< End of report >
  • 0

Advertisements


#2
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there this looks like adware city... On completion of this could you try a download and let me know what error you get

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following
    Posted Image
:Commands
[CREATERESTOREPOINT]

:OTL
SRV:64bit: - [2014/01/27 13:45:12 | 000,710,976 | ---- | M] () [Auto | Running] -- C:\Program Files\Level Quality Watcher\v1.01\levelqualitywatcher64.exe -- (Level Quality Watcher)
SRV - [2014/02/19 13:13:32 | 000,807,800 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe -- (Application Updater)
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.dosear...q={searchTerms}
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.dosear...q={searchTerms}
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.dosear...q={searchTerms}
IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snapdo.c...Date=09/11/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.snapdo.c...Date=09/11/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snapdo.c...Date=09/11/2013
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.snapdo.c...Date=09/11/2013
IE - HKCU\..\SearchScopes,DefaultScope = {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
IE - HKCU\..\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}: "URL" = http://search.condui...rchTerms}&SSPV=
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:29:01 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\FIREFOX\EXTENSIONS\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\FIREFOX\EXTENSIONS\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:09:40 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\FIREFOX\EXTENSIONS\\[email protected]: C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected] [2013/12/11 03:29:01 | 000,000,000 | ---D | M]
[2013/12/11 03:29:01 | 000,000,000 | ---D | M] (Free Games (4357)) -- C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected]
[2013/12/11 03:09:40 | 000,000,000 | ---D | M] (SeeSimilar02) -- C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected]
[2013/12/11 03:09:40 | 000,000,000 | ---D | M] (Speed Test (4354)) -- C:\Users\cary\AppData\Roaming\Mozilla\Extensions\[email protected]
O2:64bit: - BHO: (media enhance) - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\media enhance\media enhance-bho64.dll (freeven)
O2:64bit: - BHO: (hdshop) - {11111111-1111-1111-1111-110511281100} - C:\Program Files (x86)\hdshop\hdshop-bho64.dll (hdplus)
O2 - BHO: (Vuze Remote Toolbar) - {05478A66-EDB6-4A22-A870-A5987F80A7DA} - C:\Program Files (x86)\Vuze Remote Toolbar\IE\8.8\vuzeToolbarIE.dll (Spigot, Inc.)
O2 - BHO: (media enhance) - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\media enhance\media enhance-bho.dll (freeven)
O2 - BHO: (hdshop) - {11111111-1111-1111-1111-110511281100} - C:\Program Files (x86)\hdshop\hdshop-bho.dll (hdplus)
O2 - BHO: (no name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [BrowserSafeguard] "C:\Program Files (x86)\Browsersafeguard\BrowserSafeguard.exe" File not found
O4 - HKLM..\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe File not found
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe File not found
O4 - HKLM..\Run: [SearchSettings] C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [ShopAtHomeUpdater] C:\Users\cary\AppData\Roaming\ShopAtHome\ShopAtHomeHelper\ShopAtHomeUpdater.exe File not found
O4 - HKLM..\Run: [ShopAtHomeWatcher] C:\Users\cary\AppData\Roaming\ShopAtHome\ShopAtHomeHelper\ShopAtHomeWatcher.exe File not found
O4 - HKLM..\Run: [Starter] C:\Program Files (x86)\Driver-Soft\DriverGenius\StarterW3i.exe File not found
O4 - HKCU..\Run: [NextLive] C:\Users\cary\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe)
O4 - HKCU..\Run: [OutfoxTV] C:\Program Files\OutfoxTV\OutfoxTV\DesktopContainer.exe File not found
O4 - HKCU..\Run: [TBHostSupport] C:\Users\cary\AppData\Local\TBHostSupport\TBHostSupport.dll (Conduit Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Activities present
O33 - MountPoints2\{58f64a45-9a8b-11e3-beb0-d067e522bda1}\Shell\AutoRun\command - "" = "I:\Windows\AutoRun.exe" {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
[2014/03/16 03:30:41 | 000,000,000 | ---D | C] -- C:\Program Files\SavingsBull
[2014/03/14 18:08:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AnyProtectEx
[2014/03/14 18:08:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\media enhance
[2014/03/14 18:07:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\hdshop
[2014/03/10 02:59:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lightspark 0.5.3-git
[2014/03/10 02:56:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iWebar
[2014/03/10 02:56:27 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\Installer
[2014/03/10 02:56:12 | 000,000,000 | ---D | C] -- C:\ProgramData\ShopperPro
[2014/03/10 02:56:06 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\ShopperPro
[2014/03/10 02:56:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ShopperPro
[2014/03/09 23:11:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Plus-HD-9.1
[2014/03/09 23:05:14 | 000,000,000 | ---D | C] -- C:\Support
[2014/03/09 23:05:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free_soft_to_day
[2014/03/09 23:05:08 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Local\fst_us_9
[2014/03/09 23:05:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\fst_us_9
[2014/03/09 23:05:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Supporter
[2014/03/09 23:04:30 | 000,000,000 | ---D | C] -- C:\ProgramData\SaveClicker
[2014/03/09 23:04:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SaveClicker
[2014/02/17 00:20:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\SearchProtect
[2014/02/16 02:00:25 | 000,000,000 | ---D | C] -- C:\Users\cary\AppData\Roaming\ShopAtHome
[2013/12/06 16:28:25 | 000,716,360 | ---- | C] (MindSpark) -- C:\Program Files (x86)\82Uninstall PhotoFriendzy.dll
[2014/03/16 12:08:14 | 000,001,586 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-updater.job
[2014/03/16 12:08:12 | 000,001,492 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-updater.job
[2014/03/16 12:08:09 | 000,003,086 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-chromeinstaller.job
[2014/03/16 12:08:08 | 000,002,368 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-firefoxinstaller.job
[2014/03/16 12:08:05 | 000,003,114 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-chromeinstaller.job
[2014/03/16 12:08:05 | 000,002,286 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-firefoxinstaller.job
[2014/03/16 12:08:02 | 000,001,440 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-enabler.job
[2014/03/16 12:08:02 | 000,001,346 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-enabler.job
[2014/03/16 12:08:01 | 000,001,540 | ---- | M] () -- C:\WINDOWS\tasks\media enhance-codedownloader.job
[2014/03/16 12:08:01 | 000,001,446 | ---- | M] () -- C:\WINDOWS\tasks\hdshop-codedownloader.job
[2014/03/16 10:07:00 | 000,000,358 | ---- | M] () -- C:\WINDOWS\tasks\bench-sys.job
[2014/03/15 18:54:31 | 000,000,378 | ---- | M] () -- C:\WINDOWS\tasks\APSnotifierPP2.job
[2014/03/14 19:08:12 | 000,000,380 | ---- | M] () -- C:\WINDOWS\tasks\APSnotifierPP1.job
[2014/03/14 18:18:35 | 000,000,378 | ---- | M] () -- C:\WINDOWS\tasks\APSnotifierPP3.job
[2014/03/14 18:13:43 | 000,001,448 | ---- | M] () -- C:\Users\cary\AppData\Roaming\aps.scan.results
[2014/03/14 18:13:43 | 000,000,621 | ---- | M] () -- C:\Users\cary\AppData\Roaming\aps.scan.quick.results
[2014/03/14 18:13:43 | 000,000,162 | ---- | M] () -- C:\Users\cary\AppData\Roaming\aps.uninstall.scan.results
[2014/03/14 15:40:09 | 000,000,209 | ---- | M] () -- C:\Users\cary\AppData\Roaming\uninstall.bat
[2014/02/16 11:01:31 | 000,000,304 | ---- | M] () -- C:\WINDOWS\tasks\SaveSense.job
[2013/12/03 17:31:02 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Awesomium
[2013/11/09 09:42:19 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\defaulttab
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Driver Pro
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\freegames4357
[2014/01/07 06:22:54 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\iSafe
[2014/03/15 20:23:37 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\newnext.me
[2014/01/26 11:02:53 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\OpenCandy
[2013/12/17 20:38:02 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\openvr
[2014/02/16 10:43:28 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\SaveSense
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\SeeSimilar02
[2014/03/15 13:34:28 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\ShopAtHome
[2014/03/10 23:20:52 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\speedtest4354
[2013/05/31 16:08:04 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\SpinTires
[2014/03/15 23:04:58 | 000,000,000 | ---D | M] -- C:\Users\cary\AppData\Roaming\Systweak

:Files
C:\Program Files (x86)\hdshop
C:\Program Files (x86)\media enhance
C:\Program Files (x86)\Common Files\Spigot
C:\Program Files (x86)\Application Updater
C:\Program Files\Level Quality Watcher
C:\Program Files (x86)\Browsersafeguard
C:\Program Files (x86)\Iminent
C:\Program Files (x86)\Mobogenie
C:\Users\cary\AppData\Roaming\ShopAtHome
C:\Program Files\OutfoxTV
C:\Users\cary\AppData\Roaming\newnext.me
C:\Users\cary\AppData\Local\TBHostSupport
C:\Users\cary\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfaifkapfifnanhhiidacmhldddojchn
C:\Users\cary\AppData\Local\Google\Chrome\User Data\Default\Extensions\egmefeobenkkfehkedambkbkichojonc

:Commands
[resethosts]
[emptytemp]
[Reboot]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

THEN

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan.
  • After the scan is complete click on "Clean"
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

  • 0

#3
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP