Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Vista Use, Multiple Problems [Closed]

Started by FarzRocks , May 21 2014 01:29 AM

  • This topic is locked This topic is locked

#1
FarzRocks
Posted 21 May 2014 - 01:29 AM

FarzRocks

    New Member

  • Member
  • Pip
  • 2 posts

Hi there , so I came across you guys last night after nearly throwing a fit at my Pc ......  I have thought about just re-starting the whole shebang , but Im loathe to do so as I have so much I need to keep and nowhere to put it all ........ here goes ....

 

System start up - sometimes it doesnt load , I then have to re-start it .

- When it does start it can take up to 10 minutes , or more . It makes all the usual noises , but stays with a blank screen , or sometimes I get the bonus flashing line ....... This can happen 3/4 times before it catches and loads in . Sometimes ..... well quite a lot actually , I have to click the Start windows normal mode ......

 

Stand by - if the screen goes to stand by mode and Im not quick enough to catch it , it then shuts down . Everytime! No warning at all , just a total power off , like the plug has been pulled .

 

Internet - Firefox , barely runs , cant open more than one tab at a time , cant download (even jpegs are becoming a problem) . Have to force close it all the time lately .

 

Programs - They work fine , slow yes , but they start up and run as normal ..... but , I am having problems uninstalling some (files not found errors ect) . Closing is an issue though , again I have to foreclose anything Im finished with .

 

Pc itself - Freezes constantly , music stutters as well as movies ...... takes forever to do multiple tasks , and always problem reports , but even this is now saying it has stopped working .

 

 

I have Tune Ups 2014 , I use it near enough everyday or two . I have AVG , but this week its telling me it cant update , same with Windows , all updates fail . My pc is a bit of a heavy use comp , I run Photoshop ,Gimp , Itunes , Kmplayer , Rainmeter and Firefox daily , these are my main programs ..... but I do have a few that although dont get used often , are needed , like Inkscape and ArtRage . I run my task manager at every start up as most times I have to forceclose programs when I want to finish using them ......  ( I keep an eye on my processes) .

 

Firefox has a few add-ons - Adblock and Adblock plus , Better Fox , Click and Clean , Flash Disable , Flashgot , FVD speedial , Last Pass . But I did just reset it today as I couldnt even load a page in without the 'not responding' error .

 

 

Its now taken me 2 hours to start up my Pc after it shut down when I was cleaning up dog puke (lol dont ask) . I entered my Bios , and It seems my HD was in Hard drive 3 rather than 1st and Floppy was in 1st , not sure if this is normal , so I corrected it (eventually , and hence how I found you guys:)) . Now my first port of call was to download OTL , and run Tune Ups , did a full scan of everything and used all the tools they offer ..... I haven't froze on firefox 'yet' but I figure it's just a matter of time . Can you help at all ? Apologies for any spelling errors , Im rage typing ..... :)

 

 

 

OTL Report -

 

 

OTL logfile created on: 21/05/2014 07:51:23 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Julie\Desktop\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
893.76 Mb Total Physical Memory | 125.95 Mb Available Physical Memory | 14.09% Memory free
2.00 Gb Paging File | 0.71 Gb Available in Paging File | 35.28% Paging File free
Paging file location(s): ?:\pagefile.sys
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 225.61 Gb Total Space | 78.59 Gb Free Space | 34.83% Space Free | Partition Type: NTFS
Drive D: | 7.28 Gb Total Space | 0.96 Gb Free Space | 13.13% Space Free | Partition Type: NTFS
 
Computer Name: JULIE-PC | User Name: Julie | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/05/21 07:13:08 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Julie\Desktop\Desktop\OTL.exe
PRC - [2014/05/11 11:04:54 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014/04/18 15:22:28 | 003,645,456 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe
PRC - [2014/04/11 10:50:07 | 001,864,368 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe
PRC - [2014/04/06 21:21:36 | 005,180,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgui.exe
PRC - [2014/03/27 22:16:32 | 000,854,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- c:\Program Files\AVG\AVG2014\avgrsx.exe
PRC - [2014/03/27 22:15:24 | 000,886,800 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
PRC - [2014/03/27 22:13:02 | 000,650,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exe
PRC - [2014/03/27 22:11:40 | 000,669,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgemcx.exe
PRC - [2014/03/27 22:10:20 | 000,291,912 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe
PRC - [2013/06/26 20:23:04 | 000,207,528 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2013/06/26 20:23:00 | 000,523,944 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2010/10/27 19:24:42 | 000,645,952 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
PRC - [2010/10/27 19:23:16 | 001,483,072 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
PRC - [2009/04/11 07:27:38 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/05/21 00:00:38 | 001,020,928 | ---- | M] () -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]\platform\WINNT_x86-msvc\components\lpxpcom.dll
MOD - [2014/05/11 11:04:37 | 003,839,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2014/04/11 10:50:04 | 016,351,920 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_13_0_0_182.dll
MOD - [2012/11/01 16:03:12 | 000,520,234 | ---- | M] () -- C:\Program Files\4Sync\lbase.dll
MOD - [2012/11/01 16:02:36 | 000,495,104 | ---- | M] () -- C:\Program Files\4Sync\ShellCp.dll
MOD - [2012/11/01 16:02:28 | 001,353,216 | ---- | M] () -- C:\Program Files\4Sync\ShellExt.dll
MOD - [2010/11/25 09:47:34 | 000,796,304 | ---- | M] () -- C:\Program Files\ReaConverter 6.0 Standard\context.dll
 
 
========== Services (SafeList) ==========
 
SRV - File not found [Disabled | Stopped] -- C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe -- (Roxio Upnp Server 9)
SRV - File not found [Disabled | Stopped] -- C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe -- (Roxio UPnP Renderer 9)
SRV - [2014/05/11 11:04:39 | 000,119,408 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/04/18 15:22:28 | 003,645,456 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2014/04/11 10:50:10 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/03/27 22:10:20 | 000,291,912 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2013/06/26 20:23:04 | 000,207,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2013/06/26 20:23:00 | 000,523,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/02/09 09:06:23 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [Disabled | Stopped] -- C:\Program Files\Citrix\GoToAssist\570\g2aservice.exe -- (GoToAssist)
SRV - [2010/11/23 16:39:43 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Disabled | Stopped] -- C:\Windows\System32\nlssrv32.exe -- (nlsX86cc)
SRV - [2010/10/27 19:23:16 | 001,483,072 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
SRV - [2010/10/27 19:21:08 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
SRV - [2008/01/29 18:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2008/01/19 08:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/09/12 19:27:24 | 002,999,664 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_2.EXE -- (LiveUpdate)
SRV - [2007/09/12 19:27:24 | 000,554,352 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe -- (Automatic LiveUpdate Scheduler)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\RimUsb.sys -- (RimUsb)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS -- (MRESP50)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS -- (MRENDIS5)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS -- (MREMPR5)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS -- (MREMP50)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\massfilter.sys -- (massfilter)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys -- (Lavasoft Kernexplorer)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2014/04/18 15:02:04 | 000,199,960 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2014/03/31 16:11:58 | 000,211,224 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2014/03/31 16:11:50 | 000,108,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2014/03/27 22:15:18 | 000,193,304 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2014/03/27 22:14:40 | 000,123,160 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
DRV - [2014/03/27 22:04:22 | 000,150,296 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2014/03/27 22:04:02 | 000,238,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
DRV - [2014/03/27 22:03:22 | 000,028,440 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2014/03/27 22:03:20 | 000,022,296 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2013/06/26 20:23:04 | 000,020,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Sftvollh.sys -- (Sftvol)
DRV - [2013/06/26 20:23:00 | 000,197,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Sftplaylh.sys -- (Sftplay)
DRV - [2013/06/26 20:23:00 | 000,024,232 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\Sftredirlh.sys -- (Sftredir)
DRV - [2013/06/26 20:22:58 | 000,583,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Sftfslh.sys -- (Sftfs)
DRV - [2010/10/07 14:34:32 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - [2009/10/30 20:01:10 | 009,803,464 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2007/07/02 18:37:08 | 000,110,112 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007/05/03 19:29:10 | 001,065,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...ario&pf=desktop
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...ario&pf=desktop
IE - HKLM\..\SearchScopes,DefaultScope = {CB51933E-39EA-40E5-A901-D2384B9C7D51}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{C5A8EF58-EB41-4F4E-AD61-7D2BEA029F90}: "URL" = http://uk.kelkoopart...tnerId=96913936
IE - HKLM\..\SearchScopes\{CB51933E-39EA-40E5-A901-D2384B9C7D51}: "URL" = http://uk.search.yah...&type=ie7chrome
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.trovi.com...F7C20C43D&SSPV=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\{C5A8EF58-EB41-4F4E-AD61-7D2BEA029F90}: "URL" = http://uk.kelkoopart...tnerId=96913936
IE - HKCU\..\SearchScopes\{CB51933E-39EA-40E5-A901-D2384B9C7D51}: "URL" = http://uk.search.yah...&type=ie7chrome
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "chrome://fvd.speeddial/content/fvd_about_blank.html"
FF - prefs.js..extensions.enabledAddons: %7B19503e42-ca3c-4c27-b1e2-9cdb2170ee34%7D:1.5.5.98
FF - prefs.js..extensions.enabledAddons: support%40lastpass.com:3.1.1
FF - prefs.js..extensions.enabledAddons: smarterwiki%40wikiatic.com:5.2.1
FF - prefs.js..extensions.enabledAddons: pavel.sherbakov%40gmail.com:5.3.1
FF - prefs.js..extensions.enabledAddons: fvdmedia%40gmail.com:3.2.1
FF - prefs.js..extensions.enabledAddons: clickclean%40hotcleaner.com:4.1
FF - prefs.js..extensions.enabledAddons: adblockpopups%40jessehakanen.net:0.9.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2014/01/08 11:39:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014/01/08 11:39:08 | 000,000,000 | ---D | M]
 
[2011/01/25 01:04:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Extensions
[2014/04/18 15:39:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions
[2014/01/06 13:34:39 | 000,000,000 | ---D | M] ("ColorfulTabs") -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2014/01/06 13:34:40 | 000,000,000 | ---D | M] (Click&amp;Clean) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/01/07 08:51:24 | 000,000,000 | ---D | M] ("FVD Speed Dial - New Tab Page") -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/01/06 12:35:47 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/05/21 00:44:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions
[2014/05/21 00:04:57 | 000,000,000 | ---D | M] (Click&amp;Clean) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/05/21 00:04:56 | 000,000,000 | ---D | M] ("EverSync - Sync bookmarks, backup your favorites.") -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/05/21 00:04:53 | 000,000,000 | ---D | M] ("Speed Dial [FVD] - New Tab Page, Sync...") -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/05/21 00:04:49 | 000,000,000 | ---D | M] (LastPass) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/01/06 13:03:42 | 000,085,537 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/01/06 14:56:41 | 000,395,219 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\CSTBB@NArisT2_Noia4dev.xpi
[2014/01/06 13:03:42 | 000,015,418 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/01/06 13:03:42 | 000,019,924 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/01/07 10:54:56 | 000,008,010 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/01/06 13:34:40 | 000,367,561 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/01/06 13:34:39 | 000,060,290 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\[email protected]
[2014/04/18 12:40:22 | 000,009,143 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\{2635ac50-5488-40bf-9bfd-accb158f8f3f}.xpi
[2014/01/06 17:11:35 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/01/06 13:34:39 | 000,477,598 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\at1gwiv9.default-1389004851729\extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}.xpi
[2014/05/21 00:04:57 | 000,128,676 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/05/20 23:59:56 | 000,055,219 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/05/21 00:03:51 | 000,093,438 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/05/21 00:04:49 | 000,367,561 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\[email protected]
[2014/05/21 00:04:47 | 000,383,888 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2014/05/21 00:44:33 | 000,970,196 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi
[2014/05/21 00:01:32 | 000,957,880 | ---- | M] () (No name found) -- C:\Users\Julie\AppData\Roaming\Mozilla\Firefox\Profiles\mk8qmdbz.default-1400626522142\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/01/09 12:05:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014/05/11 11:05:17 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/04/12 03:44:27 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/05/23 04:31:38 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
 
O1 HOSTS File: ([2013/02/15 15:31:16 | 000,001,424 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O1 - Hosts: 127.0.0.1       activate.adobe.com
O1 - Hosts: 127.0.0.1       activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1       practivate.adobe.com
O1 - Hosts: 127.0.0.1       ereg.adobe.com
O1 - Hosts: 127.0.0.1       activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1       wip3.adobe.com
O1 - Hosts: 127.0.0.1       3dns-3.adobe.com
O1 - Hosts: 127.0.0.1       3dns-2.adobe.com
O1 - Hosts: 127.0.0.1       adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1       adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1       adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1       ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1       wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1       ood.opsource.net
O1 - Hosts: 127.0.0.1       CRL.VERISIGN.NET
O1 - Hosts: 127.0.0.1       adobeereg.com
O1 - Hosts: 127.0.0.1       OCSP.SPO1.VERISIGN.COM
O1 - Hosts: 127.0.0.1       activate-sea.adobe.com
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\RunOnce: [Launcher] C:\Windows\SMINST\Launcher.exe (soft thinks)
O4 - HKCU..\RunOnce: [RegistryDefrag Success Message] C:\Program Files\TuneUp Utilities 2011\TUMessages.exe (TuneUp Software)
O4 - Startup: C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Omnimo.lnk = C:\Users\Julie\Documents\Rainmeter\Skins\WP7\@Resources\Common\Settings\Omnimo.exe ()
O4 - Startup: C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe ()
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_01)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{904652A0-6795-4CF9-B3BC-407AF06008BE}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner - No CLSID value found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files\Citrix\GoToAssist\570\G2AWinLogon.dll) - C:\Program Files\Citrix\GoToAssist\570\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O24 - Desktop WallPaper: C:\Users\Julie\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Julie\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O27 - HKLM IFEO\4sync.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\blackberry music sync.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\core.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\cvh.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\desktopmgr.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\eadmui.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\eadmuninstall.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\hpwucli.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\mydvd9.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\pifsvc.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\presentationhost.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\rimdevicemanager.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\roxwizardlauncher9.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\sftdde.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\stax.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O27 - HKLM IFEO\videowave9.exe: Debugger - C:\Program Files\TuneUp Utilities 2011\TUAutoReactivator32.exe (TuneUp Software)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/01/25 07:24:18 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\J\Shell - "" = AutoRun
O33 - MountPoints2\J\Shell\AutoRun\command - "" = J:\Install.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (autocheck turegopt)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/05/21 04:59:30 | 000,000,000 | ---D | C] -- C:\found.003
[2014/05/21 03:47:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2014/05/21 03:47:05 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2014/05/21 00:47:37 | 000,000,000 | ---D | C] -- C:\Users\Julie\Desktop\Desktop
[2014/05/19 22:24:31 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Omnimo UI
[2014/05/19 21:08:39 | 000,000,000 | ---D | C] -- C:\Users\Julie\Documents\Rainmeter
[2014/05/19 21:08:29 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Roaming\Rainmeter
[2014/05/19 21:08:00 | 000,000,000 | ---D | C] -- C:\Program Files\Rainmeter
[2014/05/19 09:07:13 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPla
[2014/05/18 23:30:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeGazer
[2014/05/18 23:30:13 | 000,000,000 | ---D | C] -- C:\Program Files\CodeGazer
[2014/05/14 20:21:47 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/05/10 12:52:31 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Local\Downloaded Installations
[2014/05/10 12:49:17 | 000,000,000 | R--D | C] -- C:\Users\Julie\Desktop\R-Pi
[2014/04/28 09:14:22 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Local\DDMSettings
[2014/04/21 17:10:20 | 000,000,000 | ---D | C] -- C:\Users\Julie\AppData\Roaming\DivX
[2014/04/21 17:09:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
[2014/04/21 17:07:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DivX Shared
[2014/04/21 16:55:37 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2014/04/21 16:54:20 | 000,000,000 | ---D | C] -- C:\ProgramData\DivX
 
========== Files - Modified Within 30 Days ==========
 
[2014/05/21 07:14:23 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/05/21 06:25:43 | 000,031,871 | ---- | M] () -- C:\ProgramData\nvModes.001
[2014/05/21 06:23:32 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014/05/21 06:23:32 | 000,003,568 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2014/05/21 06:23:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/05/21 02:32:55 | 000,091,136 | ---- | M] () -- C:\Users\Julie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/05/20 22:31:16 | 000,000,132 | ---- | M] () -- C:\Users\Julie\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2014/05/20 18:59:25 | 000,001,299 | ---- | M] () -- C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Omnimo.lnk
[2014/05/20 10:43:54 | 000,634,726 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014/05/20 10:43:54 | 000,120,034 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014/05/20 07:59:26 | 000,034,261 | ---- | M] () -- C:\Users\Julie\.recently-used.xbel
[2014/05/19 21:08:13 | 000,001,728 | ---- | M] () -- C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
[2014/05/19 09:42:02 | 000,001,859 | ---- | M] () -- C:\Users\Julie\Application Data\Microsoft\Internet Explorer\Quick Launch\KMPlayer.lnk
[2014/05/19 06:45:41 | 153,040,206 | ---- | M] () -- C:\Users\Julie\Desktop\House of Dust.flv
[2014/05/19 04:47:47 | 000,001,196 | ---- | M] () -- C:\Users\Julie\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2014/05/19 04:28:34 | 000,002,024 | ---- | M] () -- C:\Users\Julie\Application Data\Microsoft\Internet Explorer\Quick Launch\Adobe Photoshop CS6.lnk
[2014/05/19 03:03:24 | 000,001,874 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/05/17 22:53:31 | 000,052,315 | ---- | M] () -- C:\Users\Julie\AppData\Roaming\UserTile.png
[2014/05/17 21:30:27 | 000,376,840 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
 
========== Files Created - No Company Name ==========
 
[2014/05/20 07:59:26 | 000,034,261 | ---- | C] () -- C:\Users\Julie\.recently-used.xbel
[2014/05/20 00:22:17 | 000,001,299 | ---- | C] () -- C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Omnimo.lnk
[2014/05/19 21:08:12 | 000,001,728 | ---- | C] () -- C:\Users\Julie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
[2014/05/19 21:08:11 | 000,001,704 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
[2014/05/19 09:41:29 | 000,001,859 | ---- | C] () -- C:\Users\Julie\Application Data\Microsoft\Internet Explorer\Quick Launch\KMPlayer.lnk
[2014/05/19 06:25:02 | 153,040,206 | ---- | C] () -- C:\Users\Julie\Desktop\House of Dust.flv
[2014/05/19 00:01:27 | 000,002,024 | ---- | C] () -- C:\Users\Julie\Application Data\Microsoft\Internet Explorer\Quick Launch\Adobe Photoshop CS6.lnk
[2014/05/17 22:53:31 | 000,052,315 | ---- | C] () -- C:\Users\Julie\AppData\Roaming\UserTile.png
[2014/04/11 10:14:51 | 000,069,632 | ---- | C] () -- C:\Windows\System32\moveex.exe
[2014/04/10 10:10:02 | 011,184,128 | ---- | C] () -- C:\Program Files\Common Files\lpuninstall.exe
[2014/01/12 18:21:27 | 000,031,871 | ---- | C] () -- C:\ProgramData\nvModes.001
[2014/01/12 18:21:25 | 000,031,871 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2013/10/20 01:00:07 | 000,001,456 | ---- | C] () -- C:\Users\Julie\AppData\Local\Adobe Save for Web 13.0 Prefs
[2013/02/15 18:13:43 | 000,000,132 | ---- | C] () -- C:\Users\Julie\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2011/12/27 22:26:41 | 000,008,831 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2011/12/25 20:08:32 | 000,011,620 | -HS- | C] () -- C:\Users\Julie\AppData\Local\tujf15aq4h3x5rb0v40r61hfio255waj
[2011/12/25 20:08:32 | 000,011,620 | -HS- | C] () -- C:\ProgramData\tujf15aq4h3x5rb0v40r61hfio255waj
[2011/09/19 22:04:59 | 000,001,456 | ---- | C] () -- C:\Users\Julie\AppData\Local\Adobe Save for Web 12.0 Prefs
[2011/08/30 23:30:24 | 000,000,080 | ---- | C] () -- C:\Users\Julie\AppData\Roaming\wklnhst.dat
[2011/03/06 04:19:42 | 000,007,944 | ---- | C] () -- C:\Users\Julie\AppData\Local\d3d9caps.dat
[2011/01/29 10:16:51 | 000,000,132 | ---- | C] () -- C:\Users\Julie\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011/01/28 12:31:55 | 000,000,132 | ---- | C] () -- C:\Users\Julie\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/01/27 13:50:26 | 000,091,136 | ---- | C] () -- C:\Users\Julie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
========== ZeroAccess Check ==========
 
[2006/11/02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/25 14:26:04 | 011,587,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2014/01/12 13:15:30 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\4Sync
[2011/01/25 11:49:32 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Ambient Design
[2014/01/09 12:52:29 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\AVG2014
[2013/01/31 07:48:59 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\calibre
[2013/02/15 15:27:48 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\CS6ServiceManager
[2012/02/23 05:38:17 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Cyug
[2012/02/26 17:34:41 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\DAEMON Tools Pro
[2014/01/12 12:42:21 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\DriverCure
[2013/02/15 15:27:48 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\ExtendScript Toolkit
[2013/02/15 15:27:48 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Extension Manager CS6
[2011/03/03 05:45:48 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\FacebookHackerPro
[2011/04/02 15:54:51 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\GetRightToGo
[2014/05/20 07:22:26 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\gtk-2.0
[2014/01/16 22:15:51 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\inkscape
[2014/04/11 11:38:49 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\IObit
[2014/01/12 12:42:19 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\ParetoLogic
[2011/01/25 00:53:56 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Program Files
[2014/05/20 00:41:48 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Rainmeter
[2013/01/16 15:21:39 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\RCP 6
[2011/12/28 01:47:28 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Research In Motion
[2012/02/22 17:55:28 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Siukal
[2014/05/21 02:24:31 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\SoftGrid Client
[2012/10/07 20:07:29 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2013/02/15 15:27:48 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\SwitchBoard
[2011/08/30 23:31:04 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\Template
[2011/08/30 23:48:09 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\TP
[2014/01/09 12:45:53 | 000,000,000 | ---D | M] -- C:\Users\Julie\AppData\Roaming\TuneUp Software
 
========== Purity Check ==========
 
 

< End of report >

 

 

I can see some really weird stuff above that I dont know about , but I will wait and see whats to come . Thank you in advance .

 

*Edit - I would like to add , I dont have an Fb account (dont like being stalked) but my 15yo son does , could he have picked that Hacker up ?


 


Edited by FarzRocks, 21 May 2014 - 01:45 AM.

  • 0

Advertisements

#2
Valinorum
Posted 24 May 2014 - 03:40 AM

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Hi FarzRocks, :)

:welcome:

My name is Valinorum and I will be the acolyte today. Before we proceed, please, acknowledge yourself the following(s):
  • Please do not create any new threads on this while we are working on your system as it wastes another volunteer's time. If you are being helped/have solved the issue/no longer wish to continue, notify me in your reply and I will quickly close this thread. Failing to comply will result in denial of future assistance.
  • Please do not install any new software while we are working on this system as it may hinder our process.
  • Malware removal is a complicated process so don't stop following the steps even if the symptoms are not found. Keep up with me until I declare you clean.
  • Please do not try to fix anything without being ask.
  • Please do not attach your logs or put them inside code/quote tags. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.
  • Please print or save the instructions I give you for quick reference. We may be using Safe mode which will cut you off from internet and you will not always be able to access this thread.
  • Back up your data. I will not knowingly suggest your any course that might damage your system but sometimes Malware infections are so severe that only option we have is to re-format and re-install the operating system.
  • If you are confused about any instruction stop and ask. Do not keep on going.
  • Do not repeat the steps if you face any problems.
  • I am not an omniscient. There are things even I cannot foresee. But what I know took years to learn and perfect the skill. This site is run by volunteers who help people in need in their own free time. I would ask you to respect their time and be patient as sometimes real life demands our time and replies to you can be delayed.
  • Private Message(PM) if and only if I have not responded to your thread within three days or your query is offtopic and personal. Do not PM me under any other circumstances. Your thread is the only medium of communication.
  • The fixes are for your system only. Please refrain from using these fixes on other system as it may do serious damage.
 

Can you post the Extras.txt log located in C:\Users\Julie\Desktop\Desktop? The file is generated by OTL.exe on its first run. Also, are you using pirated version of Adobe products for example Adobe Photoshop?

Regards,
Valinorum
  • 0

#3
Valinorum
Posted 29 May 2014 - 09:46 AM

Valinorum

    GeekU Guardian Bot

  • GeekU Moderator
  • 3,330 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP