Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

xp running very slow [Solved]


  • This topic is locked This topic is locked

#31
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts

Still getting  Pages Unresponsive      Kill Pages       Wait

 

Also, I went by  control panel and clicked something by accident,

and lost the My Pictures in the start menu, and it came up My Scan instead.

Do you know any reason why this might of happened?

Can you fix this?


  • 0

Advertisements


#32
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

Please restart your computer. As your computer restarts but before Windows launches, press F8. Then choose Safe Mode with Networking. How computer is behaving in this mode?


  • 0

#33
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts

Went into safe mode and computer seem to run fine.

When I came back and logged back into geeks the pages unresponsive came back.


  • 0

#34
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts
Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

  • 0

#35
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-09-2014
Ran by JOHN (administrator) on N-EP559VWXLQF9R on 08-09-2014 16:19:53
Running from C:\Documents and Settings\JOHN\My Documents\Downloads
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Pandora.TV) C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(PandoraTV) C:\Program Files\PANDORA.TV\PanService\PanProcess.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files\dvd43\DVD43_Tray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(AimerSoft) C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Co.) C:\Documents and Settings\JOHN\Start Menu\Programs\Startup\hpqtra08.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM\...\Run: [dvd43] => C:\Program Files\dvd43\dvd43_tray.exe [827904 2009-10-23] ()
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2014720 2014-08-05] (AimerSoft)
Winlogon\Notify\GoToAssist: C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxsrvc.dll (Intel Corporation)
HKU\S-1-5-21-602162358-2139871995-1801674531-1003\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6688024 2014-08-12] (SUPERAntiSpyware)
HKU\S-1-5-21-602162358-2139871995-1801674531-1003\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [122200 2014-07-01] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-602162358-2139871995-1801674531-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-602162358-2139871995-1801674531-1003\...\MountPoints2: {2562912e-ec9e-11dd-8343-aa0f3255ca2b} - E:\BioPrint.exe
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\JOHN\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk
ShortcutTarget: ERUNT AutoBackup.lnk -> C:\Program Files\ERUNT\AUTOBACK.EXE ()
Startup: C:\Documents and Settings\JOHN\Start Menu\Programs\Startup\hpqtra08.exe (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.co...ast&type=odc208
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.yahoo...p={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.yahoo.co...ast&type=odc208
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://search.yahoo...p={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.co...ast&type=odc208
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.yahoo.co...ast&type=odc208
SearchScopes: HKLM - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo...p={searchTerms}
SearchScopes: HKLM - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo...p={searchTerms}
SearchScopes: HKCU - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo...p={searchTerms}
SearchScopes: HKCU - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://search.yahoo...p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll No File
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\System32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab
Handler: WSAMVCUchrome - {086BD280-4613-43B5 -  No File
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SuperAdBlocker.com)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281
FF DefaultSearchEngine: Yahoo! (Avast)
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin: @ei.MyWebFace_5a.com/Plugin -> C:\Program Files\MyWebFace_5aEI\Installr\1.bin\NP5aEISB.dll No File
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @movenetworks.com/Quantum Media Player -> C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll No File
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll No File
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll No File
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll No File
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll No File
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=0.9.8a -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @movenetworks.com/Quantum Media Player -> C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
FF SearchPlugin: C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\searchplugins\yahoo-avast.xml
FF Extension: Advanced SystemCare Surfing Protection - C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\Extensions\[email protected] [2014-07-27]
FF Extension: Yahoo! Toolbar - C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2) [2013-04-04]
FF Extension: Qualys BrowserCheck - C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\Extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D} [2013-07-20]
FF Extension: No Name - C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\Extensions\{c0c2693d-2ee8-47b4-9df7-b67a0ee31988}(2) [2013-04-04]
FF Extension: Adblock Plus - C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-01-27]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-09-12]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-07-14]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Documents and Settings\All Users\Application Data\Aimersoft\Video Converter Ultimate\[email protected]
FF HKCU\...\Firefox\Extensions: [[email protected]] - C:\Documents and Settings\JOHN\Application Data\Move Networks
FF Extension: Move Media Player - C:\Documents and Settings\JOHN\Application Data\Move Networks [2009-03-26]
FF HKCU\...\Firefox\Extensions: [[email protected]] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: Free Download Manager plugin - C:\Documents and Settings\All Users\Application Data\Free Download Manager\Firefox\Extensions\1.6.0.7 [2014-05-18]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> DA8E44F8441BDBC57FC61C0820377FE47B8E6E82DF6F5784FD38E3EEB02A22EC
CHR DefaultSearchURL: Default -> 3DCA71CBBAB8CACCDD6AD226B64292A20AFD820D0D8E4E5C51B901341D5A0239
CHR CustomProfile: C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-08-27]
CHR Extension: (Google Docs) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-27]
CHR Extension: (Google Drive) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-27]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-27]
CHR Extension: (YouTube) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-27]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-08-27]
CHR Extension: (Google Search) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-27]
CHR Extension: (Google Sheets) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-08-27]
CHR Extension: (avast! Online Security) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-27]
CHR Extension: (Facebook Games Plugin) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\iohfpaooamejpaidgafpimgmoemlhenb [2014-08-27]
CHR Extension: (Google Wallet) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-27]
CHR Extension: (Gmail) - C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-27]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-09-03]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-15]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-07-15]
CHR HKLM\...\Chrome\Extension: [mmlkabjddkpgkgfhdhpimhcbonapngoh] - C:\Documents and Settings\JOHN\Local Settings\Application Data\CRE\mmlkabjddkpgkgfhdhpimhcbonapngoh.crx [2014-07-15]
CHR HKLM\...\Chrome\Extension: [nmapfhedmiiikmeicmclonepdhjgmlcn] - C:\Documents and Settings\All Users\Application Data\Aimersoft\Video Converter Ultimate\[email protected] [2014-07-15]
CHR HKCU\...\Chrome\Extension: [mmlkabjddkpgkgfhdhpimhcbonapngoh] - C:\Documents and Settings\JOHN\Local Settings\Application Data\CRE\mmlkabjddkpgkgfhdhpimhcbonapngoh.crx [2014-07-15]
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-08-12] (SUPERAntiSpyware.com)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-15] (AVAST Software)
R2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [437080 2014-07-01] (Garmin Ltd or its subsidiaries)
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [694784 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [503080 2010-05-04] (Nero AG)
R2 Net Driver HPZ12; C:\WINDOWS\System32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 PanService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV)
R2 Pml Driver HPZ12; C:\WINDOWS\System32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-07-15] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-07-15] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-07-15] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-07-15] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-07-15] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-07-15] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-07-15] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-07-15] ()
R3 dvd43llh; C:\WINDOWS\System32\DRIVERS\dvd43llh.sys [18816 2011-09-14] (RIF) [File not signed]
R3 E1000; C:\WINDOWS\System32\DRIVERS\e1000325.sys [121856 2003-07-11] (Intel Corporation)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2009-08-26] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2009-08-26] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2009-08-26] (HP)
R3 ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [807804 2006-05-25] (Intel Corporation) [File not signed]
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [110296 2014-09-08] (Malwarebytes Corporation)
S3 pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [47360 2014-06-06] (VSO Software) [File not signed]
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-08 16:18 - 2014-09-08 16:20 - 00000000 ___DC () C:\FRST
2014-09-04 09:51 - 2012-09-09 11:51 - 00014732 _____ () C:\Documents and Settings\JOHN\Desktop\anniversary.jpeg
2014-09-03 18:05 - 2014-09-08 16:00 - 00000619 _____ () C:\Documents and Settings\JOHN\Desktop\25.txt
2014-09-03 17:16 - 2014-09-08 15:26 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-09-03 17:16 - 2014-09-03 17:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-03 17:16 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-09-03 17:16 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-09-03 17:15 - 2014-09-03 17:16 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-29 13:14 - 2014-08-29 13:14 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-29 12:32 - 2014-08-29 12:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
2014-08-29 12:31 - 2014-08-29 12:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-27 19:07 - 2014-09-04 09:44 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-08-27 19:07 - 2014-08-27 19:07 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
2014-08-27 17:38 - 2014-08-27 17:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
2014-08-19 16:02 - 2014-08-19 16:02 - 00000000 ___DC () C:\_OTL
2014-08-17 13:32 - 2014-08-17 13:32 - 00000000 ____D () C:\Documents and Settings\JOHN\Application Data\vlc
2014-08-17 12:42 - 2014-08-17 12:42 - 00003584 _____ () C:\Documents and Settings\JOHN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-08-17 12:26 - 2014-08-17 12:26 - 00000000 ____D () C:\Documents and Settings\JOHN\Local Settings\Application Data\Help
2014-08-16 12:27 - 2014-08-16 12:27 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Aimersoft Video Converter Ultimate
2014-08-15 17:28 - 2014-08-15 17:28 - 00000000 ____D () C:\Program Files\ESET
2014-08-11 17:34 - 2014-08-29 17:18 - 00000000 ____D () C:\Documents and Settings\JOHN\Local Settings\Application Data\Adobe
2014-08-11 17:34 - 2014-08-11 15:28 - 00000512 _____ () C:\Documents and Settings\JOHN\My Documents\MBR.dat
2014-08-11 16:26 - 2014-08-11 16:26 - 00000730 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-11 16:26 - 2014-08-11 16:26 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2014-08-11 16:26 - 2014-08-11 16:26 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-08-10 13:08 - 2014-08-10 13:08 - 00000000 ____D () C:\Program Files\cleanup
2014-08-10 11:58 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-08-09 14:41 - 2014-08-09 14:41 - 00000526 _____ () C:\WINDOWS\wmsetup.log
2014-08-09 14:41 - 2014-08-09 14:41 - 00000000 ____D () C:\Documents and Settings\EILEEN\Local Settings\Application Data\Aimersoft
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-08 16:20 - 2014-09-08 16:18 - 00000000 ___DC () C:\FRST
2014-09-08 16:20 - 2009-01-30 12:49 - 00000000 ____D () C:\Documents and Settings\JOHN\Local Settings\Temp
2014-09-08 16:07 - 2014-07-28 15:31 - 00000211 _____ () C:\WINDOWS\wiadebug.log
2014-09-08 16:04 - 2014-08-04 15:59 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-08 16:04 - 2014-08-04 15:59 - 00000878 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-08 16:00 - 2014-09-03 18:05 - 00000619 _____ () C:\Documents and Settings\JOHN\Desktop\25.txt
2014-09-08 15:42 - 2014-03-03 15:01 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-09-08 15:26 - 2014-09-03 17:16 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-09-08 15:14 - 2013-07-14 23:24 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-09-08 15:11 - 2010-05-27 17:51 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-09-08 15:10 - 2014-06-14 08:33 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-09-08 15:08 - 2009-01-28 15:54 - 01968368 _____ () C:\WINDOWS\WindowsUpdate.log
2014-09-08 15:06 - 2014-07-23 22:02 - 00000276 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-602162358-2139871995-1801674531-1003.job
2014-09-08 15:06 - 2014-03-28 15:07 - 00000220 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-09-08 15:06 - 2014-03-28 15:07 - 00000214 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2014-09-08 15:06 - 2008-12-18 15:24 - 00031922 _____ () C:\WINDOWS\SchedLgU.Txt
2014-09-08 15:05 - 2003-07-16 12:46 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-09-08 15:04 - 2014-07-28 15:31 - 00000048 _____ () C:\WINDOWS\wiaservc.log
2014-09-08 15:04 - 2008-12-18 15:16 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-09-07 18:50 - 2012-07-31 19:36 - 01471768 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-602162358-2139871995-1801674531-1003-0.dat
2014-09-07 18:50 - 2012-07-30 19:54 - 00124370 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
2014-09-07 18:50 - 2009-01-30 12:49 - 00000178 ___SH () C:\Documents and Settings\JOHN\ntuser.ini
2014-09-07 18:50 - 2009-01-30 12:49 - 00000000 ____D () C:\Documents and Settings\JOHN
2014-09-07 14:51 - 2009-01-30 13:35 - 00000000 ___RD () C:\Documents and Settings\JOHN\Desktop\Briefcase
2014-09-06 14:00 - 2009-02-17 01:12 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-09-05 18:30 - 2014-08-08 23:26 - 00032754 _____ () C:\WINDOWS\setupapi.log
2014-09-05 18:23 - 2008-12-18 15:24 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2014-09-04 15:49 - 2009-01-30 12:50 - 00000178 ___SH () C:\Documents and Settings\EILEEN\ntuser.ini
2014-09-04 15:48 - 2009-01-30 12:50 - 00000000 ____D () C:\Documents and Settings\EILEEN\Local Settings\Temp
2014-09-04 09:44 - 2014-08-27 19:07 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-09-03 17:21 - 2010-04-04 12:38 - 00000000 ____D () C:\Documents and Settings\JOHN\Desktop\PC Clean-Up
2014-09-03 17:16 - 2014-09-03 17:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-03 17:16 - 2014-09-03 17:15 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-09-03 17:01 - 2012-03-12 16:45 - 00000000 ____D () C:\Documents and Settings\JOHN\Application Data\HpUpdate
2014-09-03 16:51 - 2008-12-18 15:24 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-09-03 16:51 - 2008-12-18 15:24 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-09-03 16:51 - 2008-12-18 15:24 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-09-03 16:51 - 2008-12-18 15:14 - 00000000 ____D () C:\WINDOWS\Registration
2014-09-02 14:20 - 2012-02-26 16:03 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\HP
2014-09-01 12:27 - 2014-03-08 12:37 - 00000000 ____D () C:\Documents and Settings\JOHN\Desktop\Health
2014-08-30 18:50 - 2011-09-21 18:40 - 00000000 ____D () C:\temp_dvd
2014-08-30 16:26 - 2011-09-21 18:41 - 00000000 _____ () C:\WINDOWS\system32\dvdtest10024.dat
2014-08-29 17:18 - 2014-08-11 17:34 - 00000000 ____D () C:\Documents and Settings\JOHN\Local Settings\Application Data\Adobe
2014-08-29 17:18 - 2011-03-02 19:02 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-08-29 13:14 - 2014-08-29 13:14 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-29 12:32 - 2014-08-29 12:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
2014-08-29 12:32 - 2014-08-29 12:31 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-29 11:56 - 2012-12-16 15:34 - 00000284 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-602162358-2139871995-1801674531-1003.job
2014-08-27 19:07 - 2014-08-27 19:07 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
2014-08-27 19:07 - 2009-02-13 12:33 - 00000000 ____D () C:\Documents and Settings\JOHN\Local Settings\Application Data\Google
2014-08-27 19:06 - 2009-02-13 12:24 - 00000000 ____D () C:\Program Files\Google
2014-08-27 17:40 - 2011-09-23 02:21 - 00000000 ____D () C:\Documents and Settings\JOHN\Desktop\CD-DVD INFO
2014-08-27 17:38 - 2014-08-27 17:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
2014-08-26 20:12 - 2012-10-11 11:11 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2724197$
2014-08-19 20:33 - 2014-08-08 23:26 - 00000060 _____ () C:\WINDOWS\setupact.log
2014-08-19 17:49 - 2010-03-30 14:01 - 00000000 ____D () C:\Program Files\Java
2014-08-19 16:02 - 2014-08-19 16:02 - 00000000 ___DC () C:\_OTL
2014-08-18 18:55 - 2013-07-11 11:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-17 16:13 - 2013-12-15 15:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-08-17 16:13 - 2010-08-25 11:46 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-08-17 13:32 - 2014-08-17 13:32 - 00000000 ____D () C:\Documents and Settings\JOHN\Application Data\vlc
2014-08-17 12:42 - 2014-08-17 12:42 - 00003584 _____ () C:\Documents and Settings\JOHN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-08-17 12:26 - 2014-08-17 12:26 - 00000000 ____D () C:\Documents and Settings\JOHN\Local Settings\Application Data\Help
2014-08-17 12:14 - 2009-11-03 16:45 - 00000000 ____D () C:\Program Files\lg_fwupdate
2014-08-16 17:57 - 2014-03-03 15:01 - 00699568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-08-16 17:57 - 2014-03-03 15:01 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-08-16 12:27 - 2014-08-16 12:27 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Aimersoft Video Converter Ultimate
2014-08-16 12:22 - 2009-02-12 13:06 - 00000000 ____D () C:\Documents and Settings\JOHN\Desktop\John
2014-08-16 08:17 - 2013-02-23 16:45 - 00000000 ____D () C:\Documents and Settings\JOHN\Desktop\Help Forums
2014-08-15 20:02 - 2012-01-25 22:48 - 00000000 ____D () C:\Documents and Settings\EILEEN\Local Settings\Application Data\uTorrentBar
2014-08-15 17:28 - 2014-08-15 17:28 - 00000000 ____D () C:\Program Files\ESET
2014-08-13 15:39 - 2012-05-06 14:19 - 00000000 ____D () C:\Program Files\IObit
2014-08-13 15:27 - 2014-07-21 15:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Aimersoft
2014-08-11 16:26 - 2014-08-11 16:26 - 00000730 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-11 16:26 - 2014-08-11 16:26 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2014-08-11 16:26 - 2014-08-11 16:26 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-08-11 16:26 - 2014-08-04 03:08 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-08-11 15:28 - 2014-08-11 17:34 - 00000512 _____ () C:\Documents and Settings\JOHN\My Documents\MBR.dat
2014-08-10 13:08 - 2014-08-10 13:08 - 00000000 ____D () C:\Program Files\cleanup
2014-08-10 11:53 - 2013-07-15 17:37 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2014-08-09 14:47 - 2009-01-30 13:36 - 00000000 ____D () C:\Documents and Settings\EILEEN\Desktop\Briefcase
2014-08-09 14:41 - 2014-08-09 14:41 - 00000526 _____ () C:\WINDOWS\wmsetup.log
2014-08-09 14:41 - 2014-08-09 14:41 - 00000000 ____D () C:\Documents and Settings\EILEEN\Local Settings\Application Data\Aimersoft
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================
 
================================================================================================================================================================================================================
 
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-09-2014
Ran by JOHN at 2014-09-08 16:21:40
Running from C:\Documents and Settings\JOHN\My Documents\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
4660_4680_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
6500_E709_eDocs (Version: 1.00.0000 - Hewlett-Packard) Hidden
6500_E709_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
6500_E709n (Version: 50.0.165.000 - Hewlett-Packard) Hidden
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated)
Adobe AIR (Version: 14.0.0.178 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
AIO_Scan (Version: 100.0.206.000 - Hewlett-Packard) Hidden
ANT Drivers Installer x86 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Auslogics DiskDefrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.5.3.0 - Auslogics Labs Pty Ltd)
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2021 - AVAST Software)
AVS Audio Recorder version 4.0 (HKLM\...\AVS Audio Recorder_is1) (Version:  - Online Media Technologies Ltd.)
AVS Disc Creator version 5.0.1 (HKLM\...\AVS Disc Creator_is1) (Version:  - Online Media Technologies Ltd.)
AVS Document Converter 2.0.1 (HKLM\...\AVS Document Converter_is1) (Version:  - Online Media Technologies Ltd.)
AVS DVD Copy version 4.1.2 (HKLM\...\AVS DVD Copy_is1) (Version:  - Online Media Technologies Ltd.)
AVS Media Player 4.1.6.80 (HKLM\...\AVS Media Player_is1) (Version:  - Online Media Technologies Ltd.)
AVS Photo Editor (HKLM\...\AVS Photo Editor_is1) (Version:  - Online Media Technologies Ltd.)
AVS Ringtone Maker version 1.6 (HKLM\...\AVS Ringtone Maker 1.6_is1) (Version:  - Online Media Technologies Ltd.)
AVS Update Manager 1.0 (HKLM\...\AVS Update Manager_is1) (Version:  - Online Media Technologies Ltd.)
AVS Video Converter 8 (HKLM\...\AVS4YOU Video Converter 7_is1) (Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (HKLM\...\AVS4YOU Software Navigator_is1) (Version:  - Online Media Technologies Ltd.)
B209a-m (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPD_HPSU (Version: 1.00.0000 - Hewlett-Packard) Hidden
bpd_scan (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
C7200 (Version: 100.0.206.000 - Hewlett-Packard) Hidden
C7200_Help (Version: 100.0.206.000 - Hewlett-Packard) Hidden
Canon MX880 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX880_series) (Version:  - )
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Conexant D850 56K V.9x DFVc Modem (HKLM\...\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1) (Version:  - )
Copy (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden
DocMgr (Version: 120.0.000.000 - Hewlett-Packard) Hidden
DocProc (Version: 12.0.0.0 - Hewlett-Packard) Hidden
DVD Shrink 3.2 (HKLM\...\DVD Shrink_is1) (Version:  - DVD Shrink)
DVD43 v4.6.0 (HKLM\...\DVD43_is1) (Version:  - )
DVD-Cloner V9.00 Build 1101 (HKLM\...\DVD-Cloner 9_is1) (Version: 9.00.0.1101 - OpenCloner Inc.)
Elevated Installer (Version: 3.2.9.0 - Garmin Ltd or its subsidiaries) Hidden
ERUNT 1.1j (HKLM\...\ERUNT_is1) (Version:  - Lars Hederer)
Fax (Version: 120.0.194.000 - Hewlett-Packard) Hidden
FileHippo.com Update Checker (HKLM\...\FileHippo.com) (Version:  - )
Free Download Manager 3.9.2 (HKLM\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)
Garmin Communicator Plugin (HKLM\...\{647BB978-2876-487B-9B0E-FDB73F0EA4A2}) (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM\...\{aece03a3-686f-4b3c-9931-9dafb71829b7}) (Version: 3.2.9.0 - Garmin Ltd or its subsidiaries)
Garmin Express (Version: 3.2.9.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (Version: 3.2.9.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
GoToAssist 8.0.0.514 (HKLM\...\GoToAssist) (Version:  - )
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 6500 E709 Series (HKLM\...\{FA0F0A01-4631-4161-A6C2-948BF694382E}) (Version: 12.0 - HP)
HP Officejet All-In-One Series (HKLM\...\{67335AB1-6341-4f87-A5B4-7FA92CEB77A4}) (Version: 1.0 - HP)
HP Photosmart All-In-One Driver Software 10.0 Rel .2 (HKLM\...\{20B30DC1-E423-4939-B51D-05C58B0F9BBB}) (Version: 10.0 - HP)
HP Photosmart Essential 2.5 (HKLM\...\HP Photosmart Essential) (Version: 2.5 - HP)
HP Photosmart Essential 2.5 (Version: 1.02.0000 - Hewlett-Packard) Hidden
HP Photosmart Plus B209a-m All-In-One Driver Software 13.0 Rel .6 (HKLM\...\{9FEF1A18-8F26-4F49-A5A4-956C12210624}) (Version: 13.0 - HP)
HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
HPPhotoSmartDiscLabel_PaperLabel (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PrintOnDisc (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (Version: 2.02.0000 - Hewlett-Packard) Hidden
hpphotosmartdisclabelplugin (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000 - Hewlett-Packard) Hidden
hpPrintProjects (Version: 130.0.303.000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (Version: 130.0.303.000 - Hewlett-Packard) Hidden
ieSpell (HKLM\...\ieSpell) (Version: 2.5.1 (build 106) - Red Egg Software)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Extreme Graphics 2 Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version:  - )
Intel® PRO Network Adapters and Drivers (HKLM\...\PROSet) (Version:  - )
J4680 (Version: 50.0.165.000 - Hewlett-Packard) Hidden
LG ODD Auto Firmware Update (HKLM\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Internationalized Domain Names Mitigation APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version:  - Microsoft Corporation) Hidden
Microsoft National Language Support Downlevel APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Windows XP Video Decoder Checkup Utility (HKLM\...\DECCHECK) (Version:  - )
Microsoft Word 2000 (HKLM\...\{00170409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Works 2000 (HKLM\...\{56364334-9530-11D2-BFFC-00C04FA329AA}) (Version: 1.0.0.0000 - Microsoft Corporation)
Microsoft Works 2000 Setup Launcher (HKLM\...\Works2kSetup) (Version:  - )
Microsoft XML Parser (Version: 8.70.1104.04 - Microsoft Corporation) Hidden
Moffsoft FreeCalc (HKLM\...\MoffFreeCalc_is1) (Version: 1.1 - Moffsoft)
Move Media Player (HKCU\...\Move Media Player) (Version:  - Move Networks)
Mozilla Firefox 31.0 (x86 en-US) (HKLM\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero 7 Essentials (HKLM\...\{66B6D13A-9CC1-417D-B6F2-58AA539D1033}) (Version: 7.03.1303 - Nero AG)
Nero BurnLite 10 (HKLM\...\{842BEE12-CCCB-43F4-ABAF-CBA6DFE2583D}) (Version: 10.0.10600 - Nero AG)
Nero BurnLite 10 (HKLM\...\{AB627AF2-9C7E-4DBD-816B-3B2646B81E89}) (Version: 10.0.10500.5.100 - Nero AG)
Nero Control Center 10 (Version: 10.0.13100.3.1 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (Version: 1.0.10700 - Nero AG) Hidden
Nero Core Components 10 (Version: 2.0.15100.0.1 - Nero AG) Hidden
Nero Update (HKLM\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
neroxml (Version: 1.0.0 - Nero AG) Hidden
Network (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Nokia Connectivity Cable Driver (HKLM\...\{BC4AE628-81A4-4FC6-863A-7A9BA2E2531F}) (Version: 7.1.32.69 - )
OCR Software by I.R.I.S. 12.0 (HKLM\...\HPOCR) (Version: 12.0 - HP)
Pandora Service (HKLM\...\4F6D5E84-5826-4394-9F40-3A9A19165651_is1) (Version:  - Pandora.TV)
PanoStandAlone (Version: 100.0.170.000 - Hewlett-Packard) Hidden
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
PS_AIO_02_ProductContext (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software_Min (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PS_AIO_06_B209a-m_SW_Min (Version: 130.0.373.000 - Hewlett-Packard) Hidden
PSSWCORE (Version: 2.02.0000 - Hewlett-Packard) Hidden
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version:  - )
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1026 - SUPERAntiSpyware.com)
TinyBurn (HKLM\...\{48A4899C-DACD-44DD-9B9A-748737E95002}) (Version: 1.0.0 - TinyBurn.com)
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden
Update 4.0.3 for Microsoft .NET Framework 4 Client Profile (KB2600211) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600211) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
VideoToolkit01 (Version: 100.0.128.000 - Hewlett-Packard) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebFldrs XP (Version: 9.50.6513 - Microsoft Corporation) Hidden
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Essentials Media Codec Pack 2.3b (HKLM\...\Windows Essentials Media Codec Pack) (Version: 2.3b - Media Codec)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
Word in Works Suite add-in (HKLM\...\{0DB93918-2A77-11D3-805A-00C04FA329AA}) (Version: 1.0.0.0000 - Microsoft Corporation)
Yahoo! Toolbar (HKLM\...\Yahoo! Companion) (Version:  - )
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-602162358-2139871995-1801674531-1003_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Documents and Settings\JOHN\Application Data\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-602162358-2139871995-1801674531-1003_Classes\CLSID\{e3e02f12-2adb-478c-8742-5f0819f9f0f4}\InprocServer32 -> C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
CustomCLSID: HKU\S-1-5-21-602162358-2139871995-1801674531-1003_Classes\CLSID\{e473a65c-8087-49a3-affd-c5bc4a10669b}\InprocServer32 -> C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
CustomCLSID: HKU\S-1-5-21-602162358-2139871995-1801674531-1003_Classes\CLSID\{E69341A3-E6D2-4175-B60C-C9D3D6FA40F6}\localserver32 -> C:\Documents and Settings\JOHN\Application Data\Dropbox\bin\Dropbox.exe /wiacallback No File
CustomCLSID: HKU\S-1-5-21-602162358-2139871995-1801674531-1003_Classes\CLSID\{fc345d4c-b8f4-4674-bff7-3c37d2e535ee}\InprocServer32 -> C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
CustomCLSID: HKU\S-1-5-21-602162358-2139871995-1801674531-1003_Classes\CLSID\{fd6484ed-ebe3-4c3d-938a-8238003b41b7}\InprocServer32 -> C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
 
==================== Restore Points  =========================
 
20-08-2014 00:31:14 Restore Point-1
26-08-2014 18:22:47 System Checkpoint
29-08-2014 15:31:03 System Checkpoint
30-08-2014 17:26:15 System Checkpoint
31-08-2014 22:13:00 System Checkpoint
02-09-2014 18:01:49 System Checkpoint
02-09-2014 18:20:25 Removed HP Update.
03-09-2014 20:49:27 Restore Operation
06-09-2014 18:35:51 System Checkpoint
07-09-2014 19:30:28 System Checkpoint
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2003-07-16 12:23 - 2003-07-16 12:23 - 00000734 ____N C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-602162358-2139871995-1801674531-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-602162358-2139871995-1801674531-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-04-02 13:46 - 2014-07-15 10:59 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-09-08 15:09 - 2014-09-08 15:09 - 02845184 _____ () C:\Program Files\AVAST Software\Avast\defs\14090800\algo.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-05-07 11:46 - 2012-10-22 11:21 - 01277952 _____ () C:\Program Files\PANDORA.TV\PanService\avformat-53.dll
2013-05-07 11:46 - 2012-07-09 17:57 - 02090496 _____ () C:\Program Files\PANDORA.TV\PanService\avcodec-53.dll
2013-05-07 11:46 - 2011-12-06 16:19 - 00133632 _____ () C:\Program Files\PANDORA.TV\PanService\avutil-51.dll
2013-05-07 11:46 - 2012-03-23 10:07 - 00224768 _____ () C:\Program Files\PANDORA.TV\PanService\libupnp.dll
2008-03-29 02:42 - 2008-03-29 02:42 - 00159744 _____ () C:\Program Files\Essentials Codec Pack\Haali\mmfinfo.dll
2008-03-29 02:41 - 2008-03-29 02:41 - 00023552 _____ () C:\Program Files\Essentials Codec Pack\Haali\mkunicode.dll
2003-07-16 12:42 - 2003-07-16 12:42 - 00015360 _____ () C:\WINDOWS\system32\tsd32.dll
2014-07-21 15:54 - 2013-08-07 14:31 - 00214528 _____ () C:\WINDOWS\system32\AiCM32.dll
2011-09-14 17:59 - 2009-10-23 19:34 - 00827904 _____ () C:\Program Files\dvd43\dvd43_tray.exe
2013-10-22 13:21 - 2014-07-15 10:59 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-07-21 15:54 - 2014-08-05 10:22 - 01489408 _____ () C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
2014-07-21 15:54 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
2003-07-16 12:20 - 2008-04-13 20:11 - 00059904 _____ () C:\WINDOWS\System32\devenum.dll
2003-07-16 12:30 - 2008-04-13 20:11 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2014-09-04 09:44 - 2014-08-29 22:49 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-04 09:44 - 2014-08-29 22:49 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-04 09:44 - 2014-08-29 22:49 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:373E1720
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UploadMgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Works Calendar Reminders.lnk => C:\WINDOWS\pss\Microsoft Works Calendar Reminders.lnkCommon Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: FileHippo.com => "C:\Program Files\FileHippo.com\UpdateChecker.exe" /background
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: HotKeysCmds => C:\WINDOWS\System32\hkcmd.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LGODDFU => "C:\Program Files\lg_fwupdate\lgfw.exe" blrun
MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: TkBellExe => "C:\Program Files\Real\RealPlayer\update\realsched.exe"  -osboot
 
==================== Faulty Device Manager Devices =============
 
Name: Officejet 6500 E709n
Description: Officejet 6500 E709n
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (09/04/2014 00:45:42 PM) (Source: CardSpace 3.0.0.0) (EventID: 269) (User: NT AUTHORITY)
Description: The Windows CardSpace service is too busy to process this request. 
User has too many outstanding requests.
 
 
 
Additional Information:
   at System.Environment.GetStackTrace(Exception e, Boolean needFileInfo)
   at System.Environment.get_StackTrace()
   at Microsoft.InfoCards.Diagnostics.InfoCardTrace.BuildMessage(InfoCardBaseException ie)
   at Microsoft.InfoCards.Diagnostics.InfoCardTrace.TraceAndLogException(Exception e)
   at Microsoft.InfoCards.Diagnostics.InfoCardTrace.ThrowHelperError(Exception e)
   at Microsoft.InfoCards.UIAgentMonitor.AddNewClient(UIAgentMonitorHandle handle)
   at Microsoft.InfoCards.UIAgentMonitorHandle.CreateAgent(Int32 callerPid, WindowsIdentity callerIdentity, Int32 tsSessionId)
   at Microsoft.InfoCards.RequestFactory.CreateClientRequestInstance(UIAgentMonitorHandle monitorHandle, String reqName, IntPtr rpcHandle, Stream inStream, Stream outStream)
   at Microsoft.InfoCards.RequestFactory.ProcessNewRequest(Int32 parentRequestHandle, IntPtr rpcHandle, IntPtr inArgs, IntPtr& outArgs)
 
Error: (08/04/2014 04:23:30 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 04:11:55 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 10:52:01 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 03:16:16 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 03:11:20 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 02:35:48 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/03/2014 04:11:09 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/03/2014 03:54:37 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/03/2014 03:35:24 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
 
System errors:
=============
Error: (09/08/2014 03:06:38 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (09/08/2014 03:06:06 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (09/07/2014 10:52:48 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (09/07/2014 10:52:18 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (09/06/2014 06:44:36 PM) (Source: WPDMTPDriver) (EventID: 15300) (User: )
Description: MTP WPD Driver has failed to start. Error 0x8007001f.
 
Error: (09/06/2014 06:24:57 PM) (Source: WPDMTPDriver) (EventID: 15300) (User: )
Description: MTP WPD Driver has failed to start. Error 0x80042003.
 
Error: (09/06/2014 04:01:20 PM) (Source: WPDMTPDriver) (EventID: 15300) (User: )
Description: MTP WPD Driver has failed to start. Error 0x80042003.
 
Error: (09/06/2014 00:11:38 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (09/06/2014 00:11:06 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (09/06/2014 00:08:58 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}
 
 
Microsoft Office Sessions:
=========================
Error: (09/04/2014 00:45:42 PM) (Source: CardSpace 3.0.0.0) (EventID: 269) (User: NT AUTHORITY)
Description: User has too many outstanding requests.
 
 
 
Additional Information:
   at System.Environment.GetStackTrace(Exception e, Boolean needFileInfo)
   at System.Environment.get_StackTrace()
   at Microsoft.InfoCards.Diagnostics.InfoCardTrace.BuildMessage(InfoCardBaseException ie)
   at Microsoft.InfoCards.Diagnostics.InfoCardTrace.TraceAndLogException(Exception e)
   at Microsoft.InfoCards.Diagnostics.InfoCardTrace.ThrowHelperError(Exception e)
   at Microsoft.InfoCards.UIAgentMonitor.AddNewClient(UIAgentMonitorHandle handle)
   at Microsoft.InfoCards.UIAgentMonitorHandle.CreateAgent(Int32 callerPid, WindowsIdentity callerIdentity, Int32 tsSessionId)
   at Microsoft.InfoCards.RequestFactory.CreateClientRequestInstance(UIAgentMonitorHandle monitorHandle, String reqName, IntPtr rpcHandle, Stream inStream, Stream outStream)
   at Microsoft.InfoCards.RequestFactory.ProcessNewRequest(Int32 parentRequestHandle, IntPtr rpcHandle, IntPtr inArgs, IntPtr& outArgs)
 
Error: (08/04/2014 04:23:30 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 04:11:55 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 10:52:01 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 03:16:16 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 03:11:20 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/04/2014 02:35:48 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/03/2014 04:11:09 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/03/2014 03:54:37 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
Error: (08/03/2014 03:35:24 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to open C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf: No such file or directory
 
 
==================== Memory info =========================== 
 
Processor:  Intel® Pentium® 4 CPU 2.80GHz
Percentage of memory in use: 52%
Total physical RAM: 2045.98 MB
Available physical RAM: 975.89 MB
Total Pagefile: 3432.37 MB
Available Pagefile: 2468.34 MB
Total Virtual: 2047.88 MB
Available Virtual: 1935.94 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:38.29 GB) (Free:9.23 GB) NTFS ==>[Drive with boot components (Windows XP)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 38.3 GB) (Disk ID: 7CA87CA8)
Partition 1: (Active) - (Size=38.3 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

  • 0

#36
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts
Step 1: Set file system checker:
In Computer right click on C: drive and select Propertis
Select Tools tab and click Check Now
Check both checkbox and click Run
Then click on Schedule disk check.
 
Step 2: Start the System Configuration Utility
  • Click Start, click Run, type msconfig, and then click OK.
  • The System Configuration Utility dialog box is displayed.
Step 3: Configure selective startup options
  • In the System Configuration Utility dialog box, click the General tab, and then click Selective Startup.
  • Click to clear the Process SYSTEM.INI File check box.
  • Click to clear the Process WIN.INI File check box.
  • Click to clear the Load Startup Items check box. Verify that Load System Services and Use Original BOOT.INI are checked.
  • Click the Services tab.
  • Click to select the Hide All Microsoft Services check box.
  • Click Disable All, and then click OK.
  • When you are prompted, click Restart to restart the computer.

  • 0

#37
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts

I just did the 3 steps you gave me.

 

When I first logged into Geeks, the Pages Unresponsive      Kill Pages       Wait   Came Up.

Also Confirm Form Resubmission,    Error Code    ERR_Cache_Miss

 

I've been using it all day today without any problems.

 

Will keep you informed.... 

 

I have 8.5 gb free space.................


Edited by john god, 14 September 2014 - 02:07 PM.

  • 0

#38
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

Run OTL again:

otlico.png

and hit Quick Scan button:

otlquick.png

This scan won't take long. Please post log in next replay.


  • 0

#39
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts
OTL logfile created on: 9/15/2014 2:35:27 PM - Run 4
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\JOHN\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
2.00 Gb Total Physical Memory | 1.57 Gb Available Physical Memory | 78.36% Memory free
3.35 Gb Paging File | 3.11 Gb Available in Paging File | 92.92% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 38.29 Gb Total Space | 8.41 Gb Free Space | 21.97% Space Free | Partition Type: NTFS
 
Computer Name: N-EP559VWXLQF9R | User Name: JOHN | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/09/15 14:34:13 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\JOHN\My Documents\Downloads\OTL (2).exe
PRC - [2014/07/15 10:59:10 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/09/15 12:13:01 | 002,862,592 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\14091500\algo.dll
MOD - [2014/07/15 10:59:12 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
MOD - [2013/08/07 14:31:30 | 000,214,528 | ---- | M] () -- C:\WINDOWS\system32\AiCM32.dll
MOD - [2008/03/29 02:42:20 | 000,159,744 | ---- | M] () -- C:\Program Files\Essentials Codec Pack\Haali\mmfinfo.dll
MOD - [2008/03/29 02:41:52 | 000,023,552 | ---- | M] () -- C:\Program Files\Essentials Codec Pack\Haali\mkunicode.dll
 
 
========== Services (SafeList) ==========
 
SRV - [2014/09/09 16:42:42 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/08/12 16:39:35 | 000,142,648 | ---- | M] (SUPERAntiSpyware.com) [Disabled | Stopped] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2014/07/17 01:42:18 | 000,119,408 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/07/15 10:59:10 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014/07/01 12:01:36 | 000,437,080 | ---- | M] (Garmin Ltd or its subsidiaries) [Disabled | Stopped] -- C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe -- (Garmin Core Update Service)
SRV - [2012/09/28 09:25:54 | 000,625,304 | ---- | M] (Pandora.TV) [Disabled | Stopped] -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2010/05/04 12:07:22 | 000,503,080 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2009/01/27 18:53:07 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [Disabled | Stopped] -- C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2014/07/15 10:59:48 | 000,414,520 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswsp.sys -- (aswSP)
DRV - [2014/07/15 10:59:17 | 000,779,536 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014/07/15 10:59:17 | 000,192,352 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014/07/15 10:59:17 | 000,057,800 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2014/07/15 10:59:16 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmonflt.sys -- (aswMonFlt)
DRV - [2014/07/15 10:59:16 | 000,055,112 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswrdr.sys -- (AswRdr)
DRV - [2014/07/15 10:59:16 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014/07/15 10:59:16 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2011/08/17 09:56:32 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011/08/17 09:56:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011/08/17 09:56:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011/08/17 09:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011/07/22 12:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 17:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/05/13 04:21:06 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2011/05/13 04:21:06 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2011/05/13 04:21:06 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2010/11/16 00:24:48 | 000,013,880 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\regi.sys -- (regi)
DRV - [2003/11/17 16:59:20 | 000,212,224 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys -- (HSFHWBS2)
DRV - [2003/11/17 16:58:02 | 000,680,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/11/17 16:56:26 | 001,042,432 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.yahoo.co...ast&type=odc208
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://search.yahoo...p={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.co...ast&type=odc208
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = 
IE - HKLM\..\SearchScopes,DefaultScope = {9CB96984-43C3-4D44-90EF-01466EFCF7BB}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}: "URL" = https://search.yahoo...p={searchTerms}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.yahoo.co...ast&type=odc208
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://search.yahoo...p={searchTerms}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.co...ast&type=odc208
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {9CB96984-43C3-4D44-90EF-01466EFCF7BB}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKCU\..\SearchScopes\{9CB96984-43C3-4D44-90EF-01466EFCF7BB}: "URL" = https://search.yahoo...p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultengine: "Yahoo! (Avast)"
FF - prefs.js..browser.search.defaultenginename: "Yahoo! (Avast)"
FF - prefs.js..browser.search.defaultthis.engineName: "Yahoo! (Avast)"
FF - prefs.js..browser.search.defaulturl: "https://search.yahoo.com/yhs/search"
FF - prefs.js..browser.search.order.1: "Yahoo! (Avast)"
FF - prefs.js..browser.search.selectedEngine: "Yahoo! (Avast)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "https://www.yahoo.co...&type=avastbcl"
FF - prefs.js..extensions.enabledAddons: fdm_ffext%40freedownloadmanager.org:1.6.0.6
FF - prefs.js..extensions.enabledAddons: ascsurfingprotection%40iobit.com:1.0
FF - prefs.js..extensions.enabledAddons: %7B7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D%7D:1.7.15.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:31.0
FF - prefs.js..keyword.URL: "https://search.yahoo.com/yhs/search"
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF - HKLM\Software\MozillaPlugins\@ei.MyWebFace_5a.com/Plugin: C:\Program Files\MyWebFace_5aEI\Installr\1.bin\NP5aEISB.dll File not found
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: c:\program files\real\realplayer\Netscape6\nppl3260.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: c:\program files\real\realplayer\Netscape6\nprpplugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=0.9.8a: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll (Move Networks)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/09/03 16:53:53 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Documents and Settings\All Users\Application Data\Aimersoft\Video Converter Ultimate\[email protected]\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Documents and Settings\JOHN\Application Data\Move Networks [2010/04/12 15:51:22 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
 
[2009/10/14 17:11:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Extensions
[2014/08/01 16:28:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\extensions
[2013/04/04 17:21:16 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}(2)
[2013/07/20 16:52:12 | 000,000,000 | ---D | M] (Qualys BrowserCheck) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D}
[2013/07/16 13:33:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\extensions\{c0c2693d-2ee8-47b4-9df7-b67a0ee31988}(2)
[2014/07/27 12:08:31 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\extensions\[email protected]
[2014/07/27 12:08:37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\jfvui10z.default-1399931634468\extensions
[2014/07/27 12:08:37 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\jfvui10z.default-1399931634468\extensions\[email protected]
[2014/08/01 16:28:14 | 000,967,685 | ---- | M] () (No name found) -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/07/23 15:19:55 | 000,001,793 | ---- | M] () -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\searchplugins\Bing.xml
[2014/02/01 08:20:51 | 000,002,808 | ---- | M] () -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\searchplugins\Google.xml
[2014/07/29 10:26:32 | 000,009,419 | ---- | M] () -- C:\Documents and Settings\JOHN\Application Data\Mozilla\Firefox\Profiles\e41t5e2h.default-1355599860281\searchplugins\yahoo-avast.xml
[2014/08/11 16:26:50 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014/08/11 16:26:50 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014/05/18 12:06:55 | 000,000,000 | ---D | M] (Free Download Manager plugin) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\FREE DOWNLOAD MANAGER\FIREFOX\EXTENSIONS\1.6.0.7
 
========== Chrome  ==========
 
CHR - default_search_provider:  ()
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = 
CHR - homepage: http://www.google.com
CHR - plugin: Widevine Content Decryption Module (Enabled) = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\WidevineCDM\1.4.5.671\_platform_specific\win_x86\widevinecdmadapter.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\37.0.2062.120\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\37.0.2062.120\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Program Files\Google\Chrome\Application\37.0.2062.120\pdf.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.5 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: Microsoft® DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft® DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Documents and Settings\JOHN\Application Data\Move Networks\plugins\npqmp071701000002.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
CHR - plugin: Garmin Communicator Plug-In (Enabled) = C:\Program Files\Garmin GPS Plugin\npGarmin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll
CHR - plugin: Windows Presentation Foundation (Disabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - default_search_provider: 6EBED6B8BE99A0040B0F31B36952FFD8B3540EF80892ED9A13B54B04BA7606D7 ()
CHR - default_search_provider: search_url = 3DCA71CBBAB8CACCDD6AD226B64292A20AFD820D0D8E4E5C51B901341D5A0239
CHR - default_search_provider: suggest_url = 
CHR - homepage: 280BB544B33BF4DB58EA5D041D2C04E9576356C04CF2D72E88268021F90376C7
CHR - Extension: Google Slides = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\
CHR - Extension: Google Docs = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Google Drive = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Google Voice Search Hotword (Beta) = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: YouTube = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.5_0\
CHR - Extension: Google Search = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google Sheets = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\
CHR - Extension: avast! Online Security = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2022.121_0\
CHR - Extension: Facebook Games Plugin = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\iohfpaooamejpaidgafpimgmoemlhenb\0.1.1_0\
CHR - Extension: Google Wallet = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Documents and Settings\JOHN\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2003/07/16 12:23:48 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O8 - Extra context menu item: &ieSpell Options - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Check &Spelling - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O8 - Extra context menu item: Download all with Free Download Manager - C:\Program Files\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Download selected with Free Download Manager - C:\Program Files\Free Download Manager\dlselected.htm ()
O8 - Extra context menu item: Download video with Free Download Manager - C:\Program Files\Free Download Manager\dlfvideo.htm ()
O8 - Extra context menu item: Download with Free Download Manager - C:\Program Files\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Lookup on Merriam Webster - C:\Program Files\ieSpell\Merriam Webster.HTM ()
O8 - Extra context menu item: Lookup on Wikipedia - C:\Program Files\ieSpell\wikipedia.HTM ()
O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains:   ([]msn in My Computer)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{663AB7CE-0373-4C57-87C2-1C3DC7310812}: DhcpNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
O18 - Protocol\Handler\WSAMVCUchrome - No CLSID value found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll) - C:\Program Files\Citrix\GoToAssist\514\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxsrvc.dll) - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\JOHN\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\JOHN\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/18 15:17:01 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2562912e-ec9e-11dd-8343-aa0f3255ca2b}\Shell - "" = AutoRun
O33 - MountPoints2\{2562912e-ec9e-11dd-8343-aa0f3255ca2b}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{2562912e-ec9e-11dd-8343-aa0f3255ca2b}\Shell\AutoRun\command - "" = E:\BioPrint.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/09/15 14:12:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JOHN\Desktop\MA Carlin, Jalyssa - Google Docs_files
[2014/09/08 16:18:53 | 000,000,000 | ---D | C] -- C:\FRST
[2014/09/03 17:16:56 | 000,110,296 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2014/09/03 17:16:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/09/03 17:16:05 | 000,053,208 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys
[2014/09/03 17:16:05 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2014/09/03 17:15:55 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014/08/29 13:14:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/08/29 12:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Silverlight
[2014/08/29 12:31:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2014/08/27 19:07:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
[2014/08/27 17:38:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\VideoLAN
[2014/08/19 16:02:40 | 000,000,000 | ---D | C] -- C:\_OTL
[2014/08/17 13:32:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JOHN\Application Data\vlc
[2014/08/17 12:26:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\JOHN\Local Settings\Application Data\Help
[2011/09/16 01:07:34 | 000,047,360 | ---- | C] (VSO Software) -- C:\Documents and Settings\JOHN\Application Data\pcouffin.sys
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014/09/15 14:42:11 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014/09/15 14:22:10 | 000,002,473 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\Microsoft Word.lnk
[2014/09/15 14:12:58 | 000,353,566 | ---- | M] () -- C:\Documents and Settings\JOHN\Desktop\MA Carlin, Jalyssa - Google Docs.htm
[2014/09/15 14:04:00 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/09/15 12:16:08 | 000,000,364 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2014/09/15 12:11:17 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2014/09/15 12:11:15 | 000,000,220 | ---- | M] () -- C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Logon.job
[2014/09/15 12:11:13 | 000,000,878 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/09/15 12:11:11 | 000,000,276 | ---- | M] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-602162358-2139871995-1801674531-1003.job
[2014/09/15 12:09:54 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/09/13 13:24:05 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2014/09/13 13:15:53 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2014/09/10 20:21:06 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2014/09/09 20:05:31 | 000,110,296 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys
[2014/09/08 15:06:20 | 000,000,214 | ---- | M] () -- C:\WINDOWS\tasks\Microsoft Windows XP End of Service Notification Monthly.job
[2014/08/30 16:26:13 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\dvdtest10024.dat
[2014/08/29 11:56:00 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-602162358-2139871995-1801674531-1003.job
[2014/08/28 16:04:07 | 000,001,831 | ---- | M] () -- C:\Documents and Settings\JOHN\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/08/17 12:42:18 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\JOHN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014/09/15 14:12:57 | 000,353,566 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\MA Carlin, Jalyssa - Google Docs.htm
[2014/09/04 09:51:49 | 000,014,732 | ---- | C] () -- C:\Documents and Settings\JOHN\Desktop\anniversary.jpeg
[2014/08/27 19:07:14 | 000,001,831 | ---- | C] () -- C:\Documents and Settings\JOHN\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014/08/27 19:07:14 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2014/08/17 12:42:18 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\JOHN\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/07/21 15:54:27 | 000,214,528 | ---- | C] () -- C:\WINDOWS\System32\AiCM32.dll
[2014/06/06 20:23:37 | 000,000,023 | ---- | C] () -- C:\WINDOWS\System32\sysdvdcp6.dll
[2014/05/22 14:25:36 | 000,164,915 | ---- | C] () -- C:\WINDOWS\hpoins21.dat
[2014/05/22 14:25:36 | 000,007,262 | ---- | C] () -- C:\WINDOWS\hpomdl21.dat
[2014/05/08 16:49:35 | 000,024,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswHwid.sys
[2014/01/18 16:35:38 | 000,201,501 | ---- | C] () -- C:\WINDOWS\hpoins40.dat
[2014/01/18 16:35:37 | 000,000,992 | ---- | C] () -- C:\WINDOWS\hpomdl40.dat
[2014/01/15 11:16:55 | 000,012,054 | R--- | C] () -- C:\WINDOWS\hpwscr20.dat
[2014/01/15 11:13:57 | 000,178,304 | ---- | C] () -- C:\WINDOWS\hpwins20.dat
[2014/01/15 11:13:56 | 000,002,428 | R--- | C] () -- C:\WINDOWS\hpwmdl20.dat
[2014/01/14 11:26:42 | 000,187,006 | ---- | C] () -- C:\WINDOWS\hpwins23.dat
[2014/01/14 11:26:42 | 000,001,847 | ---- | C] () -- C:\WINDOWS\hpwmdl23.dat
[2014/01/12 13:18:27 | 000,229,207 | ---- | C] () -- C:\WINDOWS\hpwins23.dat.temp
[2013/10/18 11:41:00 | 000,000,099 | ---- | C] () -- C:\Documents and Settings\JOHN\Application Data\WB.CFG
[2013/10/11 13:41:01 | 000,000,094 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\WB.CFG
[2013/08/23 14:43:29 | 000,002,075 | ---- | C] () -- C:\WINDOWS\hpwmdl23.dat.temp
[2013/07/23 13:22:38 | 000,000,884 | RHS- | C] () -- C:\Documents and Settings\JOHN\ntuser.pol
[2013/07/14 23:24:22 | 000,192,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013/07/14 23:24:21 | 000,049,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013/06/17 16:09:04 | 000,000,006 | ---- | C] () -- C:\Documents and Settings\JOHN\Application Data\WBPU-TTL.DAT
[2013/06/14 16:13:21 | 000,000,006 | ---- | C] () -- C:\Documents and Settings\NetworkService\Application Data\WBPU-TTL.DAT
[2013/06/07 14:38:45 | 000,001,793 | ---- | C] () -- C:\WINDOWS\unins000.dat
[2013/04/04 12:31:39 | 000,021,160 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2012/07/31 19:36:23 | 001,471,768 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-602162358-2139871995-1801674531-1003-0.dat
[2012/07/30 19:54:03 | 000,124,370 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2011/09/16 01:07:34 | 000,087,608 | ---- | C] () -- C:\Documents and Settings\JOHN\Application Data\inst.exe
[2011/09/16 01:07:34 | 000,007,887 | ---- | C] () -- C:\Documents and Settings\JOHN\Application Data\pcouffin.cat
[2011/09/16 01:07:34 | 000,001,144 | ---- | C] () -- C:\Documents and Settings\JOHN\Application Data\pcouffin.inf
[2011/09/12 18:39:55 | 000,000,125 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\.zreglib
[2009/12/18 13:39:15 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\JOHN\Local Settings\Application Data\prvlcl.dat
[2009/05/15 17:00:29 | 016,742,799 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\vlc-0.9.9-win32.exe
 
========== ZeroAccess Check ==========
 
[2011/09/11 20:20:41 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\System32\shdocvw.dll -- [2012/02/28 14:50:30 | 001,510,400 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\fastprox.dll -- [2009/02/09 08:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\System32\wbem\wbemess.dll -- [2008/04/13 20:12:08 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2014/08/17 16:13:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2013/06/26 23:40:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1(2)
[2014/08/13 15:27:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Aimersoft
[2014/08/16 12:27:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Aimersoft Video Converter Ultimate
[2013/08/07 16:49:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Auslogics
[2013/10/22 13:19:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2012/04/07 12:45:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG2012
[2010/10/12 14:41:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2014/07/01 13:27:11 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2014/07/01 13:28:59 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonIJFAX
[2009/01/27 18:53:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Citrix
[2010/10/12 14:50:49 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2013/05/28 14:44:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DVD-Cloner
[2013/11/01 15:36:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Free Download Manager
[2011/02/11 03:55:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FreeDownloadManager.ORG
[2014/07/06 09:13:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Garmin
[2013/06/21 22:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\install_clap
[2014/07/27 12:09:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2012/04/07 12:45:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2014/07/07 07:48:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Package Cache
[2011/09/12 19:18:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
[2013/06/21 22:19:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PDVD
[2014/08/03 14:59:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ProductData
[2011/09/12 18:40:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SlySoft
[2009/01/27 18:04:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Symwave
[2014/05/28 14:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2013/07/04 17:12:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VSO
[2014/07/27 12:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
[2010/08/25 11:49:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/05/03 14:51:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Auslogics
[2013/10/22 13:26:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\AVAST Software
[2011/10/01 15:34:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\AVG
[2011/09/11 20:25:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\BackTalk
[2011/11/20 19:06:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\BitTorrent
[2014/05/22 10:56:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\CBS Interactive
[2009/02/13 13:09:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014/07/21 16:12:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Dropbox
[2013/09/14 17:55:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\dvd-cloner
[2014/08/04 14:52:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Free Download Manager
[2009/11/27 16:20:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\FrostWire
[2013/06/08 12:29:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Garmin
[2009/03/03 17:06:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\ieSpell
[2011/09/10 23:29:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\ImgBurn
[2011/09/14 19:32:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\InfraRecorder
[2012/05/21 14:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\MusicOasis
[2013/06/20 12:51:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Oracle
[2012/01/26 18:23:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Participatory Culture Foundation
[2012/01/26 18:28:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\PCF-VLC
[2014/07/27 12:09:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\ProductData
[2013/07/20 16:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Qualys
[2012/01/30 16:48:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\RegistryKeys
[2011/11/20 18:59:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Sammsoft
[2010/01/13 15:11:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\SPAMfighter
[2011/08/22 13:40:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Tific
[2014/06/07 21:55:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\JOHN\Application Data\Vso
 
========== Purity Check ==========
 
 
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:373E1720
 
< End of report >

  • 0

#40
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

OK, is your machine working good? Do you have any questions?


  • 0

Advertisements


#41
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts

Working pretty good now.

I want to thank you for all your help and time with this.

Thank-You,

John

 

Only questions I have are what I should keep and use,

on a routine basics to keep my pc running smooth?

 

I have now--Avast--Malwarebytes--Superspyware--TFC--Adwarecleaner--Winderstat--Ccleaner--Auslogics.....

 

Should I keep and use all these, remove some and/or add some other ones that are good?? 


  • 0

#42
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts
Step 1:
  • Run ESET Online Scanner one more time
  • Click Start. After the virus signature database finishes updating, click Stop
  • Tick Uninstall application on close
  • Tick Delete quarantines files
  • Click Finish
Step 2:
Most of them will gone after step 3. You can uninstall WinDirStat if you want. I'm recommending to make sure that Avast protection is working and use MBAM or SuperAntiSpyware one per month (both of them doesn't work as active protection, but as scanner on demand). I'm warning about CCleaner - it will clean but not defrag registry. And finally I'm recommending not to use Advanced SystemCare 7 - program like this can make damage.
 
Step 3:
We need to remove the tools we've used during cleaning your machine
  • Download Delfix from here
  • Ensure Remove disinfection tools is ticked
    Also tick:
    • Create registry backup
    • Purge system restore
    delfix.jpg
  • Click Run
  • The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply
     
     Step 4:
    • Run MBAM scan one per a month.
    • Don't click any links that source you don't know.
    • Don't turn off antivirus active scan and firewall.
    • Turn off autorun removeavaible media - it's easy by Panda USB Vaccine
    • Monitor running processes.
    • Don't install p2p programs.
    • Install AdBlock Plus and WOT (Web of Trust) Add-ones
    • Install only software that you really want. Often during install free software other adware programs are included default. It's good to choose advanced install method and check where and what you actually install.
    • Do not install "Go faster", "Optimize" or "Tweaking" - programs
    • Keep system updated:
      Make sure the Windows Update is turned on. Enable Windows Update is the most basic step to prevent from infections. The fastest way is open this site in Internet Explorer: http://windowsupdate.microsoft.com/

  • 0

#43
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts
# DelFix v10.8 - Logfile created 19/09/2014 at 02:57:53
# Updated 29/07/2014 by Xplode
# Username : JOHN - N-EP559VWXLQF9R
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
 
~ Removing disinfection tools ...
 
Deleted : C:\_OTL
Deleted : C:\FRST
Deleted : C:\Program Files\Trend Micro\Hijackthis
Deleted : C:\TDSSKiller.3.0.0.40_15.08.2014_16.27.06_log.txt
Deleted : C:\Documents and Settings\JOHN\Desktop\OTL.Txt
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\Addition.txt
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\aswMBR.exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\esetsmartinstaller_enu (1).exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\esetsmartinstaller_enu (2).exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\esetsmartinstaller_enu (3).exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\esetsmartinstaller_enu.exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\FRST.exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\FRST.txt
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\JRT.exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\JavaRa-2.6.zip
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\MiniToolBox.exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\OTL.Txt
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\OTL (1).exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\OTL (2).exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\OTL.exe
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\Result.txt
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\tdsskiller.zip
Deleted : C:\Documents and Settings\JOHN\My Documents\Downloads\TFC.exe
Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\HijackThis
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR
 
~ Creating registry backup ... OK
 
~ Cleaning system restore ...
 
Deleted : RP #280 [Restore Point-1 | 08/20/2014 00:31:14]
Deleted : RP #281 [System Checkpoint | 08/26/2014 18:22:47]
Deleted : RP #282 [System Checkpoint | 08/29/2014 15:31:03]
Deleted : RP #283 [System Checkpoint | 08/30/2014 17:26:15]
Deleted : RP #284 [System Checkpoint | 08/31/2014 22:13:00]
Deleted : RP #285 [System Checkpoint | 09/02/2014 18:01:49]
Deleted : RP #286 [Removed HP Update. | 09/02/2014 18:20:25]
Deleted : RP #287 [Restore Operation | 09/03/2014 20:49:27]
Deleted : RP #288 [System Checkpoint | 09/06/2014 18:35:51]
Deleted : RP #289 [System Checkpoint | 09/07/2014 19:30:28]
Deleted : RP #290 [System Checkpoint | 09/08/2014 22:17:47]
Deleted : RP #291 [System Checkpoint | 09/09/2014 23:20:04]
Deleted : RP #292 [System Checkpoint | 09/13/2014 16:27:28]
Deleted : RP #293 [Software Distribution Service 3.0 | 09/13/2014 21:03:38]
Deleted : RP #294 [System Checkpoint | 09/15/2014 19:13:46]
Deleted : RP #295 [System Checkpoint | 09/16/2014 19:42:58]
Deleted : RP #296 [System Checkpoint | 09/17/2014 22:52:37]
 
New restore point created !
 
########## - EOF - ##########

  • 0

#44
crooleeck

crooleeck

    Member

  • Member
  • PipPipPip
  • 882 posts

Stay save :wave:


  • 0

#45
john god

john god

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 459 posts
These are what I saved and deleted and added....
Is this right, or do I need to change something??
 
Avast Anti-Virus--------------keep
Super Anti-Spyware--------keep
Malwarebytes Anti-Malware------keep
cCleaner---------------------Deleted
TFC Oldtimer--------------keep
Secunia PSI---------------keep
Update Checker--------keep
Erunt---------------------------keep
Speccy-----------------------keep
WinDirStat------------------Deleted
Security Check---------keep
Crucial Scan--------------keep
Auslogics Disk Defrag-------keep
Anti root kit--------------------Deleted
Junkware removal--------Deleted
Autoruns------------------------Deleted
mbar----------------keep--is this same as malwarebytes?
WOT and ADBLOCK PLUS----------Added 

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP