Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Unknown program eating up bandwidth [Closed]

Started by furioc , Jan 17 2015 11:39 AM

  • This topic is locked This topic is locked

#1
furioc
Posted 17 January 2015 - 11:39 AM

furioc

    New Member

  • Member
  • Pip
  • 1 posts

Something is definitely up! And that would be my bandwidth usage. I think 'windows explorer' used my bandwidth. So I was wondering which program is using my bandwidth even when my pc is idle. Then, I "netstat -o -n" on Command Prompt, the only active connection was 'windows explorer' and chrome. And I heard that my pc is def. not okay if it got that way. So please help.

 

On a side note: Can a software mess up with your mouse clicks?

 

OTL log:

 

OTL logfile created on: 01/18/2015 00:11:23 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Eki\Downloads\Programs
 Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16863)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: MM/dd/yyyy
 
1.98 Gb Total Physical Memory | 0.82 Gb Available Physical Memory | 41.37% Memory free
3.35 Gb Paging File | 1.45 Gb Available in Paging File | 43.40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 58.72 Gb Total Space | 2.94 Gb Free Space | 5.01% Space Free | Partition Type: NTFS
Drive D: | 119.62 Gb Total Space | 1.42 Gb Free Space | 1.19% Space Free | Partition Type: NTFS
Drive E: | 119.64 Gb Total Space | 2.70 Gb Free Space | 2.26% Space Free | Partition Type: NTFS
Drive F: | 100.00 Mb Total Space | 21.68 Mb Free Space | 21.68% Space Free | Partition Type: NTFS
 
Computer Name: E-Q | User Name: Eki | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/12/16 11:28:54 | 000,477,184 | ---- | M] (Skillbrains) -- C:\Program Files\Skillbrains\lightshot\5.2.0.17\Lightshot.exe
PRC - [2014/12/06 08:50:53 | 000,856,904 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2014/10/07 15:36:00 | 000,782,040 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files\BlueStacks\HD-UpdaterService.exe
PRC - [2014/10/07 15:35:06 | 000,843,480 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files\BlueStacks\HD-Agent.exe
PRC - [2014/10/07 15:33:56 | 000,388,824 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files\BlueStacks\HD-LogRotatorService.exe
PRC - [2014/10/03 20:41:25 | 000,655,712 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
PRC - [2014/05/20 01:38:36 | 000,655,712 | ---- | M] () -- C:\ProgramData\Smartfren Connex EC176-2 UI\OnlineUpdate\ouc.exe
PRC - [2014/01/31 15:58:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Eki\Downloads\Programs\OTL.exe
PRC - [2013/11/11 21:26:53 | 000,932,640 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013/11/11 21:26:52 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2013/11/11 08:59:20 | 000,414,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013/10/25 11:54:56 | 000,014,480 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe
PRC - [2013/10/11 15:05:18 | 002,877,440 | ---- | M] () -- C:\Program Files\Windows 8 Start Screen Customizer\ModernUIStartScreen.exe
PRC - [2013/07/08 10:42:48 | 001,922,600 | ---- | M] (Pandora.TV) -- C:\Program Files\PANDORA.TV\PanService\KMPService.exe
PRC - [2013/07/08 10:42:38 | 001,798,696 | ---- | M] (PandoraTV) -- C:\Program Files\PANDORA.TV\PanService\KMPProcess.exe
PRC - [2013/06/01 17:24:46 | 002,106,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2013/04/09 04:52:09 | 000,300,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013/03/02 15:24:03 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
PRC - [2012/11/06 11:20:42 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/10/18 09:08:40 | 000,205,184 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
PRC - [2012/10/18 09:01:50 | 000,184,704 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
PRC - [2012/10/06 05:55:50 | 000,110,976 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
PRC - [2012/09/22 09:14:48 | 001,800,080 | ---- | M] (ELAN Microelectronics Corp.) -- C:\Program Files\Elantech\ETDGesture.exe
PRC - [2012/09/22 09:14:30 | 002,245,520 | ---- | M] (ELAN Microelectronics Corp.) -- C:\Program Files\Elantech\ETDCtrl.exe
PRC - [2012/09/22 09:14:30 | 001,644,944 | ---- | M] (ELAN Microelectronics Corp.) -- C:\Program Files\Elantech\ETDCtrlHelper.exe
PRC - [2012/09/22 08:07:08 | 000,078,672 | ---- | M] (ELAN Microelectronics Corp.) -- C:\Program Files\Elantech\ETDService.exe
PRC - [2012/09/15 03:14:16 | 000,328,064 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
PRC - [2012/07/26 10:20:58 | 000,335,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
PRC - [2012/07/26 10:20:44 | 000,349,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
PRC - [2012/07/26 10:20:44 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
PRC - [2012/07/11 07:02:48 | 000,912,016 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
PRC - [2011/11/22 04:19:50 | 000,096,896 | ---- | M] (ASUS) -- C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
PRC - [2011/09/06 18:51:40 | 002,095,616 | ---- | M] () -- C:\Program Files\Smartfren Connex CE682 UI\App.exe
PRC - [2011/09/06 18:50:36 | 000,267,776 | ---- | M] () -- C:\Program Files\Smartfren Connex CE682 UI\HEject.exe
PRC - [2011/07/09 22:46:00 | 003,397,016 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2011/03/14 22:27:28 | 000,271,712 | ---- | M] () -- C:\ProgramData\DatacardService\HWDeviceService.exe
PRC - [2011/03/14 22:27:28 | 000,236,384 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2010/05/25 21:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/12/06 08:50:51 | 014,913,352 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll
MOD - [2014/12/06 08:50:50 | 009,009,480 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\39.0.2171.95\pdf.dll
MOD - [2014/12/06 08:50:46 | 001,077,064 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
MOD - [2014/12/06 08:50:45 | 000,211,272 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\39.0.2171.95\libegl.dll
MOD - [2014/12/06 08:50:44 | 001,677,128 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
MOD - [2014/12/01 17:23:15 | 001,446,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\HD-Agent\cf3f5ef17f4a3eec3e84eb7770f805e5\HD-Agent.ni.exe
MOD - [2014/12/01 17:22:22 | 000,155,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\JSON\c7164de4bd182d1a35d7ede8450688b8\JSON.ni.dll
MOD - [2014/04/29 03:01:37 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\e84651bfebc93794de14410fb6b6499e\System.ServiceProcess.ni.dll
MOD - [2014/04/29 03:01:22 | 011,843,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\edfe1e2f7b6eacf0e2ee58fe489ce7c7\System.Web.ni.dll
MOD - [2014/04/29 03:00:42 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\ed2a69139fec2cbd55d830ceb0db06c6\System.Configuration.ni.dll
MOD - [2014/04/28 21:20:40 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\a801272bc1990741b7b2f5dde3a57420\System.Xml.ni.dll
MOD - [2014/04/28 21:20:34 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\5ba5657c270bdd2fde78ecda4c2ad910\System.Windows.Forms.ni.dll
MOD - [2014/04/28 21:20:25 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\b8f373895aa19304a2cb6b888e298529\System.Drawing.ni.dll
MOD - [2014/04/28 21:19:45 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\6124280f8365d6683e54dd99742100f6\System.ni.dll
MOD - [2014/04/28 21:19:38 | 011,494,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\452f06494f05cb9d89325460550d1d62\mscorlib.ni.dll
MOD - [2014/03/12 20:07:16 | 008,884,904 | ---- | M] () -- C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
MOD - [2013/10/11 15:05:18 | 002,877,440 | ---- | M] () -- C:\Program Files\Windows 8 Start Screen Customizer\ModernUIStartScreen.exe
MOD - [2011/09/06 18:51:40 | 002,095,616 | ---- | M] () -- C:\Program Files\Smartfren Connex CE682 UI\App.exe
MOD - [2011/09/06 18:50:40 | 000,403,968 | ---- | M] () -- C:\Program Files\Smartfren Connex CE682 UI\ATManager.dll
MOD - [2011/09/06 18:50:16 | 000,324,608 | ---- | M] () -- C:\Program Files\Smartfren Connex CE682 UI\pcmWave.dll
MOD - [2011/09/06 18:50:16 | 000,186,368 | ---- | M] () -- C:\Program Files\Smartfren Connex CE682 UI\RasDial.dll
MOD - [2011/09/06 18:50:12 | 000,265,216 | ---- | M] () -- C:\Program Files\Smartfren Connex CE682 UI\Log.dll
 
 
========== Services (SafeList) ==========
 
SRV - [2014/10/07 15:36:00 | 000,782,040 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files\BlueStacks\HD-UpdaterService.exe -- (BstHdUpdaterSvc)
SRV - [2014/10/07 15:33:56 | 000,388,824 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files\BlueStacks\HD-LogRotatorService.exe -- (BstHdLogRotatorSvc)
SRV - [2014/10/07 15:33:20 | 000,409,304 | ---- | M] (BlueStack Systems, Inc.) [Auto | Stopped] -- C:\Program Files\BlueStacks\HD-Service.exe -- (BstHdAndroidSvc)
SRV - [2014/10/03 20:41:25 | 000,655,712 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)
SRV - [2014/05/20 01:38:36 | 000,655,712 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Smartfren Connex EC176-2 UI\UpdateDog\ouc.exe -- (Smartfren Connex EC176-2 UI. RunOuc)
SRV - [2013/11/14 18:59:14 | 014,652,704 | ---- | M] (NVIDIA Corporation) [On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2013/11/14 18:58:57 | 001,914,656 | ---- | M] (NVIDIA Corporation) [On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/11/11 08:59:20 | 000,414,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013/10/25 11:54:56 | 000,014,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2013/08/16 06:59:31 | 002,156,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
SRV - [2013/07/08 10:42:48 | 001,922,600 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files\PANDORA.TV\PanService\KMPService.exe -- (PanService)
SRV - [2013/06/25 06:09:53 | 000,226,816 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2013/06/01 16:23:42 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2013/05/04 11:57:04 | 000,371,200 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2013/05/04 11:56:05 | 000,143,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2013/04/09 04:51:05 | 000,136,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2013/03/02 15:23:17 | 000,114,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
SRV - [2013/03/02 15:23:15 | 000,117,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2013/01/10 06:26:37 | 001,532,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2013/01/10 06:26:01 | 000,349,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2012/10/06 05:55:50 | 000,110,976 | ---- | M] (ASUSTek Computer Inc.) [Auto | Running] -- C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe -- (ASLDRService)
SRV - [2012/09/22 08:07:08 | 000,078,672 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService)
SRV - [2012/09/20 12:53:51 | 000,095,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2012/07/26 11:03:42 | 002,205,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/07/26 10:20:19 | 000,051,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2012/07/26 10:20:11 | 000,192,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2012/07/26 10:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2012/07/26 10:20:04 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2012/07/26 10:19:54 | 000,132,608 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2012/07/26 10:19:40 | 002,028,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2012/07/26 10:19:21 | 000,138,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2012/07/26 10:19:21 | 000,062,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2012/07/26 10:18:47 | 000,043,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2012/07/26 10:18:24 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2012/07/26 10:18:13 | 000,261,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2012/07/26 10:17:58 | 000,109,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV - [2012/07/26 07:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
SRV - [2012/07/26 07:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2012/07/26 07:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2012/07/26 07:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
SRV - [2012/07/26 07:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV - [2012/07/26 07:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV - [2011/11/22 04:19:50 | 000,096,896 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2011/09/06 18:50:36 | 000,267,776 | ---- | M] () [Auto | Running] -- C:\Program Files\Smartfren Connex CE682 UI\HEject.exe -- (CDROM_Eject_H)
SRV - [2011/03/14 22:27:28 | 000,271,712 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | Unavailable | Unknown] -- C:\Users\Eki\AppData\Local\Temp\Rar$EXa0.608\x86\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2015/01/17 07:43:49 | 000,039,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{66CE059C-1E4E-4A2B-89CF-68300D5AD674}\MpKsl3aa4367c.sys -- (MpKsl3aa4367c)
DRV - [2014/10/11 13:48:10 | 000,745,608 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\VBoxDrv.sys -- (VBoxDrv)
DRV - [2014/10/11 13:46:38 | 000,127,584 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - [2014/10/11 13:46:38 | 000,117,272 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2014/10/11 13:46:38 | 000,105,472 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\VBoxUSBMon.sys -- (VBoxUSBMon)
DRV - [2014/10/07 15:33:32 | 000,112,344 | ---- | M] (BlueStack Systems) [Kernel | Auto | Running] -- C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys -- (BstHdDrv)
DRV - [2014/05/20 01:38:44 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)
DRV - [2014/05/20 01:38:43 | 000,377,856 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ewusbwwan.sys -- (ewusbmbb)
DRV - [2014/05/20 01:38:43 | 000,202,752 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ew_juwwanecm.sys -- (huawei_wwanecm)
DRV - [2014/05/20 01:38:43 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2014/05/20 01:38:43 | 000,095,616 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV - [2014/05/20 01:38:43 | 000,076,544 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2014/05/20 01:38:43 | 000,027,520 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV - [2014/05/20 01:38:42 | 000,199,168 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2013/12/07 13:56:05 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\Drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2013/11/14 18:59:21 | 000,033,568 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2013/11/14 18:59:14 | 000,161,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvhda32v.sys -- (NVHDA)
DRV - [2013/11/14 18:58:51 | 010,446,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2013/10/25 11:56:00 | 000,030,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
DRV - [2013/10/25 05:33:56 | 000,213,336 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
DRV - [2013/10/10 17:07:31 | 000,038,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2013/10/05 11:33:14 | 000,238,936 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
DRV - [2013/10/02 07:38:26 | 000,362,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2013/08/16 06:21:21 | 000,051,544 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
DRV - [2013/08/12 18:12:08 | 000,244,952 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\RtsUVStor.sys -- (RSUSBVSTOR)
DRV - [2013/08/10 12:24:21 | 000,123,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
DRV - [2013/07/09 11:16:17 | 000,097,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2013/07/04 05:12:08 | 002,927,104 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\athw8.sys -- (athr)
DRV - [2013/07/02 05:50:31 | 000,268,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2013/07/02 05:50:28 | 000,180,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
DRV - [2013/06/01 09:29:09 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2013/03/02 16:06:16 | 000,057,576 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
DRV - [2013/03/02 15:52:47 | 000,066,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
DRV - [2013/01/10 08:07:00 | 000,024,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2012/11/27 10:53:14 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2012/11/20 11:56:58 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
DRV - [2012/11/06 10:52:56 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
DRV - [2012/10/12 14:12:33 | 000,023,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/10/11 12:28:23 | 000,046,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
DRV - [2012/09/20 14:09:32 | 000,031,464 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2012/07/26 11:17:18 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
DRV - [2012/07/26 10:48:44 | 000,058,608 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
DRV - [2012/07/26 10:42:33 | 000,068,848 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2012/07/26 10:42:32 | 000,099,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2012/07/26 10:42:32 | 000,070,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2012/07/26 10:42:31 | 000,085,232 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
DRV - [2012/07/26 10:42:19 | 000,285,424 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2012/07/26 10:42:19 | 000,080,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2012/07/26 10:42:18 | 000,076,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
DRV - [2012/07/26 10:42:15 | 000,059,120 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
DRV - [2012/07/26 10:40:10 | 000,256,240 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
DRV - [2012/07/26 10:39:55 | 000,029,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
DRV - [2012/07/26 10:33:00 | 000,130,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
DRV - [2012/07/26 10:33:00 | 000,042,344 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
DRV - [2012/07/26 10:33:00 | 000,032,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
DRV - [2012/07/26 09:36:54 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2012/07/26 09:36:49 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2012/07/26 09:36:36 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
DRV - [2012/07/26 09:36:35 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
DRV - [2012/07/26 09:35:30 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
DRV - [2012/07/26 09:35:28 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2012/07/26 09:35:10 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
DRV - [2012/07/26 09:35:06 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
DRV - [2012/07/26 09:35:04 | 000,009,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
DRV - [2012/07/26 09:34:43 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
DRV - [2012/07/26 09:34:42 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2012/07/26 09:34:22 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2012/07/26 09:34:04 | 000,010,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2012/07/26 09:33:53 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
DRV - [2012/07/26 09:33:50 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
DRV - [2012/07/26 09:33:50 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\vwifimp.sys -- (vwifimp)
DRV - [2012/07/26 09:33:37 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\winusb.sys -- (WinUsb)
DRV - [2012/07/26 09:33:29 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012/07/26 09:33:16 | 000,044,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2012/07/26 09:32:54 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012/07/26 09:32:53 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
DRV - [2012/07/26 09:32:02 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
DRV - [2012/07/26 09:31:11 | 000,110,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2012/07/26 09:30:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
DRV - [2012/07/26 09:30:39 | 000,084,480 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
DRV - [2012/07/26 05:49:40 | 000,495,104 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Rt630x86.sys -- (RTL8168)
DRV - [2012/05/16 11:13:14 | 000,093,336 | ---- | M] (PACE Anti-Piracy, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TPkd.sys -- (TPkd)
DRV - [2011/09/07 23:55:02 | 000,014,464 | ---- | M] (ASUS) [Kernel | System | Running] -- C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys -- (ATKWMIACPIIO)
DRV - [2011/07/06 22:14:42 | 000,089,376 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\idmwfp.sys -- (IDMWFP)
DRV - [2011/04/04 16:47:40 | 000,021,504 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\USB_MODEM_H.sys -- (UsbModemDriver)
DRV - [2010/10/20 13:33:40 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\HECI.sys -- (MEI)
DRV - [2009/11/05 03:50:50 | 000,038,400 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\USB_BusEnum_H.sys -- (USB_BusEnum_H)
DRV - [2009/10/27 00:45:06 | 000,030,080 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\USB_WinMux_H.sys -- (USB_WinMux_H)
DRV - [2009/07/03 07:36:10 | 000,013,880 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys -- (ASMMAP)
DRV - [2008/05/28 23:02:08 | 000,016,128 | ---- | M] (Via Telecom, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\USB_ETS_H.sys -- (USB_ETS_H)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsur...WPLXXXX6VEXJWPL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsur...q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsur...q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsur...WPLXXXX6VEXJWPL
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}: "URL" = http://www.google.co...q={searchTerms}
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsur...WPLXXXX6VEXJWPL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsur...WPLXXXX6VEXJWPL
IE - HKCU\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKCU\..\SearchScopes\{0191A6B0-1154-4C22-9182-23A95BBE92D9}: "URL" = http://www.google.co...q={searchTerms}
IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.istartsur...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
========== FireFox ==========
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.67.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MIF5BA~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Eki\AppData\Roaming\IDM\idmmzcc5 [2013/10/21 14:37:35 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\Eki\AppData\Roaming\IDM\idmmzcc5 [2013/10/21 14:37:35 | 000,000,000 | ---D | M]
 
[2013/11/15 03:30:36 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll
 
========== Chrome  ==========
 
CHR - default_search_provider:  (Enabled)
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = 
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\akadbbccfpogllggihohbkgjmgpdhdia\2014.5.28.31538_0\
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm\3_0\
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\bohapeiooecafommnlaiccilacgmkaoc\2.3_0\
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.16.3_0\
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpklikeghomkemdellmmkoifgfbakio\1.1_0\
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Eki\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhlfmheblhjhkmacldlhdnbgbaiigba\3.0.0_0\
 
O1 HOSTS File: ([2012/07/26 11:17:20 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O2 - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Andy] C:\Program Files\Andy\HandyAndy.exe ()
O4 - HKLM..\Run: [BlueStacks Agent] C:\Program Files\BlueStacks\HD-Agent.exe (BlueStack Systems, Inc.)
O4 - HKLM..\Run: [Lightshot] C:\Program Files\Skillbrains\lightshot\Lightshot.exe ()
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files\Mobogenie\DaemonProcess.exe File not found
O4 - HKLM..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge]  File not found
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - HKCU..\Run: [LightShot] C:\Users\Eki\AppData\Local\Skillbrains\lightshot\Lightshot.exe File not found
O4 - HKCU..\Run: [Lync] C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation)
O4 - HKCU..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Win8StartScreen] C:\Program Files\Windows 8 Start Screen Customizer\ModernUIStartScreen.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 221
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{45BC2BB7-B4E0-4EBC-9371-1B823886CA54}: NameServer = 10.17.118.187 10.17.118.251
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4E69A470-AFA1-41DC-A80E-472ED40A43FE}: NameServer =  
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C4C3549D-A475-4DA0-83E3-1DB3A9293E28}: NameServer =  
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CDEF0183-F9BA-4FC5-B565-47C30C57D2A6}: NameServer =  
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/07/26 13:52:25 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2012/08/16 21:14:42 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2012/08/16 21:14:42 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{010a29b7-ddfe-11e3-aff7-14dae9643d34}\Shell - "" = AutoRun
O33 - MountPoints2\{010a29b7-ddfe-11e3-aff7-14dae9643d34}\Shell\AutoRun\command - "" = "H:\AutoRun.exe" 
O33 - MountPoints2\{010a2a57-ddfe-11e3-aff7-14dae9643d34}\Shell - "" = AutoRun
O33 - MountPoints2\{010a2a57-ddfe-11e3-aff7-14dae9643d34}\Shell\AutoRun\command - "" = "H:\AutoRun.exe" 
O33 - MountPoints2\{03d9d621-e73b-11e3-affa-14dae9643d34}\Shell - "" = AutoRun
O33 - MountPoints2\{03d9d621-e73b-11e3-affa-14dae9643d34}\Shell\AutoRun\command - "" = "H:\AutoRun.exe" 
O33 - MountPoints2\{2653cf57-4bbf-11e4-b024-14dae9643d34}\Shell - "" = AutoRun
O33 - MountPoints2\{2653cf57-4bbf-11e4-b024-14dae9643d34}\Shell\AutoRun\command - "" = "H:\AutoRun.exe" 
O33 - MountPoints2\{694b2496-4a00-11e4-b024-14dae9643d34}\Shell - "" = AutoRun
O33 - MountPoints2\{694b2496-4a00-11e4-b024-14dae9643d34}\Shell\AutoRun\command - "" = "J:\AutoRun.exe" 
O33 - MountPoints2\{7552647d-35b5-11e3-afa5-14dae9643d34}\Shell - "" = AutoRun
O33 - MountPoints2\{7552647d-35b5-11e3-afa5-14dae9643d34}\Shell\AutoRun\command - "" = "H:\Setup.exe" 
O33 - MountPoints2\{ee22547c-4d3a-11e4-b024-14dae9643d34}\Shell - "" = AutoRun
O33 - MountPoints2\{ee22547c-4d3a-11e4-b024-14dae9643d34}\Shell\AutoRun\command - "" = "H:\AutoRun.exe" 
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = "H:\AutoRun.exe" 
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2015/01/01 00:45:30 | 000,000,000 | ---D | C] -- C:\Users\Eki\VirtualBox VMs
[2015/01/01 00:43:42 | 000,000,000 | ---D | C] -- C:\Users\Eki\.VirtualBox
[2015/01/01 00:43:36 | 000,000,000 | ---D | C] -- C:\Users\Eki\AppData\Roaming\Andy
[2015/01/01 00:43:36 | 000,000,000 | ---D | C] -- C:\Users\Eki\Andy
[2015/01/01 00:43:32 | 000,000,000 | ---D | C] -- C:\Users\Eki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Andy
[2015/01/01 00:40:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
[2015/01/01 00:40:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2015/01/01 00:40:11 | 000,000,000 | ---D | C] -- C:\Program Files\Oracle
[2015/01/01 00:37:54 | 000,000,000 | ---D | C] -- C:\Program Files\AndyOfflineInstaller
[2015/01/01 00:03:21 | 000,000,000 | ---D | C] -- C:\Program Files\Andy
 
========== Files - Modified Within 30 Days ==========
 
[2015/01/17 22:38:03 | 000,000,380 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-3549277490-1635925036-2046814219-1001.job
[2015/01/17 21:39:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/01/17 21:38:15 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2015/01/17 21:37:45 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015/01/17 21:37:31 | 1698,500,608 | -HS- | M] () -- C:\hiberfil.sys
[2015/01/17 20:19:00 | 000,000,380 | ---- | M] () -- C:\Windows\tasks\update-sys.job
[2015/01/12 23:44:03 | 000,719,418 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/01/12 23:44:03 | 000,132,748 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/01/01 00:43:32 | 000,000,971 | ---- | M] () -- C:\Users\Eki\Desktop\Start Andy.lnk
[2015/01/01 00:40:30 | 000,001,109 | ---- | M] () -- C:\Users\Eki\Application Data\Microsoft\Internet Explorer\Quick Launch\Oracle VM VirtualBox.lnk
[2015/01/01 00:03:37 | 001,176,696 | ---- | M] () -- C:\Users\Eki\AppData\Roaming\AndyCleanVM.exe
[2015/01/01 00:03:32 | 001,177,208 | ---- | M] () -- C:\Users\Eki\AppData\Roaming\AndyCleanupTool.exe
[2014/12/21 18:20:06 | 000,004,608 | ---- | M] () -- C:\Users\Eki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
========== Files Created - No Company Name ==========
 
[2015/01/01 00:43:32 | 000,000,971 | ---- | C] () -- C:\Users\Eki\Desktop\Start Andy.lnk
[2015/01/01 00:40:30 | 000,001,109 | ---- | C] () -- C:\Users\Eki\Application Data\Microsoft\Internet Explorer\Quick Launch\Oracle VM VirtualBox.lnk
[2015/01/01 00:03:34 | 001,176,696 | ---- | C] () -- C:\Users\Eki\AppData\Roaming\AndyCleanVM.exe
[2015/01/01 00:03:22 | 001,177,208 | ---- | C] () -- C:\Users\Eki\AppData\Roaming\AndyCleanupTool.exe
[2014/12/21 18:18:21 | 000,004,608 | ---- | C] () -- C:\Users\Eki\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2014/10/22 15:04:38 | 000,000,132 | ---- | C] () -- C:\Users\Eki\AppData\Roaming\Adobe IllExport Filter CS6 Prefs
[2014/10/07 04:27:08 | 000,000,132 | ---- | C] () -- C:\Users\Eki\AppData\Roaming\Adobe PNG Format CS6 Prefs
[2014/04/14 15:40:59 | 000,038,400 | ---- | C] () -- C:\Windows\System32\drivers\USB_BusEnum_H.sys
[2014/04/14 15:40:59 | 000,030,080 | ---- | C] () -- C:\Windows\System32\drivers\USB_WinMux_H.sys
[2014/04/14 15:40:59 | 000,021,504 | ---- | C] () -- C:\Windows\System32\drivers\USB_MODEM_H.sys
[2014/04/02 18:32:57 | 000,000,413 | ---- | C] () -- C:\Users\Eki\AppData\Local\UserProducts.xml
[2014/03/31 22:43:19 | 007,433,712 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2014/03/27 10:07:12 | 000,007,605 | ---- | C] () -- C:\Users\Eki\AppData\Local\Resmon.ResmonCfg
[2013/11/26 09:20:08 | 000,000,406 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/10/12 12:50:19 | 000,083,968 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2013/10/11 05:31:54 | 000,323,169 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
 
========== ZeroAccess Check ==========
 
[2014/04/28 16:37:11 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/01/27 07:52:21 | 017,561,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 10:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2012/07/26 10:20:13 | 000,354,304 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== LOP Check ==========
 
[2014/10/08 19:22:38 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\AIMP3
[2015/01/01 00:43:36 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\Andy
[2014/09/16 11:27:17 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014/01/15 17:19:53 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\DAEMON Tools Lite
[2015/01/13 19:52:07 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\DMCache
[2014/01/21 19:38:18 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\DownLite
[2014/09/04 12:43:08 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\DownloadManager
[2014/01/28 14:23:42 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\eCyber
[2014/09/06 14:30:14 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\EMCO
[2014/04/14 15:56:15 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\EVDO_Haier
[2014/07/31 20:37:00 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\GameHouse
[2014/12/28 14:11:14 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\IDM
[2014/02/24 17:04:09 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\IrfanView
[2014/05/27 16:13:38 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\iSafe
[2015/01/17 18:01:55 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\MiniLyrics
[2014/10/03 20:38:41 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\MMD
[2014/10/03 23:40:18 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\MMD X
[2014/10/18 20:11:42 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\Opera Software
[2014/09/06 10:50:25 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\RenPy
[2014/09/11 05:32:09 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2014/12/24 23:05:03 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\uTorrent
[2014/02/15 14:20:07 | 000,000,000 | ---D | M] -- C:\Users\Eki\AppData\Roaming\Win8StartMenuCustomizer
 
========== Purity Check ==========
 
 
 
< End of report >
 

  • 0

Advertisements

#2
Essexboy
Posted 18 January 2015 - 11:51 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there, I would like to use a different analysis programme

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Select additions at the bottom
  • Press Scan button.
    frst.JPG
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please attach both logs generated.

  • 0

#3
Essexboy
Posted 23 January 2015 - 06:38 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP