removed avg and installed avast. works better it does not use up processor , but programg take a long time to start.
once started they work fine.
OTL logfile created on: 1/10/2014 7:26:01 AM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = F:\Users\jawnlady\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16428)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
8.00 Gb Total Physical Memory | 5.99 Gb Available Physical Memory | 74.93% Memory free
25.99 Gb Paging File | 23.81 Gb Available in Paging File | 91.60% Paging File free
Paging file location(s): G:\pagefile.sys 6142 6142C:\pagef [Binary data over 200 bytes]
%SystemDrive% = F: | %SystemRoot% = F:\Windows | %ProgramFiles% = F:\Program Files (x86)
Drive C: | 152.67 Gb Total Space | 52.29 Gb Free Space | 34.25% Space Free | Partition Type: NTFS
Drive F: | 465.75 Gb Total Space | 221.53 Gb Free Space | 47.57% Space Free | Partition Type: NTFS
Drive G: | 149.00 Gb Total Space | 68.61 Gb Free Space | 46.05% Space Free | Partition Type: NTFS
Drive L: | 1863.01 Gb Total Space | 23.92 Gb Free Space | 1.28% Space Free | Partition Type: NTFS
Computer Name: JAWNLADY-PC | User Name: jawnlady | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/01/10 07:25:42 | 000,602,112 | ---- | M] (OldTimer Tools) -- F:\Users\jawnlady\Downloads\OTL(1).exe
PRC - [2014/01/02 15:01:07 | 003,764,024 | ---- | M] (AVAST Software) -- F:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014/01/02 15:01:06 | 000,050,344 | ---- | M] (AVAST Software) -- F:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/12/19 20:48:52 | 000,275,568 | ---- | M] (Mozilla Corporation) -- F:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2013/12/14 15:48:40 | 000,247,384 | ---- | M] (RealNetworks, Inc.) -- F:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
PRC - [2013/12/11 11:04:54 | 001,862,536 | ---- | M] (Adobe Systems, Inc.) -- F:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
PRC - [2013/12/05 22:30:23 | 000,223,112 | ---- | M] (Google Inc.) -- F:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
PRC - [2013/11/22 09:42:22 | 000,324,392 | ---- | M] (Uniblue Systems Ltd) -- F:\Program Files (x86)\Uniblue\Powersuite\powersuite_monitor.exe
PRC - [2013/11/22 09:42:22 | 000,324,392 | ---- | M] (Uniblue Systems Limited) -- F:\Program Files (x86)\Uniblue\Powersuite\powersuite.exe
PRC - [2013/09/16 18:24:50 | 003,452,232 | ---- | M] (Auslogics) -- F:\Program Files (x86)\Auslogics\BoostSpeed\BoostSpeed.exe
PRC - [2012/08/26 10:08:52 | 005,019,360 | ---- | M] (FNet Co., Ltd.) -- F:\Program Files (x86)\XFastUSB\XFastUsb.exe
PRC - [2011/05/19 10:10:22 | 000,909,824 | ---- | M] (Creative Technology Ltd) -- F:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
PRC - [2010/11/20 08:17:55 | 000,257,536 | ---- | M] (Microsoft Corporation) -- F:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2009/03/30 15:00:54 | 000,221,184 | ---- | M] (Brother Industries, Ltd.) -- F:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe
========== Modules (No Company Name) ==========
MOD - [2013/12/31 19:16:29 | 000,565,848 | ---- | M] () -- F:\Program Files (x86)\Real\RealPlayer\RPDS\Lib\r1api.dll
MOD - [2013/12/19 20:48:52 | 003,559,024 | ---- | M] () -- F:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013/12/11 11:04:53 | 016,242,056 | ---- | M] () -- F:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll
MOD - [2013/12/08 20:19:10 | 002,342,912 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
MOD - [2013/12/08 20:19:10 | 000,066,048 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
MOD - [2013/12/08 20:19:10 | 000,044,032 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
MOD - [2013/12/08 20:19:10 | 000,043,008 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
MOD - [2013/12/08 20:19:08 | 000,049,152 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
MOD - [2013/12/08 20:19:06 | 011,747,840 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
MOD - [2013/12/08 20:19:00 | 000,350,720 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
MOD - [2013/12/08 20:19:00 | 000,292,864 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
MOD - [2013/12/08 20:19:00 | 000,050,688 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
MOD - [2013/12/08 20:19:00 | 000,047,616 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
MOD - [2013/12/08 20:19:00 | 000,041,472 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
MOD - [2013/12/08 20:19:00 | 000,040,448 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
MOD - [2013/12/08 20:18:58 | 001,723,904 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
MOD - [2013/12/08 20:18:58 | 000,037,888 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
MOD - [2013/12/08 20:18:56 | 001,297,920 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
MOD - [2013/12/08 20:18:56 | 000,359,424 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
MOD - [2013/12/08 20:18:56 | 000,044,032 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
MOD - [2013/12/08 20:18:50 | 000,144,896 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
MOD - [2013/12/08 20:18:48 | 000,038,912 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
MOD - [2013/12/08 20:18:48 | 000,034,816 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
MOD - [2013/12/08 20:18:42 | 000,300,032 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
MOD - [2013/12/08 20:18:38 | 001,518,592 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
MOD - [2013/12/08 20:18:38 | 001,449,472 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
MOD - [2013/12/08 20:18:38 | 000,040,960 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
MOD - [2013/12/08 20:18:34 | 000,118,272 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
MOD - [2013/12/08 20:18:32 | 001,283,584 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
MOD - [2013/12/08 20:18:28 | 000,638,976 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblive555_plugin.dll
MOD - [2013/12/08 20:18:28 | 000,079,360 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
MOD - [2013/12/08 20:18:26 | 000,246,784 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
MOD - [2013/12/08 20:18:24 | 000,117,248 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_http_plugin.dll
MOD - [2013/12/08 20:18:24 | 000,114,688 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
MOD - [2013/12/08 20:18:24 | 000,094,720 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
MOD - [2013/12/08 20:18:24 | 000,077,824 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
MOD - [2013/12/08 20:18:24 | 000,039,936 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\access\libstream_filter_rar_plugin.dll
MOD - [2013/12/08 20:18:24 | 000,037,888 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libau_plugin.dll
MOD - [2013/12/08 20:18:22 | 000,043,520 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
MOD - [2013/12/08 20:18:22 | 000,042,496 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsmf_plugin.dll
MOD - [2013/12/08 20:18:22 | 000,036,864 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libxa_plugin.dll
MOD - [2013/12/08 20:18:20 | 000,136,704 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
MOD - [2013/12/08 20:18:20 | 000,091,136 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
MOD - [2013/12/08 20:18:20 | 000,048,128 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
MOD - [2013/12/08 20:18:20 | 000,039,936 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libvoc_plugin.dll
MOD - [2013/12/08 20:18:20 | 000,038,912 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
MOD - [2013/12/08 20:18:18 | 001,170,944 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,911,360 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,402,944 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libgme_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,192,512 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,141,312 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libogg_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,069,120 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,045,568 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,040,448 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libpva_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,039,424 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libaiff_plugin.dll
MOD - [2013/12/08 20:18:18 | 000,036,864 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libdirac_plugin.dll
MOD - [2013/12/08 20:18:16 | 000,719,872 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
MOD - [2013/12/08 20:18:16 | 000,465,920 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
MOD - [2013/12/08 20:18:16 | 000,113,664 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
MOD - [2013/12/08 20:18:16 | 000,061,440 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
MOD - [2013/12/08 20:18:16 | 000,036,864 | ---- | M] () -- F:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
MOD - [2013/11/27 08:19:26 | 019,336,120 | ---- | M] () -- F:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/11/22 09:42:30 | 001,049,896 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\ui_dll.dll
MOD - [2013/11/22 09:42:08 | 000,593,192 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\locale\en\resources.dll
MOD - [2013/11/22 09:41:50 | 020,764,456 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\libcef.dll
MOD - [2013/11/22 09:41:20 | 000,628,520 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\libGLESv2.dll
MOD - [2013/11/22 09:41:20 | 000,118,056 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\libEGL.dll
MOD - [2013/11/22 09:41:08 | 000,190,264 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\avformat-53.dll
MOD - [2013/11/22 09:41:08 | 000,123,704 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\avutil-51.dll
MOD - [2013/11/22 09:41:06 | 001,100,600 | ---- | M] () -- F:\Program Files (x86)\Uniblue\Powersuite\avcodec-53.dll
MOD - [2013/10/15 08:28:01 | 014,340,096 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\bcf51dc88597d0835c819a2d5a755b74\PresentationFramework.ni.dll
MOD - [2013/10/15 08:27:46 | 012,436,480 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll
MOD - [2013/10/15 08:27:39 | 012,238,336 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\51478a61dbd40488e320a0061e23c4df\PresentationCore.ni.dll
MOD - [2013/10/15 08:27:30 | 003,348,480 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll
MOD - [2013/10/15 08:27:27 | 000,978,432 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll
MOD - [2013/09/24 08:33:08 | 001,670,144 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\f4e49f5f51d2fa5e6190464468dff4d3\Microsoft.VisualBasic.ni.dll
MOD - [2013/09/24 07:56:54 | 000,771,584 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d473c19e69818875b9c739cad8f386a5\System.Runtime.Remoting.ni.dll
MOD - [2013/09/24 07:56:12 | 001,593,344 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll
MOD - [2013/09/24 07:55:46 | 005,464,064 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll
MOD - [2013/09/24 07:55:40 | 007,989,760 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll
MOD - [2013/09/24 07:55:32 | 011,499,520 | ---- | M] () -- F:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013/09/16 18:25:38 | 000,564,608 | ---- | M] () -- F:\Program Files (x86)\Auslogics\BoostSpeed\sqlite3.dll
MOD - [2011/05/20 22:35:00 | 000,247,400 | ---- | M] () -- F:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2009/02/27 16:38:22 | 000,139,264 | R--- | M] () -- F:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
========== Services (SafeList) ==========
SRV:64bit: - [2014/01/02 15:01:06 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- F:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013/11/26 05:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- F:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/09/23 17:24:30 | 000,605,768 | ---- | M] (Copyright 2013 SAMSUNG) [Disabled | Stopped] -- F:\Program Files\Samsung\Samsung Link\Samsung Link.exe -- (Samsung Link Service)
SRV:64bit: - [2013/09/10 10:19:00 | 000,404,360 | ---- | M] (Samsung) [Disabled | Stopped] -- F:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AllShareFrameworkManagerDMS.exe -- (AllShare Framework DMS)
SRV:64bit: - [2013/06/13 15:31:10 | 000,357,144 | ---- | M] (Logitech, Inc.) [Disabled | Stopped] -- F:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2013/03/26 18:13:08 | 000,230,416 | ---- | M] (Nitro PDF Software) [Disabled | Stopped] -- F:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe -- (NitroReaderDriverReadSpool3)
SRV:64bit: - [2012/09/03 08:52:59 | 000,950,272 | ---- | M] (ATI Technologies Inc.) [Disabled | Stopped] -- F:\Windows\SysNative\Ati2evxx.exe -- (Ati External Event Utility)
SRV:64bit: - [2011/10/19 16:19:30 | 000,395,136 | R--- | M] (cFos Software GmbH) [Disabled | Stopped] -- F:\Program Files\ASRock\XFast LAN\spd.exe -- (cFosSpeedS)
SRV:64bit: - [2011/06/09 12:01:00 | 000,555,392 | ---- | M] (SEIKO EPSON CORPORATION) [Disabled | Stopped] -- F:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe -- (EpsonCustomerParticipation)
SRV:64bit: - [2010/05/20 15:26:28 | 000,199,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- F:\Program Files\Microsoft LifeCam\MSCamS64.exe -- (MSCamSvc)
SRV - [2013/12/31 19:16:29 | 001,141,336 | ---- | M] (RealNetworks, Inc.) [Disabled | Stopped] -- F:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe -- (RealPlayer Cloud Service)
SRV - [2013/12/19 20:48:52 | 000,119,408 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- F:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/16 17:44:52 | 000,023,552 | ---- | M] () [Disabled | Stopped] -- F:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2013/12/14 15:48:22 | 000,039,056 | ---- | M] () [Disabled | Stopped] -- F:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/12/11 11:04:56 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- F:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/11/21 09:42:07 | 001,643,696 | ---- | M] (AVG Secure Search) [Disabled | Stopped] -- F:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.1.3\ToolbarUpdater.exe -- (vToolbarUpdater17.1.3)
SRV - [2013/09/11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- F:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2013/08/28 13:32:14 | 000,101,888 | ---- | M] (Freemake) [Disabled | Stopped] -- F:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe -- (Freemake Improver)
SRV - [2013/05/11 06:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- F:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/12/07 17:31:00 | 000,303,360 | ---- | M] () [Disabled | Stopped] -- F:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe -- (WSWNA3100)
SRV - [2011/10/13 22:52:36 | 000,136,616 | ---- | M] () [Disabled | Stopped] -- F:\Program Files (x86)\AMD\OverDrive\AODAssist.exe -- (AODService)
SRV - [2011/05/25 03:25:28 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- F:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- F:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/04/14 15:03:46 | 000,275,832 | ---- | M] (Advanced Micro Devices, Inc.) [Disabled | Stopped] -- F:\Program Files (x86)\AMD\Fusion Utility for Desktop\FusionUtility2Service.exe -- (AMD FusionUtility Service)
SRV - [2010/04/14 15:03:46 | 000,140,160 | ---- | M] (Advanced Micro Devices) [Disabled | Stopped] -- F:\Program Files (x86)\AMD\Reservation Manager\AMD Reservation Manager.exe -- (AMD Reservation Manager)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- F:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2006/12/19 17:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Disabled | Stopped] -- F:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2014/01/02 15:01:43 | 000,079,672 | ---- | M] (AVAST Software) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\aswstm.sys -- (aswStm)
DRV:64bit: - [2014/01/02 15:01:12 | 001,034,464 | ---- | M] (AVAST Software) [File_System | System | Running] -- F:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014/01/02 15:01:12 | 000,207,904 | ---- | M] () [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014/01/02 15:01:11 | 000,422,216 | ---- | M] (AVAST Software) [File_System | System | Running] -- F:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014/01/02 15:01:11 | 000,078,648 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- F:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013/12/23 20:13:13 | 000,032,320 | ---- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\FNETTBOH_305.SYS -- (FNETTBOH_305)
DRV:64bit: - [2013/11/27 08:19:27 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013/11/27 08:19:26 | 000,092,544 | ---- | M] (AVAST Software) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013/11/21 09:42:07 | 000,046,368 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2013/11/02 08:39:46 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013/11/02 08:35:09 | 000,381,440 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2013/10/28 01:12:12 | 000,204,568 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2013/10/28 01:12:10 | 000,107,288 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2013/09/22 07:50:47 | 000,015,936 | ---- | M] (FNet Co., Ltd.) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\FNETURPX.SYS -- (FNETURPX)
DRV:64bit: - [2013/09/19 06:50:10 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2013/09/18 23:03:01 | 000,036,096 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\amdkmpfd.sys -- (amdkmpfd)
DRV:64bit: - [2013/06/16 08:29:11 | 000,021,160 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Stopped] -- F:\Windows\SysNative\drivers\amdkmafd.sys -- (amdkmafd)
DRV:64bit: - [2013/05/23 02:12:52 | 000,059,160 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2013/05/23 02:12:50 | 000,076,568 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2013/05/23 02:12:48 | 000,077,592 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2013/05/23 02:12:48 | 000,013,080 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2013/04/26 15:27:56 | 000,047,512 | ---- | M] (Asmedia Technology) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\asahci64.sys -- (asahci64)
DRV:64bit: - [2013/04/05 07:17:44 | 000,252,048 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2013/03/23 12:59:47 | 000,418,632 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci)
DRV:64bit: - [2013/03/23 12:59:43 | 000,139,592 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3)
DRV:64bit: - [2013/03/09 07:28:25 | 000,015,344 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\wacomrouterfilter.sys -- (wacomrouterfilter)
DRV:64bit: - [2013/03/07 09:49:18 | 000,017,480 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\epmntdrv.sys -- (epmntdrv)
DRV:64bit: - [2013/03/07 09:49:18 | 000,009,800 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\EuGdiDrv.sys -- (EuGdiDrv)
DRV:64bit: - [2013/02/24 09:20:06 | 000,082,600 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2013/02/24 09:20:06 | 000,042,664 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2013/01/13 10:52:27 | 000,011,904 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\amdide64.sys -- (amdide64)
DRV:64bit: - [2012/12/13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/09/03 08:52:59 | 005,352,960 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2012/09/03 08:13:57 | 000,037,272 | ---- | M] (PenMount) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\pmserenum.sys -- (pmserenum)
DRV:64bit: - [2012/09/03 08:13:54 | 000,018,832 | ---- | M] (PenMount) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\pmkbdfltr.sys -- (pmkbdfltr)
DRV:64bit: - [2012/08/23 10:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 10:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/09 17:03:06 | 000,034,640 | ---- | M] (ASRock Inc.) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\AsrRamDisk.sys -- (AsrRamDisk)
DRV:64bit: - [2012/03/30 10:49:08 | 000,056,448 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2012/03/01 02:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- F:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/12 16:42:00 | 001,256,192 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\bcmwlhigh664.sys -- (BCMH43XX)
DRV:64bit: - [2011/08/23 09:57:24 | 000,565,352 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/07/22 09:33:48 | 000,025,056 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Disabled | Stopped] -- F:\Windows\SysNative\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV:64bit: - [2011/07/04 15:19:34 | 001,632,128 | ---- | M] (cFos Software GmbH) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\cfosspeed6.sys -- (cFosSpeed)
DRV:64bit: - [2011/05/25 03:25:48 | 000,174,184 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2011/05/10 15:28:48 | 000,017,192 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\AsrAppCharger.sys -- (AsrAppCharger)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/26 17:11:04 | 000,023,048 | ---- | M] (ASRock Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\AsrVDrive.sys -- (AsrVDrive)
DRV:64bit: - [2010/11/20 09:34:04 | 000,194,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\vpchbus.sys -- (vpcbus)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 07:35:34 | 000,095,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\vpcusb.sys -- (vpcusb)
DRV:64bit: - [2010/05/20 15:26:30 | 002,060,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\VX3000.sys -- (VX3000)
DRV:64bit: - [2010/02/18 08:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:64bit: - [2010/02/03 10:21:56 | 000,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:64bit: - [2009/11/17 19:12:00 | 000,032,344 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2009/07/13 20:35:37 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/04 12:30:28 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\AtiPcie.sys -- (AtiPcie)
DRV:64bit: - [2009/02/12 15:11:26 | 000,026,024 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\rsdrvx64.sys -- (ElRawDisk)
DRV - [2013/03/07 09:49:20 | 000,013,896 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysWOW64\epmntdrv.sys -- (epmntdrv)
DRV - [2013/03/07 09:49:20 | 000,009,160 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysWOW64\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2011/10/13 22:50:52 | 000,055,936 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- F:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys -- (AODDriver4.1)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- F:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = F:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{acbd5593-e5ee-4c15-b48f-1823ce819dec}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKLM\..\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}: "URL" = http://search.iminen...q={searchTerms}
IE - HKLM\..\SearchScopes\{c1d89ae7-449d-4929-b24b-fded04adbe06}: "URL" = http://isearch.glary...s}&src=iesearch
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://start.sweetpa...C-BC5FF437CA16}
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.glary...com/?src=iehome
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EF 51 C8 2E DA 75 CD 01 [binary data]
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - F:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - No CLSID value found
IE - HKCU\..\URLSearchHook: {f4c28532-b9d0-4950-a2df-e83f9929242b} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.yahoo....icevm&type=ASRK
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...000e0469a12dd99
IE - HKCU\..\SearchScopes\{10ADD831-7471-47a3-B882-3996093D85C0}: "URL" = http://search.yahoo....vm&type=PROTOSV
IE - HKCU\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask...17-5183FA5523D6
IE - HKCU\..\SearchScopes\{417D8521-36A5-40e6-ACFE-32498575C579}: "URL" = http://www.google.co...q={searchTerms}
IE - HKCU\..\SearchScopes\{9BDF4322-CABD-4451-B760-EEAEF0692D73}: "URL" = http://mp3tubetoolba...c6df8b11944548b
IE - HKCU\..\SearchScopes\{acbd5593-e5ee-4c15-b48f-1823ce819dec}: "URL" = http://search.mywebs...r={searchTerms}
IE - HKCU\..\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}: "URL" = http://search.iminen...q={searchTerms}
IE - HKCU\..\SearchScopes\{c1d89ae7-449d-4929-b24b-fded04adbe06}: "URL" = http://isearch.glary...s}&src=iesearch
IE - HKCU\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://start.sweetpa...C-BC5FF437CA16}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ==========
FF - prefs.js..browser.startup.homepage: "http://mysearch.avg....sa&d=2013-08-01 08:08:54&v=17.1.3.2&pid=safeguard&sg=0&sap=hp"
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: F:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: F:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: F:\Program Files\VideoLAN\VLC\npvlc.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: F:\Program Files\VideoLAN\VLC\npvlc.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: F:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: F:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.3\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: F:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: F:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: F:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@MyFunCards_5m.com/Plugin: F:\Program Files (x86)\MyFunCards_5m\bar\1.bin\NP5mStub.dll File not found
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: F:\Program Files (x86)\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: F:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: F:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=17.0.4.61: F:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.7.0: F:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.7.0: F:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.7.0: F:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: F:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: F:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=17.0.4.61: F:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: F:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: F:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: F:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.0: F:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: F:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2: F:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: F:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\samsung.com/SamsungLinkPCPlugin: F:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll (Samsung)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: F:\Users\jawnlady\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll File not found
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: F:\PROGRAM FILES\IB UPDATER\FIREFOX
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C4CFC0DE-134F-4466-B2A2-FF7C59A8BFAD}: F:\PROGRAM FILES\UPDATER BY SWEETPACKS\FIREFOX
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\5mffxtbr@MyFunCards_5m.com: F:\Program Files (x86)\MyFunCards_5m\bar\1.bin [2013/08/17 07:56:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: F:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [2013/10/13 10:03:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: F:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/12/31 19:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}: F:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ [2013/09/03 20:42:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F003DA68-8256-4b37-A6C4-350FA04494DF}: F:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013/11/11 09:05:54 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: F:\Program Files\AVAST Software\Avast\WebRep\FF [2014/01/02 15:01:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: F:\Program Files (x86)\\Firebirdc\[email protected] [2013/12/03 17:12:58 | 000,006,759 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{10E4285F-D79B-4147-9447-81DFF109A394}: F:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/12/31 19:17:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: F:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: F:\Program Files (x86)\Mozilla Firefox\plugins [2014/01/09 07:02:59 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: F:\Program Files (x86)\Mozilla Firefox\plugins [2014/01/09 07:02:59 | 000,000,000 | ---D | M]
[2012/08/17 06:28:07 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Extensions
[2013/11/27 07:47:37 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\8vwofctv.default-1369221691003\extensions
[2013/05/29 19:20:38 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\8vwofctv.default-1369221691003\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2013/06/02 20:13:45 | 000,000,000 | ---D | M] (Tidy Network) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\8vwofctv.default-1369221691003\extensions\tidynetwork@tidynetwork
[2013/11/27 07:47:37 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\fzk3my3c.default-1347194154940\extensions
[2013/11/27 07:47:37 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\id2kq7sw.default-1347286680965\extensions
[2013/03/15 22:15:51 | 000,000,000 | ---D | M] (@@toolbarname@@) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\id2kq7sw.default-1347286680965\extensions\[email protected]
[2013/11/27 07:47:37 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\m3y2sz02.default-1374103454879\extensions
[2013/12/04 07:52:01 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\mcjvfcsr.default-1377085680484\extensions
[2013/11/11 22:26:47 | 000,000,000 | ---D | M] ("AOL Toolbar") -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\mcjvfcsr.default-1377085680484\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2013/11/27 07:47:37 | 000,000,000 | ---D | M] (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\qgwhrvgz.default-1374579813511\extensions
[2013/07/23 22:17:39 | 000,000,000 | ---D | M] (AOL Toolbar) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\qgwhrvgz.default-1374579813511\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2013/11/12 14:15:38 | 000,008,920 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\8vwofctv.default-1369221691003\extensions\[email protected]
[2013/09/26 23:27:52 | 000,478,998 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\8vwofctv.default-1369221691003\extensions\[email protected]
[2013/05/22 08:04:31 | 000,350,626 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\8vwofctv.default-1369221691003\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2013/11/12 14:15:38 | 000,008,920 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\fzk3my3c.default-1347194154940\extensions\[email protected]
[2013/09/26 23:27:52 | 000,478,998 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\fzk3my3c.default-1347194154940\extensions\[email protected]
[2013/11/12 14:15:38 | 000,008,920 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\id2kq7sw.default-1347286680965\extensions\[email protected]
[2013/09/26 23:27:52 | 000,478,998 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\id2kq7sw.default-1347286680965\extensions\[email protected]
[2013/11/12 14:15:38 | 000,008,920 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\m3y2sz02.default-1374103454879\extensions\[email protected]
[2013/09/26 23:27:52 | 000,478,998 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\m3y2sz02.default-1374103454879\extensions\[email protected]
[2013/07/27 13:32:43 | 000,350,663 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\m3y2sz02.default-1374103454879\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2013/09/06 18:14:39 | 000,347,599 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\mcjvfcsr.default-1377085680484\extensions\[email protected]
[2013/11/23 06:41:34 | 000,382,345 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\mcjvfcsr.default-1377085680484\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2013/11/12 14:15:38 | 000,008,920 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\qgwhrvgz.default-1374579813511\extensions\[email protected]
[2013/09/26 23:27:52 | 000,478,998 | ---- | M] () (No name found) -- F:\Users\jawnlady\AppData\Roaming\Mozilla\Firefox\Profiles\qgwhrvgz.default-1374579813511\extensions\[email protected]
[2013/12/19 20:48:46 | 000,000,000 | ---D | M] (No name found) -- F:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/12/19 20:48:52 | 000,000,000 | ---D | M] (Default) -- F:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/12/19 20:48:47 | 000,000,000 | ---D | M] (No name found) -- F:\Program Files (x86)\Mozilla Firefox\distribution\extensions
[2013/12/19 20:48:47 | 000,000,000 | ---D | M] (AOL Toolbar) -- F:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2013/12/31 19:16:41 | 000,144,968 | ---- | M] (RealPlayer) -- F:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll
========== Chrome ==========
CHR - default_search_provider: Conduit (Enabled)
CHR - default_search_provider: search_url = http://search.condui...M=2&sspv=CHNTR1
CHR - default_search_provider: suggest_url = http://suggest.searc...spv=CHNTR1&UM=2,
CHR - plugin: registryAccess (Enabled) = F:\Windows\SysWOW64\npDeployJava1.dll
CHR - Extension: Free Smileys & Emoticons = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl\3.0.29.0_0\
CHR - Extension: outobox = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjpdnoojnohifgekbkmnfbiobhcbedka\1.0.0_0\
CHR - Extension: avast! Online Security = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0\
CHR - Extension: RealDownloader = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_1\
CHR - Extension: Flash Player = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbjipaiolmjdcnkfghlbpmgjjiicckl\1.0_0\
CHR - Extension: Freemake Video Converter = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_1\
CHR - Extension: New tab for Chrome\u2122 = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifflliplgeajjdhmkcfnngfpgbjonjg\1.0.0_0\
CHR - Extension: DVDVideoSoft = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_1\
CHR - Extension: IncrediBar for Chrome\u2122 = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\niogeckbkdcabhnapjbkeiklablhjoca\1.0.5_0\
CHR - Extension: Google Wallet = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_1\
CHR - Extension: SweetPacks Chrome Extension = F:\Users\jawnlady\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.4.0.0_1\
O1 HOSTS File: ([2013/01/13 13:26:08 | 000,445,034 | R--- | M]) - F:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.123fporn.info
O1 - Hosts: 15284 more lines...
O2:64bit: - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - F:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - F:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - F:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - F:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
O2:64bit: - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - F:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
O2 - BHO: (Unit) - {2C4BA31C-0C15-11E2-90C7-9BFCBEB168B3} - F:\Users\jawnlady\AppData\Local\UnitLayers\temp.dat ()
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - F:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - F:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - F:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - F:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (DVDVideoSoft WebPageAdjuster Class) - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - F:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - F:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - F:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - F:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - F:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4:64bit: - HKLM..\Run: [EvtMgr6] F:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [RTHDVCPL] F:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [XFast LAN] F:\Program Files\ASRock\XFast LAN\cfosspeed.exe (cFos Software GmbH)
O4 - HKLM..\Run: [AvastUI.exe] F:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [THX TruStudio NB Settings] F:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [XFastUSB] F:\Program Files (x86)\XFastUSB\XFastUsb.exe (FNet Co., Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8:64bit: - Extra context menu item: Free YouTube Download - F:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()
O8 - Extra context menu item: Free YouTube Download - F:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()
O9:64bit: - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - F:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
O9:64bit: - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - F:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
O9 - Extra Button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - F:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
O9 - Extra 'Tools' menuitem : Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - F:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} http://ccfiles.creat...102/CTSUEng.cab (Creative Software AutoUpdate)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creat...13/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creat...10926/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 66.185.33.226 66.185.33.230
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4A6B1F6E-6E90-4CA5-954D-95667292F290}: DhcpNameServer = 66.185.33.226 66.185.33.230
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{637F1E05-C0F1-41FF-B6C1-A5B49F43871F}: DhcpNameServer = 66.185.33.226 66.185.33.230
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{94AA1500-F49C-4512-887B-C1F8A6C437D4}: DhcpNameServer = 66.185.33.226 66.185.33.230
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - Reg Error: Value error. File not found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18 - Protocol\Handler\linkscanner - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - F:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - F:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - F:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.1.3\ViProtocol.dll (AVG Secure Search)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - F:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (F:\Windows\system32\userinit.exe) - F:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - F:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - F:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (f:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - f:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/06/10 17:42:20 | 000,000,024 | ---- | M] () - F:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{52e68d58-baf9-11e2-b07e-bc5ff437ca16}\Shell - "" = AutoRun
O33 - MountPoints2\{52e68d58-baf9-11e2-b07e-bc5ff437ca16}\Shell\AutoRun\command - "" = F:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL N:\autorun.bat
O33 - MountPoints2\{8915d047-e6e6-11e1-ac2d-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{8915d047-e6e6-11e1-ac2d-806e6f6e6963}\Shell\AutoRun\command - "" = I:\Setup.exe
O33 - MountPoints2\{8915d048-e6e6-11e1-ac2d-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{8915d048-e6e6-11e1-ac2d-806e6f6e6963}\Shell\AutoRun\command - "" = E:\ASRSetup.exe
O33 - MountPoints2\{b5b312d3-e34b-11e2-be24-bc5ff437ca16}\Shell\AutoRun\command - "" = N:\autorun.exe
O33 - MountPoints2\{b5b312d3-e34b-11e2-be24-bc5ff437ca16}\Shell\phone\command - "" = N:\autorun.exe
O33 - MountPoints2\{cd834dcb-f527-11e2-ba21-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{cd834dcb-f527-11e2-ba21-806e6f6e6963}\Shell\AutoRun\command - "" = E:\ASRSetup.exe
O34 - HKLM BootExecute: (autoche)
O34 - HKLM BootExecute: (autoche)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2014/01/09 18:59:04 | 000,023,048 | ---- | C] (ASRock Inc.) -- F:\Windows\SysNative\drivers\AsrVDrive.sys
[2014/01/09 18:54:54 | 000,565,352 | ---- | C] (Realtek ) -- F:\Windows\SysNative\drivers\Rt64win7.sys
[2014/01/09 18:41:20 | 001,632,128 | ---- | C] (cFos Software GmbH) -- F:\Windows\SysNative\drivers\cfosspeed6.sys
[2014/01/09 18:41:20 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN
[2014/01/08 22:52:03 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2014/01/08 22:33:54 | 000,000,000 | ---D | C] -- F:\NVIDIA
[2014/01/08 08:06:25 | 000,000,000 | ---D | C] -- F:\Users\jawnlady\AppData\Local\Microsoft Corporation
[2014/01/08 08:06:05 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
[2014/01/08 07:50:30 | 000,000,000 | ---D | C] -- F:\ProgramData\Windows Genuine Advantage
[2014/01/02 15:01:19 | 000,079,672 | ---- | C] (AVAST Software) -- F:\Windows\SysNative\drivers\aswstm.sys
[2013/12/31 19:18:24 | 000,000,000 | ---D | C] -- F:\Users\jawnlady\AppData\Roaming\RealNetworks
[2013/12/31 19:17:42 | 000,000,000 | ---D | C] -- F:\ProgramData\RealNetworks
[2013/12/31 19:17:42 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\RealNetworks
[2013/12/31 19:17:07 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\xing shared
[2013/12/31 19:16:32 | 000,278,600 | ---- | C] (Progressive Networks) -- F:\Windows\SysWow64\pncrt.dll
[2013/12/19 20:48:46 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Mozilla Firefox
[2013/12/11 22:49:02 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Firebirdc
[2012/09/08 14:23:31 | 000,082,816 | ---- | C] (VSO Software) -- F:\Users\jawnlady\AppData\Roaming\pcouffin.sys
========== Files - Modified Within 30 Days ==========
[2014/01/10 07:35:21 | 000,000,902 | ---- | M] () -- F:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/01/10 07:19:31 | 000,014,624 | -H-- | M] () -- F:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/01/10 07:19:31 | 000,014,624 | -H-- | M] () -- F:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/01/10 07:12:03 | 000,000,358 | ---- | M] () -- F:\Windows\tasks\powersuite_monitor.job
[2014/01/10 07:10:15 | 000,000,898 | ---- | M] () -- F:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/01/10 07:09:44 | 000,000,408 | ---- | M] () -- F:\Windows\tasks\FreeFileViewerUpdateChecker.job
[2014/01/10 07:09:03 | 000,067,584 | --S- | M] () -- F:\Windows\bootstat.dat
[2014/01/10 07:08:47 | 2146,881,535 | -HS- | M] () -- F:\hiberfil.sys
[2014/01/10 07:04:00 | 000,000,830 | ---- | M] () -- F:\Windows\tasks\Adobe Flash Player Updater.job
[2014/01/09 22:25:20 | 000,002,619 | ---- | M] () -- F:\Users\jawnlady\Documents\CRIME STOPPERS 2014.rtf
[2014/01/09 19:39:00 | 000,000,940 | ---- | M] () -- F:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1890158463-3709190660-4072106968-1000UA.job
[2014/01/09 18:41:48 | 000,001,253 | ---- | M] () -- F:\Users\jawnlady\Desktop\cFos Traffic Shaping.lnk
[2014/01/09 18:41:21 | 000,000,003 | ---- | M] () -- F:\Users\jawnlady\AppData\Local\user_data.ini
[2014/01/08 22:39:00 | 000,000,918 | ---- | M] () -- F:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1890158463-3709190660-4072106968-1000Core.job
[2014/01/08 22:35:31 | 000,000,706 | ---- | M] () -- F:\Users\jawnlady\Desktop\XtremeTuner HD.lnk
[2014/01/08 08:06:05 | 000,002,115 | ---- | M] () -- F:\Users\Public\Desktop\Windows 7 Upgrade Advisor.lnk
[2014/01/08 07:42:12 | 000,001,908 | ---- | M] () -- F:\Windows\diagwrn.xml
[2014/01/08 07:42:12 | 000,001,908 | ---- | M] () -- F:\Windows\diagerr.xml
[2014/01/08 07:41:33 | 000,010,438 | ---- | M] () -- F:\Users\jawnlady\Desktop\Windows Compatibility Report.htm
[2014/01/07 19:34:25 | 000,799,078 | ---- | M] () -- F:\Windows\SysNative\PerfStringBackup.INI
[2014/01/07 19:34:25 | 000,674,614 | ---- | M] () -- F:\Windows\SysNative\perfh009.dat
[2014/01/07 19:34:25 | 000,126,286 | ---- | M] () -- F:\Windows\SysNative\perfc009.dat
[2014/01/05 23:40:15 | 051,260,293 | ---- | M] () -- F:\Users\jawnlady\Documents\kool ideas.rtf
[2014/01/05 15:03:25 | 000,027,080 | ---- | M] () -- F:\Users\jawnlady\Documents\Transmission from Pleiadians about sexuality.rtf
[2014/01/04 10:58:21 | 000,000,782 | ---- | M] () -- F:\Users\Public\Desktop\CCleaner.lnk
[2014/01/03 08:46:01 | 000,000,842 | ---- | M] () -- F:\Windows\Brpfx04a.ini
[2014/01/02 15:58:59 | 000,014,858 | ---- | M] () -- F:\Users\jawnlady\Documents\Predicciones 2014 para Cáncer.rtf
[2014/01/02 15:01:45 | 000,001,926 | ---- | M] () -- F:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/01/02 15:01:43 | 000,079,672 | ---- | M] (AVAST Software) -- F:\Windows\SysNative\drivers\aswstm.sys
[2014/01/02 15:01:12 | 001,034,464 | ---- | M] (AVAST Software) -- F:\Windows\SysNative\drivers\aswSnx.sys
[2014/01/02 15:01:12 | 000,207,904 | ---- | M] () -- F:\Windows\SysNative\drivers\aswVmm.sys
[2014/01/02 15:01:11 | 000,422,216 | ---- | M] (AVAST Software) -- F:\Windows\SysNative\drivers\aswSP.sys
[2014/01/02 15:01:11 | 000,334,136 | ---- | M] (AVAST Software) -- F:\Windows\SysNative\aswBoot.exe
[2014/01/02 15:01:11 | 000,078,648 | ---- | M] (AVAST Software) -- F:\Windows\SysNative\drivers\aswMonFlt.sys
[2014/01/02 15:01:10 | 000,043,152 | ---- | M] (AVAST Software) -- F:\Windows\avastSS.scr
[2014/01/02 11:05:38 | 000,003,551 | ---- | M] () -- F:\Users\jawnlady\Documents\Consciousness of Plants.rtf
[2013/12/31 19:17:57 | 000,001,268 | ---- | M] () -- F:\Users\Public\Desktop\RealPlayer Cloud.lnk
[2013/12/31 19:16:32 | 000,278,600 | ---- | M] (Progressive Networks) -- F:\Windows\SysWow64\pncrt.dll
[2013/12/29 13:33:37 | 000,004,185 | ---- | M] () -- F:\Users\jawnlady\Documents\9 Signs of a Leaky Gut (and how to Heal it).rtf
[2013/12/23 20:13:13 | 000,032,320 | ---- | M] (FNet Co., Ltd.) -- F:\Windows\SysNative\drivers\FNETTBOH_305.SYS
[2013/12/23 07:21:38 | 000,006,728 | ---- | M] () -- F:\bootsqm.dat
[2013/12/22 09:32:33 | 000,012,326 | ---- | M] () -- F:\Users\jawnlady\AppData\Local\txiepnkv
[2013/12/22 09:31:21 | 000,045,664 | ---- | M] () -- F:\Users\jawnlady\AppData\Local\spoqxudj
[2013/12/22 09:30:16 | 001,031,019 | ---- | M] () -- F:\Users\jawnlady\AppData\Local\orvhdkft
[2013/12/22 09:29:04 | 000,067,992 | ---- | M] () -- F:\Users\jawnlady\AppData\Local\jwaeguln
[2013/12/22 09:28:03 | 000,000,000 | ---- | M] () -- F:\Users\jawnlady\AppData\Roaming\SharedSettings.ccs
[2013/12/18 18:17:00 | 000,006,925 | ---- | M] () -- F:\Users\jawnlady\Documents\bombas.rtf
[2013/12/17 16:51:16 | 000,003,040 | ---- | M] () -- F:\Users\jawnlady\Documents\aguinaldos.rtf
[2013/12/17 10:10:13 | 000,003,776 | ---- | M] () -- F:\Users\jawnlady\Documents\gioresume.rtf
[2013/12/17 09:44:33 | 000,000,162 | -H-- | M] () -- F:\Users\jawnlady\Documents\~$oresume.rtf
[2013/12/14 13:10:50 | 000,002,003 | ---- | M] () -- F:\Users\jawnlady\Documents\auspiciadores de tu y yo.rtf
[2013/12/14 12:29:04 | 000,000,783 | ---- | M] () -- F:\Users\jawnlady\Documents\tu y yo auspiciadores Cierre.rtf
[2013/12/14 09:57:43 | 000,010,953 | ---- | M] () -- F:\Users\jawnlady\Documents\QUE ES UN ORB.rtf
[2013/12/12 07:01:36 | 000,000,258 | RHS- | M] () -- F:\ProgramData\ntuser.pol
[2013/12/11 08:03:48 | 000,289,472 | ---- | M] () -- F:\Windows\SysNative\FNTCACHE.DAT
========== Files Created - No Company Name ==========
[2014/01/09 22:25:20 | 000,002,619 | ---- | C] () -- F:\Users\jawnlady\Documents\CRIME STOPPERS 2014.rtf
[2014/01/09 18:54:54 | 000,074,272 | ---- | C] () -- F:\Windows\SysNative\RtNicProp64.dll
[2014/01/09 18:41:48 | 000,001,253 | ---- | C] () -- F:\Users\jawnlady\Desktop\cFos Traffic Shaping.lnk
[2014/01/08 08:06:05 | 000,002,127 | ---- | C] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 Upgrade Advisor.lnk
[2014/01/08 08:06:05 | 000,002,115 | ---- | C] () -- F:\Users\Public\Desktop\Windows 7 Upgrade Advisor.lnk
[2014/01/08 07:37:39 | 000,010,438 | ---- | C] () -- F:\Users\jawnlady\Desktop\Windows Compatibility Report.htm
[2014/01/05 23:40:14 | 051,260,293 | ---- | C] () -- F:\Users\jawnlady\Documents\kool ideas.rtf
[2014/01/05 15:03:14 | 000,027,080 | ---- | C] () -- F:\Users\jawnlady\Documents\Transmission from Pleiadians about sexuality.rtf
[2014/01/02 15:58:59 | 000,014,858 | ---- | C] () -- F:\Users\jawnlady\Documents\Predicciones 2014 para Cáncer.rtf
[2014/01/02 11:05:38 | 000,003,551 | ---- | C] () -- F:\Users\jawnlady\Documents\Consciousness of Plants.rtf
[2013/12/31 19:17:57 | 000,001,268 | ---- | C] () -- F:\Users\Public\Desktop\RealPlayer Cloud.lnk
[2013/12/29 13:33:37 | 000,004,185 | ---- | C] () -- F:\Users\jawnlady\Documents\9 Signs of a Leaky Gut (and how to Heal it).rtf
[2013/12/23 07:21:38 | 000,006,728 | ---- | C] () -- F:\bootsqm.dat
[2013/12/22 09:32:33 | 000,012,326 | ---- | C] () -- F:\Users\jawnlady\AppData\Local\txiepnkv
[2013/12/22 09:31:21 | 000,045,664 | ---- | C] () -- F:\Users\jawnlady\AppData\Local\spoqxudj
[2013/12/22 09:30:16 | 001,031,019 | ---- | C] () -- F:\Users\jawnlady\AppData\Local\orvhdkft
[2013/12/22 09:29:04 | 000,067,992 | ---- | C] () -- F:\Users\jawnlady\AppData\Local\jwaeguln
[2013/12/22 09:28:03 | 000,000,000 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\SharedSettings.ccs
[2013/12/17 16:51:16 | 000,003,040 | ---- | C] () -- F:\Users\jawnlady\Documents\aguinaldos.rtf
[2013/12/17 09:44:33 | 000,000,162 | -H-- | C] () -- F:\Users\jawnlady\Documents\~$oresume.rtf
[2013/12/14 12:29:04 | 000,000,783 | ---- | C] () -- F:\Users\jawnlady\Documents\tu y yo auspiciadores Cierre.rtf
[2013/12/14 09:57:34 | 000,010,953 | ---- | C] () -- F:\Users\jawnlady\Documents\QUE ES UN ORB.rtf
[2013/12/12 07:01:36 | 000,000,258 | RHS- | C] () -- F:\ProgramData\ntuser.pol
[2013/12/02 07:19:06 | 000,004,873 | ---- | C] () -- F:\ProgramData\hnxqxtyw.qyo
[2013/12/01 09:12:48 | 000,005,086 | ---- | C] () -- F:\ProgramData\zscupymp.kxv
[2013/11/30 09:06:24 | 000,787,656 | ---- | C] () -- F:\Windows\SysWow64\PerfStringBackup.INI
[2013/10/30 12:07:00 | 000,030,568 | ---- | C] () -- F:\Windows\MusiccityDownload.exe
[2013/10/30 12:06:54 | 000,974,848 | ---- | C] () -- F:\Windows\SysWow64\cis-2.4.dll
[2013/10/30 12:06:54 | 000,081,920 | ---- | C] () -- F:\Windows\SysWow64\issacapi_bs-2.3.dll
[2013/10/30 12:06:54 | 000,065,536 | ---- | C] () -- F:\Windows\SysWow64\issacapi_pe-2.3.dll
[2013/10/30 12:06:54 | 000,057,344 | ---- | C] () -- F:\Windows\SysWow64\issacapi_se-2.3.dll
[2013/10/16 21:23:08 | 000,053,248 | ---- | C] () -- F:\Windows\SysWow64\CommonDL.dll
[2013/10/16 21:23:08 | 000,002,411 | ---- | C] () -- F:\Windows\SysWow64\lgAxconfig.ini
[2013/09/26 19:58:25 | 002,498,216 | ---- | C] () -- F:\Windows\SysWow64\BootMan.exe
[2013/09/26 19:58:25 | 000,087,112 | ---- | C] () -- F:\Windows\SysWow64\setupempdrv03.exe
[2013/09/26 19:58:25 | 000,019,840 | ---- | C] () -- F:\Windows\SysWow64\EuEpmGdi.dll
[2013/09/26 19:58:25 | 000,013,896 | ---- | C] () -- F:\Windows\SysWow64\epmntdrv.sys
[2013/09/26 19:58:25 | 000,009,160 | ---- | C] () -- F:\Windows\SysWow64\EuGdiDrv.sys
[2013/09/05 07:08:38 | 000,028,160 | ---- | C] () -- F:\Users\jawnlady\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/08/23 14:34:32 | 000,706,560 | ---- | C] () -- F:\Windows\SysWow64\ContentDirectoryPresenter.dll
[2013/08/23 14:34:30 | 000,025,600 | ---- | C] () -- F:\Windows\SysWow64\MediaDB.dll
[2013/08/01 08:04:36 | 000,000,162 | ---- | C] () -- F:\Windows\Reimage.ini
[2013/07/23 19:18:54 | 000,046,592 | ---- | C] () -- F:\Windows\SysWow64\boost_thread-vc90-mt-1_47.dll
[2013/07/23 19:18:46 | 000,038,912 | ---- | C] () -- F:\Windows\SysWow64\boost_date_time-vc90-mt-1_47.dll
[2013/07/23 19:18:42 | 000,704,000 | ---- | C] () -- F:\Windows\SysWow64\boost_regex-vc90-mt-1_47.dll
[2013/07/23 19:18:40 | 000,227,840 | ---- | C] () -- F:\Windows\SysWow64\boost_serialization-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,130,048 | ---- | C] () -- F:\Windows\SysWow64\boost_filesystem-vc90-mt-1_47.dll
[2013/07/23 19:18:38 | 000,012,800 | ---- | C] () -- F:\Windows\SysWow64\boost_system-vc90-mt-1_47.dll
[2013/06/20 18:16:56 | 000,000,842 | ---- | C] () -- F:\Windows\Brpfx04a.ini
[2013/06/20 18:16:56 | 000,000,163 | ---- | C] () -- F:\Windows\brpcfx.ini
[2013/06/20 18:09:58 | 000,000,419 | ---- | C] () -- F:\Windows\BRWMARK.INI
[2013/06/20 18:09:58 | 000,000,027 | ---- | C] () -- F:\Windows\BRPP2KA.INI
[2013/06/20 17:37:43 | 000,000,000 | ---- | C] () -- F:\Windows\brdfxspd.dat
[2013/06/19 18:55:20 | 000,036,874 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\Worker.DAT
[2013/06/19 07:08:05 | 000,000,018 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\uid.dat
[2013/05/12 12:31:11 | 000,000,839 | ---- | C] () -- F:\Users\jawnlady\.recently-used.xbel
[2013/05/02 07:18:35 | 011,567,104 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\Sandra.mdb
[2013/05/02 06:32:20 | 000,000,547 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\AutoGK.ini
[2013/04/10 07:09:10 | 000,451,072 | ---- | C] () -- F:\Windows\SysWow64\ISSRemoveSP.exe
[2013/01/13 12:50:20 | 000,005,886 | ---- | C] () -- F:\Windows\wininit.ini
[2013/01/01 12:42:43 | 000,000,000 | ---- | C] () -- F:\ProgramData\b8f1e33b5242460a5b76a2ca369933de_c
[2012/12/23 11:25:15 | 000,000,376 | ---- | C] () -- F:\Windows\ODBC.INI
[2012/09/08 14:23:31 | 000,099,384 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\inst.exe
[2012/09/08 14:23:31 | 000,007,859 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\pcouffin.cat
[2012/09/08 14:23:31 | 000,001,167 | ---- | C] () -- F:\Users\jawnlady\AppData\Roaming\pcouffin.inf
[2012/09/08 14:18:15 | 000,033,958 | ---- | C] () -- F:\ProgramData\uninstaller.exe
[2012/08/31 05:58:13 | 000,007,610 | ---- | C] () -- F:\Users\jawnlady\AppData\Local\Resmon.ResmonCfg
[2012/08/26 10:11:55 | 000,001,424 | ---- | C] () -- F:\Windows\THXCfg_SP_APOIM.ini
[2012/08/26 10:11:54 | 000,001,323 | ---- | C] () -- F:\Windows\THXCfg_HP_APOIM.ini
[2012/08/26 10:11:54 | 000,001,323 | ---- | C] () -- F:\Windows\THXCfg_APOIM.ini
[2012/08/17 06:15:52 | 000,000,071 | ---- | C] () -- F:\Windows\ENX430.ini
[2012/08/17 06:04:31 | 000,190,464 | ---- | C] () -- F:\Windows\SysWow64\APOMngr.DLL
[2012/08/17 06:04:31 | 000,073,728 | ---- | C] () -- F:\Windows\SysWow64\CmdRtr.DLL
[2012/08/17 06:02:26 | 000,000,003 | ---- | C] () -- F:\Users\jawnlady\AppData\Local\user_data.ini
[2012/08/16 06:58:19 | 000,053,299 | ---- | C] () -- F:\Windows\SysWow64\pthreadVC.dll
[2012/08/15 10:40:31 | 000,000,000 | ---- | C] () -- F:\Windows\ativpsrm.bin
========== ZeroAccess Check ==========
[2011/11/17 02:41:18 | 000,002,048 | -HS- | M] () -- F:\Windows\Installer\{8b6305c8-2a6f-63fb-f1ec-1004930916a7}\@
[2011/11/17 02:41:18 | 000,000,000 | -HSD | M] -- F:\Windows\Installer\{8b6305c8-2a6f-63fb-f1ec-1004930916a7}\L
[2013/06/19 07:06:23 | 000,000,000 | -HSD | M] -- F:\Windows\Installer\{8b6305c8-2a6f-63fb-f1ec-1004930916a7}\U
[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- F:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = F:\Windows\SysNative\shell32.dll -- [2013/07/25 22:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 21:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = F:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = F:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013/01/16 18:43:14 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Ashampoo
[2013/11/27 18:13:02 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\AVAST Software
[2013/05/12 12:59:04 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Avery
[2013/06/14 22:41:31 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\AVG
[2013/01/16 18:13:55 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Canneverbe Limited
[2012/12/29 08:46:46 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\com.w3i.intune
[2013/09/24 08:06:06 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\DAEMON Tools Lite
[2012/08/26 12:57:53 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\DeviceVm
[2012/09/08 14:22:32 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Digiarty
[2013/04/05 19:05:41 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Downloaded Installations
[2013/02/22 07:52:26 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\DriverCure
[2013/10/18 07:23:07 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\DVDVideoSoft
[2013/09/03 20:43:13 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\DVDVideoSoftIEHelpers
[2013/05/12 12:34:14 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Epson
[2013/09/17 21:56:45 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\eXtremeSenses
[2013/04/05 19:15:15 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\FileOpen
[2013/09/02 18:23:52 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\FreeFileViewer
[2013/01/30 07:17:36 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\gtk-2.0
[2013/06/02 11:05:03 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Gygan
[2012/08/17 06:45:00 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Leadertech
[2014/01/10 06:58:24 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\MediaMonkey
[2013/11/13 08:23:58 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\mjusbsp
[2013/12/09 19:04:00 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Nitro
[2013/08/10 20:17:22 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Nitro PDF
[2013/01/01 12:54:55 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\ooVoo Details
[2013/09/19 06:48:50 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\OTB_util
[2013/11/13 06:35:59 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Oxy
[2013/09/06 07:01:15 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\PC Utility Kit
[2013/10/07 22:47:23 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\PC-FAX TX
[2012/12/06 20:08:15 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\PhotoScape
[2013/11/09 19:27:04 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Samsung
[2013/10/28 07:30:20 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\SmileysWeLove
[2013/02/22 07:52:26 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\SparkTrust
[2013/08/01 07:52:59 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Splashtop
[2012/08/28 18:11:55 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\SumatraPDF
[2012/09/26 19:26:33 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\TuneUp Software
[2013/06/01 15:27:13 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Uniblue
[2014/01/04 12:41:22 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\uTorrent
[2012/09/08 14:23:49 | 000,000,000 | ---D | M] -- F:\Users\jawnlady\AppData\Roaming\Vso
========== Purity Check ==========
========== Files - Unicode (All) ==========
[2013/03/07 21:14:20 | 000,002,769 | ---- | M] ()(F:\Users\jawnlady\Documents\?11 TIPS TO HEAL YOUR ADRENAL GLANDS.rtf) -- F:\Users\jawnlady\Documents\11 TIPS TO HEAL YOUR ADRENAL GLANDS.rtf
[2013/03/07 21:14:20 | 000,002,769 | ---- | C] ()(F:\Users\jawnlady\Documents\?11 TIPS TO HEAL YOUR ADRENAL GLANDS.rtf) -- F:\Users\jawnlady\Documents\11 TIPS TO HEAL YOUR ADRENAL GLANDS.rtf
========== Alternate Data Streams ==========
@Alternate Data Stream - 143 bytes -> F:\ProgramData\TEMP:6DDED7D9
@Alternate Data Stream - 134 bytes -> F:\ProgramData\TEMP:B755D674
< End of report >