OTL logfile created on: 9/21/2013 12:52:56 PM - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Danny\Downloads
64bit- Home Premium Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
 
5.93 Gb Total Physical Memory | 3.47 Gb Available Physical Memory | 58.53% Memory free
11.86 Gb Paging File | 8.63 Gb Available in Paging File | 72.81% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 578.00 Gb Total Space | 531.37 Gb Free Space | 91.93% Space Free | Partition Type: NTFS
Drive D: | 11.62 Gb Total Space | 1.42 Gb Free Space | 12.19% Space Free | Partition Type: NTFS
Drive K: | 341.80 Gb Total Space | 209.59 Gb Free Space | 61.32% Space Free | Partition Type: NTFS
 
Computer Name: DANNY-HP | User Name: Danny | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013/09/21 12:01:35 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Danny\Downloads\OTL.exe
PRC - [2013/09/07 09:14:38 | 000,055,624 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
PRC - [2013/08/30 08:47:34 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/08/30 08:47:33 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/08/16 04:21:43 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/06/27 16:11:08 | 020,097,696 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
PRC - [2010/01/25 20:00:00 | 000,514,232 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe
PRC - [2010/01/18 18:21:08 | 000,568,888 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
PRC - [2010/01/15 20:41:30 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/01/15 20:41:28 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2009/05/09 00:39:48 | 002,068,992 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe
PRC - [2009/05/09 00:11:00 | 002,068,992 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\CNYHKEY.exe
PRC - [2009/02/28 03:13:04 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe
PRC - [2008/11/20 18:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013/09/21 11:26:37 | 001,175,040 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\wx._core_.pyd
MOD - [2013/09/21 11:26:37 | 000,805,888 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\wx._gdi_.pyd
MOD - [2013/09/21 11:26:37 | 000,735,232 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\wx._misc_.pyd
MOD - [2013/09/21 11:26:37 | 000,557,056 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\pysqlite2._sqlite.pyd
MOD - [2013/09/21 11:26:37 | 000,504,832 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\windows._cacheinvalidation.pyd
MOD - [2013/09/21 11:26:37 | 000,364,544 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\pythoncom27.dll
MOD - [2013/09/21 11:26:37 | 000,320,512 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32com.shell.shell.pyd
MOD - [2013/09/21 11:26:37 | 000,128,512 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\_elementtree.pyd
MOD - [2013/09/21 11:26:37 | 000,110,080 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\PyWinTypes27.dll
MOD - [2013/09/21 11:26:37 | 000,108,544 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32security.pyd
MOD - [2013/09/21 11:26:37 | 000,098,816 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32api.pyd
MOD - [2013/09/21 11:26:37 | 000,087,040 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\_ctypes.pyd
MOD - [2013/09/21 11:26:37 | 000,070,656 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\wx._html2.pyd
MOD - [2013/09/21 11:26:37 | 000,044,032 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\_socket.pyd
MOD - [2013/09/21 11:26:37 | 000,026,624 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\_multiprocessing.pyd
MOD - [2013/09/21 11:26:37 | 000,022,528 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32ts.pyd
MOD - [2013/09/21 11:26:37 | 000,017,408 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32profile.pyd
MOD - [2013/09/21 11:26:37 | 000,011,264 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32crypt.pyd
MOD - [2013/09/21 11:26:36 | 001,153,024 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\_ssl.pyd
MOD - [2013/09/21 11:26:36 | 000,811,008 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\wx._windows_.pyd
MOD - [2013/09/21 11:26:36 | 000,711,680 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\_hashlib.pyd
MOD - [2013/09/21 11:26:36 | 000,122,368 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\wx._wizard.pyd
MOD - [2013/09/21 11:26:36 | 000,119,808 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32file.pyd
MOD - [2013/09/21 11:26:36 | 000,038,912 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32inet.pyd
MOD - [2013/09/21 11:26:36 | 000,035,840 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32process.pyd
MOD - [2013/09/21 11:26:36 | 000,025,600 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32pdh.pyd
MOD - [2013/09/21 11:26:35 | 001,062,400 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\wx._controls_.pyd
MOD - [2013/09/21 11:26:35 | 000,686,080 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\unicodedata.pyd
MOD - [2013/09/21 11:26:35 | 000,127,488 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\pyexpat.pyd
MOD - [2013/09/21 11:26:35 | 000,018,432 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\win32event.pyd
MOD - [2013/09/21 11:26:35 | 000,010,240 | ---- | M] () -- C:\Users\Danny\AppData\Local\Temp\_MEI29922\select.pyd
MOD - [2013/09/13 19:51:44 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2013/09/13 19:51:20 | 001,242,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2013/08/16 04:21:41 | 000,410,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppgooglenaclpluginchrome.dll
MOD - [2013/08/16 04:21:40 | 013,594,064 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll
MOD - [2013/08/16 04:21:39 | 004,053,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll
MOD - [2013/08/16 04:20:49 | 000,709,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\libglesv2.dll
MOD - [2013/08/16 04:20:48 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\libegl.dll
MOD - [2013/08/16 04:20:46 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ffmpegsumo.dll
MOD - [2010/01/18 18:21:08 | 000,568,888 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
MOD - [2009/07/14 05:55:57 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\4bdeb88758dccd625f4703ed77aaf348\System.Runtime.Remoting.ni.dll
MOD - [2009/07/14 05:55:32 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\fedf1ba58dced4f0b3f8c457648ceed9\System.Windows.Forms.ni.dll
MOD - [2009/07/14 05:55:26 | 001,586,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll
MOD - [2009/07/14 05:55:14 | 003,313,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll
MOD - [2009/07/14 05:55:09 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll
MOD - [2009/07/14 05:55:06 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll
MOD - [2009/07/14 05:55:05 | 007,949,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll
MOD - [2009/07/14 05:55:00 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll
MOD - [2009/02/28 03:13:04 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe
MOD - [2009/02/20 01:22:50 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\WMINPUT.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2013/08/30 08:47:33 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:[b]64bit:[/b] - [2010/03/10 15:29:46 | 000,202,752 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2013/09/06 21:55:40 | 000,565,672 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010/01/15 20:41:30 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/01/04 19:03:42 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2013/08/30 08:48:10 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Stopped] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2013/08/30 08:48:10 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2013/08/30 08:48:10 | 000,204,880 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2013/08/30 08:48:10 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Unknown] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2013/08/30 08:48:10 | 000,065,336 | ---- | M] () [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2013/08/30 08:48:10 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:[b]64bit:[/b] - [2013/08/30 08:48:09 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2013/08/30 08:48:09 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:[b]64bit:[/b] - [2012/12/13 14:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2010/03/10 15:39:52 | 006,403,072 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atipmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2010/03/10 14:34:06 | 000,188,928 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2010/03/04 15:43:00 | 000,346,144 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2010/01/28 06:33:38 | 000,116,736 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:[b]64bit:[/b] - [2010/01/19 20:44:32 | 000,023,536 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- c:\Program Files\PC-Doctor for Windows\pcdsrvc_x64.pkms -- (PCDSRVC{F36B3A4C-F95654BD-06000000}_0)
DRV:[b]64bit:[/b] - [2010/01/15 21:22:08 | 000,538,136 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2009/12/19 04:33:34 | 000,852,256 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28x.sys -- (netr28x)
DRV:[b]64bit:[/b] - [2009/09/17 21:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPDSK/2
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPDSK/2
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {1B187875-E9CE-4900-92F9-E7433D85DBC9}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{1B187875-E9CE-4900-92F9-E7433D85DBC9}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPDSK/2
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPDSK/2
IE - HKLM\..\SearchScopes,DefaultScope = {1B187875-E9CE-4900-92F9-E7433D85DBC9}
IE - HKLM\..\SearchScopes\{1B187875-E9CE-4900-92F9-E7433D85DBC9}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPDSK/2
IE - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPDSK/2
IE - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\..\SearchScopes,DefaultScope = {1B187875-E9CE-4900-92F9-E7433D85DBC9}
IE - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\..\SearchScopes\{1B187875-E9CE-4900-92F9-E7433D85DBC9}: "URL" = http://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox
IE - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\3.0.40818.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpWinExt,version=4.0: C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\msntoolbar@msn.com: C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\Firefox [2010/10/03 04:09:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2010/10/03 04:09:51 | 000,000,000 | ---D | M]
 
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.57\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: MSN\u00AE Toolbar (Enabled) = C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\npwinext.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\3.0.40818.0\npctrl.dll
CHR - Extension: Context = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aalnjolghjkkogicompabhhbbkljnlka\0.402_0\
CHR - Extension: Dark Legends = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\acfbekphmapfjpdkfedomagjpccekhaa\2.0.0.0_0\
CHR - Extension: Google Docs = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Google Docs = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Lucidchart: Diagrams Online = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apboafhkiegglekeafbckfjldecefkhn\18_0\
CHR - Extension: Google Drive = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: Google Drive = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Web Developer = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm\0.4.3_0\
CHR - Extension: Web Developer = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm\0.4.4_0\
CHR - Extension: ColorZilla = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp\0.5.3_0\
CHR - Extension: YouTube = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: YouTube = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.4_0\
CHR - Extension: Adblock Plus = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0\
CHR - Extension: Google Search = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Google Search = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Tampermonkey = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.3.3487_0\
CHR - Extension: Tampermonkey = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo\3.4.3568.10_0\
CHR - Extension: PerfectPixel by WellDoneCode = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkaagdgjmgdmbnecmcefdhjekcoceebi\1.55_0\
CHR - Extension: PerfectPixel by WellDoneCode = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkaagdgjmgdmbnecmcefdhjekcoceebi\1.56_0\
CHR - Extension: Gmail Offline = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk\1.20_0\
CHR - Extension: Google Analytics Opt-out Add-on (by Google) = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\fllaojicojecljbmefodhfapmkghcbnh\1_0\
CHR - Extension: AdBlock = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.4_0\
CHR - Extension: AdBlock = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.5_0\
CHR - Extension: AdBlock = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.7_0\
CHR - Extension: No name found = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: AppJump App Launcher and Organizer = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\hccbinpobnjcpckmcfngmdpnbnjpmcbd\0.9.3_0\
CHR - Extension: WhatFont = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm\2.0.2_0\
CHR - Extension: Analytics Blocker = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmcpbefnpobogldglnlikgojpaddibgb\1.0.1_0\
CHR - Extension: Auto HD For YouTube = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak\4.0.2_0\
CHR - Extension: StayFocusd = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\laankejkbhbdhmipfmgcngdelahlfoji\1.3.12_0\
CHR - Extension: Corporate Ipsum = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmadckmfehehmdnmhaebniooenedcbb\0.0.0.1_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0\
CHR - Extension: Picasa = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb\6.2.2_0\
CHR - Extension: Gmail = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: Gmail = C:\Users\Danny\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:[b]64bit:[/b] - HKLM..\Run: [hpsysdrv] c:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Hewlett-Packard)
O4:[b]64bit:[/b] - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BATINDICATOR] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe (Hewlett-Packard)
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe (Hewlett-Packard)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000..\Run: [Google Update] Reg Error: Value error. File not found
O4 - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000..\Run: [GoogleDriveSync] C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Google)
O4 - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hstart.bat ()
O4 - Startup: C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
O7 - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKU\S-1-5-21-2507247597-1199408665-2946720537-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{60507863-EF0F-464C-8DF4-A007C7D55452}: DhcpNameServer = 192.168.0.1
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\ms-itss - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013/09/21 12:46:34 | 000,000,000 | ---D | C] -- C:\FRST
[2013/09/21 11:57:09 | 000,000,000 | -HSD | C] -- C:\Windows\SysNative\%APPDATA%
[2013/09/21 11:52:54 | 000,033,400 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/09/21 11:52:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013/09/21 11:52:53 | 000,378,944 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/09/21 11:52:52 | 001,030,952 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/09/21 11:52:52 | 000,072,016 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/09/21 11:52:52 | 000,064,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/09/21 11:52:51 | 000,287,840 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013/09/21 11:52:51 | 000,080,816 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/09/21 11:52:33 | 000,041,664 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/09/21 11:52:21 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013/09/21 11:51:52 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013/09/21 11:50:54 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\test
[2013/09/21 11:43:14 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Apple Computer
[2013/09/21 11:43:14 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Apple Computer
[2013/09/21 11:43:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2013/09/21 11:43:11 | 000,033,240 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2013/09/21 11:43:11 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2013/09/21 11:43:02 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2013/09/21 11:43:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes
[2013/09/21 11:43:02 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2013/09/21 11:43:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2013/09/21 11:43:02 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2013/09/21 11:42:42 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Apple
[2013/09/21 11:42:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2013/09/21 11:42:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2013/09/21 11:42:21 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2013/09/21 11:42:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2013/09/21 11:42:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2013/09/21 11:42:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2013/09/21 00:22:33 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\CrashDumps
[2013/09/21 00:14:51 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\uTorrent
[2013/09/21 00:12:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
[2013/09/21 00:12:58 | 000,000,000 | ---D | C] -- C:\Program Files\PeerBlock
[2013/09/20 23:57:49 | 000,000,000 | ---D | C] -- C:\Users\Danny\Documents\Rainmeter
[2013/09/20 23:57:49 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Rainmeter
[2013/09/20 23:57:46 | 000,000,000 | ---D | C] -- C:\Program Files\Rainmeter
[2013/09/20 23:55:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2013/09/20 23:37:10 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\foobar2000
[2013/09/20 23:36:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2013/09/20 23:36:56 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2013/09/20 23:33:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\foobar2000
[2013/08/28 09:20:18 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2013/08/28 09:20:18 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2013/08/28 09:20:18 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2013/08/28 09:20:18 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2013/08/28 09:20:17 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2013/08/28 09:20:00 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013/08/28 09:19:58 | 000,000,000 | ---D | C] -- C:\Riot Games
[2013/08/28 09:19:40 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2013/08/28 09:19:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2013/08/24 07:43:52 | 000,000,000 | R--D | C] -- C:\Users\Danny\Google Drive
[2013/08/24 07:42:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
[2013/08/24 00:14:40 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\HpUpdate
[2013/08/23 18:43:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2013/08/23 18:43:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2013/08/23 18:43:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2013/08/23 15:43:04 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Nero
[2013/08/23 15:43:04 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe
[2013/08/23 15:22:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2013/08/23 15:22:18 | 000,368,640 | ---- | C] (Pegasus Imaging Corporation) -- C:\Windows\SysWow64\TwnLib4.dll
[2013/08/23 15:22:17 | 001,757,184 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagX7.dll
[2013/08/23 15:22:17 | 000,802,816 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXRA7.dll
[2013/08/23 15:22:17 | 000,497,296 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXpr7.dll
[2013/08/23 15:22:17 | 000,258,048 | ---- | C] (Pegasus Imaging Corp.) -- C:\Windows\SysWow64\imagXR7.dll
[2013/08/23 15:22:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2013/08/23 15:22:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero
[2013/08/23 15:22:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero
[2013/08/23 15:12:38 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Skype
[2013/08/23 15:12:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/08/23 15:12:34 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2013/08/23 15:12:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/08/23 11:19:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2013/08/23 10:58:12 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\FreeVoipDeal
[2013/08/23 10:58:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeVoipDeal
[2013/08/23 10:58:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FreeVoipDeal.com
[2013/08/23 10:57:55 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Programs
[2013/08/23 10:56:52 | 001,397,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win_utilman.exe
[2013/08/23 10:56:49 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\_MDLogs
[2013/08/23 00:10:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/08/23 00:09:37 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\ATI
[2013/08/23 00:09:37 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\ATI
[2013/08/23 00:09:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2013/08/23 00:09:14 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Google
[2013/08/23 00:09:08 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Deployment
[2013/08/23 00:09:08 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Apps
[2013/08/23 00:08:52 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Macromedia
[2013/08/23 00:08:50 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Adobe
[2013/08/23 00:08:38 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Intel Corporation
[2013/08/23 00:08:24 | 000,000,000 | R--D | C] -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013/08/23 00:08:24 | 000,000,000 | R--D | C] -- C:\Users\Danny\Searches
[2013/08/23 00:08:24 | 000,000,000 | R--D | C] -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013/08/23 00:08:24 | 000,000,000 | -H-D | C] -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2013/08/23 00:08:17 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Identities
[2013/08/23 00:08:15 | 000,000,000 | R--D | C] -- C:\Users\Danny\Contacts
[2013/08/23 00:08:14 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\VirtualStore
[2013/08/23 00:07:45 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Hewlett-Packard
[2013/08/23 00:02:24 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Hewlett-Packard
[2013/08/23 00:01:32 | 000,000,000 | --SD | C] -- C:\Users\Danny\AppData\Roaming\Microsoft
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Saved Games
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Pictures
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Music
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Links
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Favorites
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Downloads
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Documents
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\Desktop
[2013/08/23 00:01:32 | 000,000,000 | R--D | C] -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\AppData\Local\Temporary Internet Files
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Templates
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Start Menu
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\SendTo
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Recent
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\PrintHood
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\NetHood
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Documents\My Videos
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Documents\My Pictures
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Documents\My Music
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\My Documents
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Local Settings
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\AppData\Local\History
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Cookies
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\Application Data
[2013/08/23 00:01:32 | 000,000,000 | -HSD | C] -- C:\Users\Danny\AppData\Local\Application Data
[2013/08/23 00:01:32 | 000,000,000 | -H-D | C] -- C:\Users\Danny\AppData
[2013/08/23 00:01:32 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Temp
[2013/08/23 00:01:32 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Local\Microsoft
[2013/08/23 00:01:32 | 000,000,000 | ---D | C] -- C:\Users\Danny\AppData\Roaming\Media Center Programs
[2013/08/23 00:01:31 | 000,000,000 | R--D | C] -- C:\Users\Danny\Videos
[2013/08/23 00:01:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Try Microsoft Office for 60 days
[2013/08/23 00:01:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\User Guides
[2013/08/22 23:58:09 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013/09/21 12:14:01 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/09/21 11:52:54 | 000,001,924 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/09/21 11:52:51 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/09/21 11:43:12 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/09/21 11:33:18 | 000,015,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/21 11:33:18 | 000,015,568 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/21 11:30:46 | 000,713,888 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/09/21 11:30:46 | 000,619,206 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/09/21 11:30:46 | 000,107,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/09/21 11:26:34 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/09/21 11:26:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/21 11:26:00 | 479,522,815 | -HS- | M] () -- C:\hiberfil.sys
[2013/09/21 00:15:22 | 000,000,815 | ---- | M] () -- C:\Users\Danny\Desktop\µTorrent.lnk
[2013/09/21 00:15:22 | 000,000,795 | ---- | M] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2013/09/21 00:12:59 | 000,001,738 | ---- | M] () -- C:\Users\Danny\Desktop\PeerBlock.lnk
[2013/09/21 00:08:05 | 000,000,332 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForDanny.job
[2013/09/20 23:57:47 | 000,001,732 | ---- | M] () -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
[2013/09/20 23:47:07 | 000,001,184 | ---- | M] () -- C:\Users\Danny\Desktop\foobar2000 - Shortcut (2).lnk
[2013/09/20 23:46:44 | 000,001,412 | ---- | M] () -- C:\Users\Danny\Desktop\foobar2000 - Shortcut.lnk
[2013/09/20 23:36:56 | 000,000,818 | ---- | M] () -- C:\Users\Danny\Desktop\7-Zip File Manager.lnk
[2013/09/20 23:33:58 | 000,001,037 | ---- | M] () -- C:\Users\Public\Desktop\foobar2000.lnk
[2013/09/20 22:23:45 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForLudzie.job
[2013/08/30 08:48:10 | 001,030,952 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/08/30 08:48:10 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/08/30 08:48:10 | 000,204,880 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/08/30 08:48:10 | 000,072,016 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/08/30 08:48:10 | 000,065,336 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/08/30 08:48:10 | 000,064,288 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/08/30 08:48:09 | 000,080,816 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/08/30 08:48:09 | 000,033,400 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/08/30 08:47:40 | 000,041,664 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/08/30 08:47:14 | 000,287,840 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013/08/28 09:19:59 | 000,001,613 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013/08/24 07:43:53 | 000,001,673 | ---- | M] () -- C:\Users\Danny\Desktop\Google Drive.lnk
[2013/08/24 07:42:12 | 000,002,046 | ---- | M] () -- C:\Users\Public\Desktop\Google Slides.lnk
[2013/08/24 07:42:12 | 000,002,042 | ---- | M] () -- C:\Users\Public\Desktop\Google Sheets.lnk
[2013/08/24 07:42:12 | 000,002,030 | ---- | M] () -- C:\Users\Public\Desktop\Google Docs.lnk
[2013/08/23 23:06:05 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013/08/23 18:43:12 | 000,000,919 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2013/08/23 15:12:35 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/08/23 10:58:10 | 000,001,252 | ---- | M] () -- C:\Users\Danny\Desktop\FreeVoipDeal.lnk
[2013/08/23 10:56:50 | 000,000,056 | -H-- | M] () -- C:\Windows\SysWow64\ezsidmv.dat
[2013/08/23 07:56:05 | 000,039,219 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2013/08/23 07:56:05 | 000,039,219 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013/08/23 01:47:36 | 000,002,285 | ---- | M] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/08/23 01:46:18 | 000,000,544 | ---- | M] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2013/08/23 01:46:10 | 000,328,688 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/08/23 00:10:03 | 000,002,261 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/08/23 00:08:38 | 000,001,443 | ---- | M] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/08/23 00:01:47 | 000,000,000 | RHS- | M] () -- C:\Windows\SysWow64\drivers\103C_HP_53316J G D_p6551uk_Y53316J G D_0U_QCZC039_ECZC039CQVZ DPS_4A_I2A9C_SMSI_V1.0_6.12_T100712_WU3-0_L409_M6072_J1000_7Intel_8655_93.20_#130811_N18143090;10EC8168_(WX169EA#ABU)_X_CD3_Z_2xxx0204GRxxxxxxxx0.MRK
[2013/08/23 00:01:47 | 000,000,000 | RHS- | M] () -- C:\Windows\SysNative\drivers\103C_HP_53316J G D_p6551uk_Y53316J G D_0U_QCZC039_ECZC039CQVZ DPS_4A_I2A9C_SMSI_V1.0_6.12_T100712_WU3-0_L409_M6072_J1000_7Intel_8655_93.20_#130811_N18143090;10EC8168_(WX169EA#ABU)_X_CD3_Z_2xxx0204GRxxxxxxxx0.MRK
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013/09/21 11:52:54 | 000,001,924 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013/09/21 11:52:52 | 000,204,880 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/09/21 11:52:51 | 000,065,336 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/09/21 11:52:51 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2013/09/21 11:50:54 | 000,000,057 | ---- | C] () -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hstart.bat
[2013/09/21 11:43:12 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2013/09/21 11:42:41 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2013/09/21 00:15:22 | 000,000,795 | ---- | C] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2013/09/21 00:15:21 | 000,000,815 | ---- | C] () -- C:\Users\Danny\Desktop\µTorrent.lnk
[2013/09/21 00:12:59 | 000,001,738 | ---- | C] () -- C:\Users\Danny\Desktop\PeerBlock.lnk
[2013/09/20 23:57:47 | 000,001,732 | ---- | C] () -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
[2013/09/20 23:57:47 | 000,001,708 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
[2013/09/20 23:47:06 | 000,001,184 | ---- | C] () -- C:\Users\Danny\Desktop\foobar2000 - Shortcut (2).lnk
[2013/09/20 23:46:44 | 000,001,412 | ---- | C] () -- C:\Users\Danny\Desktop\foobar2000 - Shortcut.lnk
[2013/09/20 23:38:00 | 000,000,818 | ---- | C] () -- C:\Users\Danny\Desktop\7-Zip File Manager.lnk
[2013/09/20 23:33:58 | 000,001,119 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
[2013/09/20 23:33:58 | 000,001,037 | ---- | C] () -- C:\Users\Public\Desktop\foobar2000.lnk
[2013/08/28 09:27:06 | 000,000,336 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForLudzie.job
[2013/08/28 09:19:58 | 000,001,613 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013/08/24 07:43:53 | 000,001,673 | ---- | C] () -- C:\Users\Danny\Desktop\Google Drive.lnk
[2013/08/24 07:42:12 | 000,002,046 | ---- | C] () -- C:\Users\Public\Desktop\Google Slides.lnk
[2013/08/24 07:42:12 | 000,002,042 | ---- | C] () -- C:\Users\Public\Desktop\Google Sheets.lnk
[2013/08/24 07:42:12 | 000,002,030 | ---- | C] () -- C:\Users\Public\Desktop\Google Docs.lnk
[2013/08/23 23:06:05 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2013/08/23 18:43:12 | 000,000,919 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2013/08/23 10:58:10 | 000,001,252 | ---- | C] () -- C:\Users\Danny\Desktop\FreeVoipDeal.lnk
[2013/08/23 10:56:50 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2013/08/23 00:10:03 | 000,002,285 | ---- | C] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/08/23 00:10:03 | 000,002,261 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/08/23 00:09:18 | 000,000,896 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/08/23 00:09:17 | 000,000,892 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/08/23 00:08:38 | 000,001,443 | ---- | C] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/08/23 00:08:31 | 000,001,415 | ---- | C] () -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2013/08/23 00:08:24 | 000,001,449 | ---- | C] () -- C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/08/23 00:08:01 | 000,000,332 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForDanny.job
[2013/08/23 00:02:11 | 000,000,544 | ---- | C] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2013/08/23 00:02:04 | 000,002,242 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visit eBay.co.uk.lnk
[2013/08/23 00:01:47 | 000,000,000 | RHS- | C] () -- C:\Windows\SysWow64\drivers\103C_HP_53316J G D_p6551uk_Y53316J G D_0U_QCZC039_ECZC039CQVZ DPS_4A_I2A9C_SMSI_V1.0_6.12_T100712_WU3-0_L409_M6072_J1000_7Intel_8655_93.20_#130811_N18143090;10EC8168_(WX169EA#ABU)_X_CD3_Z_2xxx0204GRxxxxxxxx0.MRK
[2013/08/23 00:01:47 | 000,000,000 | RHS- | C] () -- C:\Windows\SysNative\drivers\103C_HP_53316J G D_p6551uk_Y53316J G D_0U_QCZC039_ECZC039CQVZ DPS_4A_I2A9C_SMSI_V1.0_6.12_T100712_WU3-0_L409_M6072_J1000_7Intel_8655_93.20_#130811_N18143090;10EC8168_(WX169EA#ABU)_X_CD3_Z_2xxx0204GRxxxxxxxx0.MRK
[2013/08/23 00:01:32 | 000,000,290 | ---- | C] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/08/23 00:01:32 | 000,000,272 | ---- | C] () -- C:\Users\Danny\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013/08/23 00:01:28 | 000,001,172 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snapfish Photos - First 30 Prints Free.lnk
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009/07/14 02:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009/07/14 02:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2013/09/21 01:45:18 | 000,000,000 | ---D | M] -- C:\Users\Danny\AppData\Roaming\foobar2000
[2013/08/23 10:59:11 | 000,000,000 | ---D | M] -- C:\Users\Danny\AppData\Roaming\FreeVoipDeal
[2013/09/20 23:57:49 | 000,000,000 | ---D | M] -- C:\Users\Danny\AppData\Roaming\Rainmeter
[2013/09/21 11:51:48 | 000,000,000 | ---D | M] -- C:\Users\Danny\AppData\Roaming\test
[2013/09/21 01:14:21 | 000,000,000 | ---D | M] -- C:\Users\Danny\AppData\Roaming\uTorrent
[2013/08/23 10:56:49 | 000,000,000 | ---D | M] -- C:\Users\Danny\AppData\Roaming\_MDLogs
[2013/08/28 12:58:52 | 000,000,000 | ---D | M] -- C:\Users\Ludzie\AppData\Roaming\LolClient
[2013/08/28 09:19:29 | 000,000,000 | ---D | M] -- C:\Users\Ludzie\AppData\Roaming\Riot Games
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >