Jump to content

Jcm22243

Members
 View Profile  See their activity

  • Posts

    3

  • Joined

  • Last visited

Reputation

0 Neutral
  1. Jcm22243
    The computer does indeed start normally now mbar-log-2013-05-17 (19-07-51).txt mbar-log-2013-05-18 (00-55-19).txt
  2. Jcm22243
    I thank you for your incredibly fast response... Side note, I do currently have Utorrent on my computer, but it will be removed once I have the ability. As well as all the files contained in it. Here are the results you requested. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-05-2013 Ran by SYSTEM on 17-05-2013 17:57:40 Running from E:\ Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 9 Boot Mode: Recovery The current controlset is ControlSet001 ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log. ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s [6629480 2011-04-14] (Realtek Semiconductor) HKLM\...\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-12] (Alps Electric Co., Ltd.) HKLM\...\Run: [intelPAN] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray [1935120 2011-11-01] (Intel® Corporation) HKLM\...\Run: [bTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp [10357008 2011-10-18] (Intel Corporation) HKLM\...\Run: [QuickSet] c:\Program Files\Dell\QuickSet\QuickSet.exe [4500640 2011-03-10] (Dell Inc.) HKLM\...\Run: [intelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" [4526 2010-11-29] () HKLM\...\Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup [483424 2012-02-01] () HKLM\...\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon [2780776 2011-07-19] (CANON INC.) HKLM-x32\...\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-25] (Dell, Inc.) HKLM-x32\...\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe" [240112 2010-11-25] (Sonic Solutions) HKLM-x32\...\Run: [NeroLauncher] C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900 [67496 2012-08-21] () HKLM-x32\...\Run: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup [968048 2012-02-01] () HKLM-x32\...\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM-x32\...\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2 [577536 2013-01-08] (Creative Technology Ltd) HKLM-x32\...\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) HKLM-x32\...\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon [1637496 2011-08-04] (CANON INC.) HKLM-x32\...\Run: [iJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE [439440 2011-09-27] (CANON INC.) HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Aeria Ignite] "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent [1917464 2013-04-08] (Aeria Games & Entertainment) HKU\John\...\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED [802136 2013-04-19] (BitTorrent Inc.) HKU\John\...\Run: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent [1635752 2013-05-03] (Valve Corporation) HKU\John\...\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18678376 2013-04-19] (Skype Technologies S.A.) HKU\John\...\Run: [Akamai NetSession Interface] "C:\Users\John\AppData\Local\Akamai\netsession_win.exe" [4480768 2013-01-26] (Akamai Technologies, Inc.) HKU\John\...\Winlogon: [shell] explorer.exe,C:\Users\John\AppData\Roaming\skype.dat [131584 2011-11-17] (AMA-Software LTD.) <==== ATTENTION AppInit_DLLs: [0 ] () ==================== Services (Whitelisted) ================= S2 Browser Manager; C:\ProgramData\Browser Manager\2.6.1249.132\{61d8b74e-8d89-46ff-afa6-33382c54ac73}\browsermngr.exe [2787280 2013-03-22] () S3 DMService; C:\Windows\DOWNLO~1\DMService.exe [487312 2012-06-05] (Microsoft Corporation) S2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2011-09-06] () S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-11-01] () S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4703728 2012-11-15] (INCA Internet Co., Ltd.) S2 NWVZHelper; C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe [270848 2010-06-14] (Novatel Wireless Inc.) S2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1872568 2013-04-19] (Microsoft Corporation) S2 uagqecsvc; C:\Program Files\Microsoft Forefront UAG\Endpoint Components\3.1.0\uagqecsvc.exe [150928 2011-09-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [141384 2010-11-11] (MCCI Corporation) S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-05-17 16:00 - 2013-05-17 16:00 - 00000000 ____D C:\FRST 2013-05-17 13:31 - 2013-05-17 13:39 - 00000000 ____A C:\Users\John\Application Data\skype.ini 2013-05-17 13:31 - 2013-05-17 13:39 - 00000000 ____A C:\Users\John\AppData\Roaming\skype.ini 2013-05-15 22:31 - 2013-05-15 22:31 - 00000000 ____D C:\Users\John\Downloads\Eurotrip.UNRATED.DVDRiP.XViD-DEiTY 2013-05-15 02:01 - 2013-05-05 16:36 - 17818624 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-05-15 02:01 - 2013-05-05 16:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-05-15 02:01 - 2013-05-05 14:25 - 12324864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-05-15 02:01 - 2013-05-05 14:12 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-05-15 02:00 - 2013-04-04 20:19 - 10926080 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2013-05-15 02:00 - 2013-04-04 20:08 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll 2013-05-15 02:00 - 2013-04-04 20:01 - 01346560 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2013-05-15 02:00 - 2013-04-04 20:00 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2013-05-15 02:00 - 2013-04-04 19:59 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2013-05-15 02:00 - 2013-04-04 19:58 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll 2013-05-15 02:00 - 2013-04-04 19:57 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2013-05-15 02:00 - 2013-04-04 19:56 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe 2013-05-15 02:00 - 2013-04-04 19:55 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll 2013-05-15 02:00 - 2013-04-04 19:55 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll 2013-05-15 02:00 - 2013-04-04 19:54 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2013-05-15 02:00 - 2013-04-04 19:54 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2013-05-15 02:00 - 2013-04-04 19:51 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2013-05-15 02:00 - 2013-04-04 19:46 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll 2013-05-15 02:00 - 2013-04-04 17:11 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-05-15 02:00 - 2013-04-04 17:09 - 09738752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-05-15 02:00 - 2013-04-04 17:02 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-05-15 02:00 - 2013-04-04 17:02 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-05-15 02:00 - 2013-04-04 17:02 - 01104384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-05-15 02:00 - 2013-04-04 17:01 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-05-15 02:00 - 2013-04-04 16:59 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-05-15 02:00 - 2013-04-04 16:58 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-05-15 02:00 - 2013-04-04 16:58 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-05-15 02:00 - 2013-04-04 16:57 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-05-15 02:00 - 2013-04-04 16:56 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-05-15 02:00 - 2013-04-04 16:55 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-05-15 02:00 - 2013-04-04 16:54 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-05-15 02:00 - 2013-04-04 16:50 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-05-14 21:38 - 2013-04-10 01:01 - 00983400 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys 2013-05-14 21:38 - 2013-04-10 01:01 - 00265064 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys 2013-05-14 21:38 - 2011-02-03 06:25 - 00144384 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll 2013-05-14 21:37 - 2013-04-09 22:30 - 03153920 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys 2013-05-14 21:37 - 2013-03-19 00:53 - 00230400 ____A (Microsoft Corporation) C:\Windows\System32\wwansvc.dll 2013-05-14 21:37 - 2013-03-19 00:53 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\wwanprotdim.dll 2013-05-14 21:37 - 2013-02-27 01:02 - 00111448 ____A (Microsoft Corporation) C:\Windows\System32\consent.exe 2013-05-14 21:37 - 2013-02-27 00:52 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll 2013-05-14 21:37 - 2013-02-27 00:52 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\shdocvw.dll 2013-05-14 21:37 - 2013-02-27 00:48 - 01930752 ____A (Microsoft Corporation) C:\Windows\System32\authui.dll 2013-05-14 21:37 - 2013-02-27 00:47 - 00070144 ____A (Microsoft Corporation) C:\Windows\System32\appinfo.dll 2013-05-14 21:37 - 2013-02-26 23:55 - 12872704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2013-05-14 21:37 - 2013-02-26 23:55 - 00180224 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll 2013-05-14 21:37 - 2013-02-26 23:49 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2013-05-07 10:49 - 2013-05-07 10:49 - 00001660 ____A C:\Users\John\Desktop\MapleStory.lnk 2013-05-07 00:08 - 2013-05-07 00:08 - 00000000 ____D C:\Nexon 2013-05-06 23:21 - 2013-05-07 00:08 - 1366767344 ____A (Nexon) C:\Users\John\Desktop\MSSetupv134.exe 2013-05-06 23:21 - 2013-05-07 00:08 - 1362662281 ____A C:\Users\John\Desktop\MSSetupv134.z02 2013-05-06 23:21 - 2013-05-07 00:08 - 1362423371 ____A C:\Users\John\Desktop\MSSetupv134.z01 2013-05-06 23:21 - 2013-05-07 00:08 - 1150102813 ____A C:\Users\John\Desktop\MSSetupv134.z03 2013-05-06 23:21 - 2013-05-06 23:21 - 02008064 ____A C:\Users\John\Downloads\MapleStoryDownloader.exe 2013-05-06 22:03 - 2012-11-15 16:27 - 04703728 ____A (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\GameMon.des 2013-05-06 22:01 - 2013-05-06 22:01 - 00000000 ____D C:\Program Files\Common Files\INCA Shared 2013-05-06 22:01 - 2005-01-03 01:43 - 00004682 ____A (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\npptNT2.sys 2013-05-06 22:01 - 2003-07-19 10:17 - 00005174 ____A C:\Windows\SysWOW64\nppt9x.vxd 2013-05-06 21:56 - 2013-05-06 21:56 - 00000671 ____A C:\Users\Public\Desktop\Flyff.lnk 2013-05-06 21:56 - 2013-05-06 21:56 - 00000671 ____A C:\ProgramData\Desktop\Flyff.lnk 2013-05-06 21:50 - 2013-05-06 21:50 - 00000000 ____D C:\Program Files\Gpotato 2013-05-06 21:45 - 2013-05-06 21:50 - 1179887329 ____A (Gala-Net ) C:\Users\John\Desktop\Flyff_US_V19_20120710.exe 2013-05-06 21:44 - 2013-05-06 21:44 - 00696368 ____A C:\Users\John\Downloads\Flyff_US_Downloader.exe 2013-05-05 06:12 - 2013-05-05 06:12 - 00000219 ____A C:\Users\John\Desktop\Team Fortress 2.url 2013-05-02 21:53 - 2013-05-02 21:53 - 00000000 ____D C:\Users\John\Application Data\Roxio Log Files 2013-05-02 21:53 - 2013-05-02 21:53 - 00000000 ____D C:\Users\John\AppData\Roaming\Roxio Log Files 2013-05-02 21:51 - 2013-05-02 21:51 - 00000219 ____A C:\Users\John\Desktop\Dota 2.url 2013-05-02 06:12 - 2013-05-02 06:28 - 374251218 ____A C:\Users\John\Downloads\Kristine-Kahill-HD_28595_Large.wmv 2013-05-01 02:25 - 2013-05-01 02:55 - 00000000 ____D C:\Users\John\Downloads\P90X - Extreme Home Fitness Exercise Complete Workout 2013-04-29 21:22 - 2013-04-29 21:22 - 00001731 ____A C:\Users\John\Desktop\Digimon Masters.lnk 2013-04-29 21:19 - 2013-04-29 21:19 - 00000000 ____D C:\AeriaGames 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Application Data\Akamai 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Application Data\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Akamai 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\AppData\Local\Akamai 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\AppData\Local\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\ProgramData\Application Data\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\ProgramData\Aeria Games 2013-04-29 21:14 - 2013-04-29 21:19 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin 2013-04-29 21:14 - 2013-04-29 21:14 - 00002030 ____A C:\Users\Public\Desktop\Aeria Ignite.lnk 2013-04-29 21:14 - 2013-04-29 21:14 - 00002030 ____A C:\ProgramData\Desktop\Aeria Ignite.lnk 2013-04-29 21:14 - 2013-04-29 21:14 - 00000000 ____D C:\Program Files (x86)\Aeria Games 2013-04-29 21:12 - 2013-04-29 21:12 - 03538712 ____A (Aeria Games & Entertainment) C:\Users\John\Downloads\aeria_ignite_install.exe 2013-04-25 01:39 - 2013-04-25 01:40 - 00000000 ____D C:\Users\John\Local Settings\Application Data\{E855EEC7-FBC2-41A2-AAC3-AF854178B858} 2013-04-25 01:39 - 2013-04-25 01:40 - 00000000 ____D C:\Users\John\Local Settings\{E855EEC7-FBC2-41A2-AAC3-AF854178B858} 2013-04-25 01:39 - 2013-04-25 01:40 - 00000000 ____D C:\Users\John\AppData\Local\{E855EEC7-FBC2-41A2-AAC3-AF854178B858} 2013-04-23 12:19 - 2013-04-12 09:45 - 01656680 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys 2013-04-21 16:16 - 2013-04-21 16:27 - 00000000 ____D C:\Users\John\Downloads\Skrillex 2013-04-21 15:46 - 2013-04-21 16:01 - 00000000 ____D C:\Users\John\Downloads\All That Remains ==================== One Month Modified Files and Folders ======= 2013-05-17 16:00 - 2013-05-17 16:00 - 00000000 ____D C:\FRST 2013-05-17 13:40 - 2012-07-03 04:46 - 00025056 ____A C:\Windows\setupact.log 2013-05-17 13:40 - 2009-07-14 00:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-05-17 13:39 - 2013-05-17 13:31 - 00000000 ____A C:\Users\John\Application Data\skype.ini 2013-05-17 13:39 - 2013-05-17 13:31 - 00000000 ____A C:\Users\John\AppData\Roaming\skype.ini 2013-05-17 13:36 - 2012-08-11 21:56 - 00000000 ____D C:\Program Files (x86)\Steam 2013-05-17 13:36 - 2012-06-13 22:33 - 00000000 ____D C:\Users\John\Application Data\Skype 2013-05-17 13:36 - 2012-06-13 22:33 - 00000000 ____D C:\Users\John\AppData\Roaming\Skype 2013-05-17 13:36 - 2012-06-13 22:32 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-05-17 13:36 - 2012-06-07 22:01 - 00000000 ____D C:\Users\John\Application Data\uTorrent 2013-05-17 13:36 - 2012-06-07 22:01 - 00000000 ____D C:\Users\John\AppData\Roaming\uTorrent 2013-05-17 13:36 - 2012-02-15 01:04 - 00000000 ____D C:\ProgramData\Skype 2013-05-17 13:36 - 2012-02-15 01:04 - 00000000 ____D C:\ProgramData\Application Data\Skype 2013-05-17 13:33 - 2012-08-06 12:02 - 00137746 ____A C:\Windows\PFRO.log 2013-05-17 13:22 - 2012-06-06 18:39 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-05-17 13:03 - 2012-02-15 02:18 - 01119612 ____A C:\Windows\WindowsUpdate.log 2013-05-16 23:13 - 2012-06-14 18:49 - 00000000 ____D C:\Users\John\Local Settings\PMB Files 2013-05-16 23:13 - 2012-06-14 18:49 - 00000000 ____D C:\Users\John\Local Settings\Application Data\PMB Files 2013-05-16 23:13 - 2012-06-14 18:49 - 00000000 ____D C:\Users\John\AppData\Local\PMB Files 2013-05-16 23:13 - 2012-06-14 18:49 - 00000000 ____D C:\ProgramData\PMB Files 2013-05-16 23:13 - 2012-06-14 18:49 - 00000000 ____D C:\ProgramData\Application Data\PMB Files 2013-05-16 18:48 - 2009-07-14 00:13 - 00801084 ____A C:\Windows\System32\PerfStringBackup.INI 2013-05-16 11:14 - 2013-03-18 21:15 - 00000000 ____D C:\Program Files\Microsoft Office 15 2013-05-16 11:07 - 2012-05-30 19:46 - 00000000 ____D C:\Users\John\Local Settings\Nero 2013-05-16 11:07 - 2012-05-30 19:46 - 00000000 ____D C:\Users\John\Local Settings\Application Data\Nero 2013-05-16 11:07 - 2012-05-30 19:46 - 00000000 ____D C:\Users\John\AppData\Local\Nero 2013-05-16 10:59 - 2009-07-13 23:45 - 00021296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-05-16 10:59 - 2009-07-13 23:45 - 00021296 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-05-15 22:31 - 2013-05-15 22:31 - 00000000 ____D C:\Users\John\Downloads\Eurotrip.UNRATED.DVDRiP.XViD-DEiTY 2013-05-15 03:16 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache 2013-05-15 02:31 - 2013-03-25 15:47 - 00002021 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk 2013-05-15 02:31 - 2013-03-25 15:47 - 00002021 ____A C:\ProgramData\Desktop\Adobe Reader X.lnk 2013-05-15 02:26 - 2009-07-13 23:45 - 00481904 ____A C:\Windows\System32\FNTCACHE.DAT 2013-05-15 02:25 - 2012-11-03 01:11 - 00000000 ____D C:\ProgramData\Browser Manager 2013-05-15 02:25 - 2012-11-03 01:11 - 00000000 ____D C:\ProgramData\Application Data\Browser Manager 2013-05-15 02:05 - 2012-06-04 12:37 - 75016696 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2013-05-14 18:23 - 2012-06-06 18:39 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-05-14 18:23 - 2012-02-15 00:24 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-05-12 14:53 - 2012-06-14 20:03 - 00000000 ____D C:\Users\John\Application Data\.minecraft 2013-05-12 14:53 - 2012-06-14 20:03 - 00000000 ____D C:\Users\John\AppData\Roaming\.minecraft 2013-05-12 14:48 - 2011-02-10 11:10 - 00797374 ____A C:\Windows\SysWOW64\PerfStringBackup.INI 2013-05-09 00:03 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\System32\NDF 2013-05-07 10:49 - 2013-05-07 10:49 - 00001660 ____A C:\Users\John\Desktop\MapleStory.lnk 2013-05-07 00:08 - 2013-05-07 00:08 - 00000000 ____D C:\Nexon 2013-05-07 00:08 - 2013-05-06 23:21 - 1366767344 ____A (Nexon) C:\Users\John\Desktop\MSSetupv134.exe 2013-05-07 00:08 - 2013-05-06 23:21 - 1362662281 ____A C:\Users\John\Desktop\MSSetupv134.z02 2013-05-07 00:08 - 2013-05-06 23:21 - 1362423371 ____A C:\Users\John\Desktop\MSSetupv134.z01 2013-05-07 00:08 - 2013-05-06 23:21 - 1150102813 ____A C:\Users\John\Desktop\MSSetupv134.z03 2013-05-07 00:08 - 2012-10-11 14:26 - 00000000 ____D C:\ProgramData\NexonUS 2013-05-07 00:08 - 2012-10-11 14:26 - 00000000 ____D C:\ProgramData\Application Data\NexonUS 2013-05-06 23:21 - 2013-05-06 23:21 - 02008064 ____A C:\Users\John\Downloads\MapleStoryDownloader.exe 2013-05-06 22:25 - 2012-08-26 13:41 - 00000000 ____D C:\Users\John\Desktop\College Papers 2013-05-06 22:01 - 2013-05-06 22:01 - 00000000 ____D C:\Program Files\Common Files\INCA Shared 2013-05-06 21:57 - 2012-08-03 21:35 - 00090685 ____A C:\Windows\DirectX.log 2013-05-06 21:56 - 2013-05-06 21:56 - 00000671 ____A C:\Users\Public\Desktop\Flyff.lnk 2013-05-06 21:56 - 2013-05-06 21:56 - 00000671 ____A C:\ProgramData\Desktop\Flyff.lnk 2013-05-06 21:50 - 2013-05-06 21:50 - 00000000 ____D C:\Program Files\Gpotato 2013-05-06 21:50 - 2013-05-06 21:45 - 1179887329 ____A (Gala-Net ) C:\Users\John\Desktop\Flyff_US_V19_20120710.exe 2013-05-06 21:44 - 2013-05-06 21:44 - 00696368 ____A C:\Users\John\Downloads\Flyff_US_Downloader.exe 2013-05-05 16:36 - 2013-05-15 02:01 - 17818624 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2013-05-05 16:16 - 2013-05-15 02:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb 2013-05-05 14:25 - 2013-05-15 02:01 - 12324864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-05-05 14:12 - 2013-05-15 02:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-05-05 06:12 - 2013-05-05 06:12 - 00000219 ____A C:\Users\John\Desktop\Team Fortress 2.url 2013-05-04 12:55 - 2012-02-15 01:27 - 00000000 ____D C:\ProgramData\Sonic 2013-05-04 12:55 - 2012-02-15 01:27 - 00000000 ____D C:\ProgramData\Application Data\Sonic 2013-05-02 23:42 - 2012-05-30 19:05 - 00127320 ____A C:\Users\John\Local Settings\GDIPFONTCACHEV1.DAT 2013-05-02 23:42 - 2012-05-30 19:05 - 00127320 ____A C:\Users\John\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2013-05-02 23:42 - 2012-05-30 19:05 - 00127320 ____A C:\Users\John\AppData\Local\GDIPFONTCACHEV1.DAT 2013-05-02 21:55 - 2012-05-30 19:09 - 00000000 ____D C:\Users\John\Application Data\Roxio 2013-05-02 21:55 - 2012-05-30 19:09 - 00000000 ____D C:\Users\John\AppData\Roaming\Roxio 2013-05-02 21:55 - 2012-02-15 01:25 - 00000000 ____D C:\Program Files (x86)\Roxio 2013-05-02 21:54 - 2012-02-15 01:26 - 00000000 ____D C:\ProgramData\Roxio 2013-05-02 21:54 - 2012-02-15 01:26 - 00000000 ____D C:\ProgramData\Application Data\Roxio 2013-05-02 21:53 - 2013-05-02 21:53 - 00000000 ____D C:\Users\John\Application Data\Roxio Log Files 2013-05-02 21:53 - 2013-05-02 21:53 - 00000000 ____D C:\Users\John\AppData\Roaming\Roxio Log Files 2013-05-02 21:51 - 2013-05-02 21:51 - 00000219 ____A C:\Users\John\Desktop\Dota 2.url 2013-05-02 21:01 - 2013-03-25 15:06 - 00000000 ____D C:\ProgramData\CanonIJPLM 2013-05-02 21:01 - 2013-03-25 15:06 - 00000000 ____D C:\ProgramData\Application Data\CanonIJPLM 2013-05-02 19:36 - 2012-08-26 13:13 - 00000000 ____D C:\Users\John\Application Data\SoftGrid Client 2013-05-02 19:36 - 2012-08-26 13:13 - 00000000 ____D C:\Users\John\AppData\Roaming\SoftGrid Client 2013-05-02 06:28 - 2013-05-02 06:12 - 374251218 ____A C:\Users\John\Downloads\Kristine-Kahill-HD_28595_Large.wmv 2013-05-02 01:06 - 2010-11-20 22:27 - 00278800 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe 2013-05-01 02:55 - 2013-05-01 02:25 - 00000000 ____D C:\Users\John\Downloads\P90X - Extreme Home Fitness Exercise Complete Workout 2013-04-29 21:22 - 2013-04-29 21:22 - 00001731 ____A C:\Users\John\Desktop\Digimon Masters.lnk 2013-04-29 21:22 - 2012-06-22 02:21 - 00000000 ___HD C:\Windows\msdownld.tmp 2013-04-29 21:22 - 2012-06-22 02:21 - 00000000 ____D C:\Windows\SysWOW64\directx 2013-04-29 21:19 - 2013-04-29 21:19 - 00000000 ____D C:\AeriaGames 2013-04-29 21:19 - 2013-04-29 21:14 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Application Data\Akamai 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Application Data\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Akamai 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\Local Settings\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\AppData\Local\Akamai 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\Users\John\AppData\Local\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\ProgramData\Application Data\Aeria Games 2013-04-29 21:15 - 2013-04-29 21:15 - 00000000 ____D C:\ProgramData\Aeria Games 2013-04-29 21:14 - 2013-04-29 21:14 - 00002030 ____A C:\Users\Public\Desktop\Aeria Ignite.lnk 2013-04-29 21:14 - 2013-04-29 21:14 - 00002030 ____A C:\ProgramData\Desktop\Aeria Ignite.lnk 2013-04-29 21:14 - 2013-04-29 21:14 - 00000000 ____D C:\Program Files (x86)\Aeria Games 2013-04-29 21:12 - 2013-04-29 21:12 - 03538712 ____A (Aeria Games & Entertainment) C:\Users\John\Downloads\aeria_ignite_install.exe 2013-04-28 18:19 - 2012-10-27 00:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-04-27 20:30 - 2013-04-13 20:28 - 00000062 ____A C:\Users\John\Desktop\settings.json 2013-04-26 22:39 - 2012-09-27 22:16 - 00000000 ____D C:\Users\John\Desktop\New MMO 2013-04-25 01:43 - 2012-06-07 22:27 - 00000000 ____D C:\Users\John\Application Data\vlc 2013-04-25 01:43 - 2012-06-07 22:27 - 00000000 ____D C:\Users\John\AppData\Roaming\vlc 2013-04-25 01:40 - 2013-04-25 01:39 - 00000000 ____D C:\Users\John\Local Settings\Application Data\{E855EEC7-FBC2-41A2-AAC3-AF854178B858} 2013-04-25 01:40 - 2013-04-25 01:39 - 00000000 ____D C:\Users\John\Local Settings\{E855EEC7-FBC2-41A2-AAC3-AF854178B858} 2013-04-25 01:40 - 2013-04-25 01:39 - 00000000 ____D C:\Users\John\AppData\Local\{E855EEC7-FBC2-41A2-AAC3-AF854178B858} 2013-04-24 21:24 - 2012-08-25 16:00 - 00000003 ____A C:\Windows\System32\HRUPPROG.TXT 2013-04-21 16:27 - 2013-04-21 16:16 - 00000000 ____D C:\Users\John\Downloads\Skrillex 2013-04-21 16:01 - 2013-04-21 15:46 - 00000000 ____D C:\Users\John\Downloads\All That Remains 2013-04-20 21:33 - 2012-09-22 15:53 - 00000000 ____D C:\Program Files (x86)\BearShare Applications 2013-04-20 21:32 - 2012-06-07 22:01 - 00000000 ____D C:\Program Files (x86)\uTorrent 2013-04-20 21:32 - 2012-06-05 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-04-18 19:54 - 2012-08-14 21:28 - 00000000 ____D C:\Users\John\Local Settings\Application Data\Adobe 2013-04-18 19:54 - 2012-08-14 21:28 - 00000000 ____D C:\Users\John\Local Settings\Adobe 2013-04-18 19:54 - 2012-08-14 21:28 - 00000000 ____D C:\Users\John\AppData\Local\Adobe 2013-04-18 19:54 - 2012-02-15 00:56 - 00000000 ____D C:\Program Files (x86)\Adobe Other Malware: =========== C:\Users\John\AppData\Roaming\skype.dat C:\Users\John\AppData\Roaming\skype.ini ==================== Known DLLs (Whitelisted) ================ ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= Restore point made on: 2013-05-14 21:36:45 Restore point made on: 2013-05-15 00:33:31 Restore point made on: 2013-05-15 02:00:16 Restore point made on: 2013-05-16 04:49:24 Restore point made on: 2013-05-17 02:49:16 ==================== Memory info =========================== Percentage of memory in use: 9% Total physical RAM: 8086.17 MB Available physical RAM: 7292.21 MB Total Pagefile: 8084.37 MB Available Pagefile: 7281.06 MB Total Virtual: 8192 MB Available Virtual: 8191.89 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:679 GB) (Free:292.66 GB) NTFS (Disk=0 Partition=3) Drive d: (RECOVERY) (Fixed) (Total:19.53 GB) (Free:9.72 GB) NTFS (Disk=0 Partition=2) ==>[system with boot components (obtained from reading drive)] Drive e: () (Removable) (Total:7.45 GB) (Free:5.65 GB) FAT32 (Disk=1 Partition=1) Drive f: (PARTIAL_TERMS_DVD3) (CDROM) (Total:3.94 GB) (Free:0 GB) UDF Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows Vista) (Size: 699 GB) (Disk ID: 07F2837E) Partition 1: (Not Active) - (Size=102 MB) - (Type=DE) Partition 2: (Active) - (Size=20 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=679 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 7 GB) (Disk ID: 00000000) Partition 1: (Not Active) - (Size=7 GB) - (Type=0B) Last Boot: 2013-05-14 16:26 ==================== End Of Log ============================
  3. Jcm22243
    When turning on my computer I'm stuck on a white screen until the FBI Moneypak screen shows and completely locks me out. I've attempted safemode start-up with no luck. My computer refuses to boot and is automatically restarted in normal boot mode. Any help isgreatly appreciated.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.