Jump to content

I was sending a lot of data and now some sites do not load correctly. now without P2P, sorry


Recommended Posts

sorry about not reading the bit bout P2P, I have deleted my torrent program, as you require. Thanks

 

I had Google saying I was sending a lot of data and wizzair,com only loads a bit, It displays more akin to an excel page. All other pages appear quite ok.

 

I have reset to an earlier time, before i ran dds, to see if it helps. It did not. I reinstalled Firefox too, again before dds, but this does not help. The same happens in Chrome and IE but does not happen if I access Wizzair,com from my laptop.

 

Thanking you ifor your help

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16660
Run by Mike at 10:08:58 on 2013-09-01
Microsoft Windows 7 Professional   6.1.7601.1.1252.44.1033.18.4095.1915 [GMT 1:00]
.
AV: BullGuard Antivirus *Enabled/Updated* {C3CCAC61-52F7-A056-1860-6406566E2578}
SP: BullGuard Antispyware *Enabled/Updated* {78AD4D85-74CD-AFD8-22D0-5F742DE96FC5}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: IObit Malware Fighter *Enabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
FW: BullGuard Firewall *Enabled* {FBF72D44-1898-A10E-333F-CD33A8BD6203}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Program Files\Sandboxie\SbieSvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
C:\Windows\System32\SvcHost.exe -k BullGuard_Backup
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy
C:\Windows\System32\SvcHost.exe -k BullGuard_Main
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\SvcHost.exe -k BullGuard
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
C:\Windows\System32\rundll32.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Users\Mike\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\ASUS\AI Suite\Q-Button\QButton.exe
C:\Program Files (x86)\ASUS\TurboV\TurboV.exe
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\system32\AUDIODG.EXE
C:\Program Files (x86)\Your Uninstaller 2010\urmain.exe
C:\Program Files (x86)\Your Uninstaller 2010\urmain.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe,
BHO: AccelerateTab: {48A789BF-F6D6-4930-9C8B-77855A63EDE1} - C:\Program Files (x86)\Secure Speed Dial\IE\SpeedDial.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
BHO: Advanced SystemCare Browser Protection: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll
uRun: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
mRun: [Ai Nap] "C:\Program Files (x86)\ASUS\AI Suite\Q-Button\QButton.exe"
mRun: [QFan Help] "C:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe"
mRun: [Cpu Level Up help] "C:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe"
mRun: [TurboV] "C:\Program Files (x86)\ASUS\TurboV\TurboV.exe"
mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
mRun: [ACPW05EN] "C:\Program Files (x86)\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe" /pid ACPW05EN
mRun: [iObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
dRunOnce: [sPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: C:\Users\Mike\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Mike\AppData\Roaming\Dropbox\bin\Dropbox.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:221
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - c:\program files\bullguard ltd\bullguard\Files32\Antiphishing\IE\BGAntiphishingIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
LSP: C:\Windows\System32\BGLsp.dll
TCP: NameServer = 94.26.50.8 94.26.50.7
TCP: Interfaces\{C32C0008-CC58-44CC-AEAB-9127F9558A9B} : DHCPNameServer = 94.26.50.8 94.26.50.7
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
AppInit_DLLs= BgGamingMonitor.dll c:\PROGRA~1\BULLGU~1\BULLGU~1\Files32\BgAgent.dll C:\PROGRA~2\NVIDIA~1\NVSTRE~1\rxinput.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-Run: [bullGuard] "C:\Program Files\BullGuard Ltd\BullGuard\bullguard.exe" -boot
x64-Run: [bullGuardUpdate2] c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe
x64-Run: [PAC7302_Monitor] C:\Windows\PixArt\PAC7302\Monitor.exe
x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
x64-IE: {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - c:\program files\bullguard ltd\bullguard\Antiphishing\IE\BGAntiphishingIE.dll
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\0j5jbcmx.default\
FF - prefs.js: browser.startup.homepage - google.co.uk
.
============= SERVICES / DRIVERS ===============
.
R1 AFW;Agnitum Firewall Driver;C:\Windows\System32\drivers\afw.sys [2011-9-22 40544]
R1 BdSpy;BdSpy;C:\Windows\System32\drivers\BdSpy.sys [2011-9-22 68720]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-8-21 283064]
R1 NovaShieldFilterDriver;NovaShieldFilterDriver;C:\Windows\System32\drivers\NSKernel.sys [2012-10-1 256072]
R1 NovaShieldTDIDriver;NovaShieldTDIDriver;C:\Windows\System32\drivers\NSNetmon.sys [2012-10-1 25160]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-8-28 574272]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2012-10-1 90112]
R2 BsBackup;BullGuard backup service;C:\Windows\System32\SvcHost.exe -k BullGuard_Backup [2009-7-14 27136]
R2 BsBhvScan;BullGuard Behavioural Detection;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [2013-8-21 445856]
R2 BsFileScan;BullGuard on-access service;C:\Windows\System32\SvcHost.exe -k BullGuard [2009-7-14 27136]
R2 BsFire;BullGuard firewall service;C:\Windows\System32\SvcHost.exe -k BullGuard [2009-7-14 27136]
R2 BsMailProxy;BullGuard e-mail monitoring service;C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy [2009-7-14 27136]
R2 BsMain;BullGuard main service;C:\Windows\System32\SvcHost.exe -k BullGuard_Main [2009-7-14 27136]
R2 BsScanner;BullGuard scanning service;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [2013-8-21 243552]
R2 BsUpdate;BullGuard update service;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [2013-8-21 353120]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-8-28 335168]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-8-23 418376]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-8-23 701512]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-8-23 14984480]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-6-21 413472]
R2 TeamViewer8;TeamViewer 8;C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-8-29 4308320]
R3 afwcore;afwcore;C:\Windows\System32\drivers\afwcore.sys [2011-9-22 464480]
R3 BdNet;BdNet;C:\Windows\System32\drivers\BdNet.sys [2013-8-21 34928]
R3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-8-28 23048]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-8-23 25928]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2013-8-23 39712]
R3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2013-8-28 34336]
R3 SbieDrv;SbieDrv;C:\Program Files\Sandboxie\SbieDrv.sys [2013-7-8 199384]
R3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2013-8-28 23016]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2012-9-27 1196032]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SecureUpdateSvc;SecureUpdate;C:\Program Files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [2013-8-28 2298704]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]
S2 WiseBootAssistant;Wise Boot Assistant;C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [2013-8-24 580232]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-8-26 19456]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-8-26 57856]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-8-22 1255736]
.
=============== Created Last 30 ================
.
2013-08-31 15:21:26    --------    d-----w-    C:\Program Files (x86)\Digital Leisure Inc
2013-08-30 20:29:24    --------    d-----w-    C:\ProgramData\PlatinumHideIP
2013-08-30 20:28:05    --------    d-----w-    C:\Program Files (x86)\PlatinumHideIP
2013-08-30 20:21:59    --------    d-----w-    C:\ProgramData\HideIPEasy
2013-08-30 20:21:55    --------    d-----w-    C:\Program Files (x86)\Portable
2013-08-30 18:39:33    --------    d-----w-    C:\Program Files (x86)\Steam
2013-08-30 17:46:29    --------    d-----w-    C:\Users\Mike\048298C9A4D3490B9FF9AB023A9238F3.TMP
2013-08-30 17:26:34    --------    d-----w-    C:\Program Files (x86)\Romino Games
2013-08-29 22:02:28    --------    d-----w-    C:\Users\Mike\AppData\Local\MercurySteam
2013-08-29 22:02:28    --------    d-----w-    C:\Users\Mike\AppData\Local\EMU
2013-08-29 21:43:00    --------    d--h--w-    C:\Windows\PIF
2013-08-29 20:48:57    --------    d-----w-    C:\Program Files (x86)\Castlevania Lords of Shadow - Ultimate Edition
2013-08-29 14:39:46    --------    d-----w-    C:\Users\Mike\AppData\Roaming\TeamViewer
2013-08-29 14:36:44    --------    d-----w-    C:\Program Files (x86)\TeamViewer
2013-08-28 21:31:45    --------    d-----w-    C:\Films
2013-08-28 14:48:19    268968    ----a-w-    C:\Windows\SysWow64\sqlite3.dll
2013-08-28 14:48:17    --------    d-----w-    C:\Program Files (x86)\Secure Speed Dial
2013-08-28 14:48:12    --------    d-----w-    C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-08-28 14:48:08    --------    d-----w-    C:\ProgramData\IObit
2013-08-28 14:48:06    --------    d-----w-    C:\Users\Mike\AppData\Roaming\IObit
2013-08-28 14:47:56    --------    d-----w-    C:\Program Files (x86)\IObit
2013-08-26 09:15:48    --------    d-----w-    C:\Program Files\Microsoft Mouse and Keyboard Center
2013-08-26 09:15:25    --------    d-----w-    C:\Windows\System32\MRT
2013-08-26 09:09:18    96768    ----a-w-    C:\Windows\SysWow64\sspicli.dll
2013-08-26 09:09:18    458712    ----a-w-    C:\Windows\System32\drivers\cng.sys
2013-08-26 09:09:18    340992    ----a-w-    C:\Windows\System32\schannel.dll
2013-08-26 09:09:18    247808    ----a-w-    C:\Windows\SysWow64\schannel.dll
2013-08-26 09:09:18    22016    ----a-w-    C:\Windows\SysWow64\secur32.dll
2013-08-26 09:09:18    154480    ----a-w-    C:\Windows\System32\drivers\ksecpkg.sys
2013-08-26 09:09:18    1448448    ----a-w-    C:\Windows\System32\lsasrv.dll
2013-08-26 09:09:16    514560    ----a-w-    C:\Windows\SysWow64\qdvd.dll
2013-08-26 09:09:16    366592    ----a-w-    C:\Windows\System32\qdvd.dll
2013-08-26 09:08:46    5550528    ----a-w-    C:\Windows\System32\ntoskrnl.exe
2013-08-26 09:08:46    3968960    ----a-w-    C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-26 09:08:46    3913664    ----a-w-    C:\Windows\SysWow64\ntoskrnl.exe
2013-08-26 09:08:46    1732032    ----a-w-    C:\Windows\System32\ntdll.dll
2013-08-26 09:08:45    7680    ----a-w-    C:\Windows\SysWow64\instnm.exe
2013-08-26 09:08:45    5120    ----a-w-    C:\Windows\SysWow64\wow32.dll
2013-08-26 09:08:45    25600    ----a-w-    C:\Windows\SysWow64\setup16.exe
2013-08-26 09:08:45    243712    ----a-w-    C:\Windows\System32\wow64.dll
2013-08-26 09:08:45    2048    ----a-w-    C:\Windows\SysWow64\user.exe
2013-08-26 09:08:45    14336    ----a-w-    C:\Windows\SysWow64\ntvdm64.dll
2013-08-26 09:08:45    1292192    ----a-w-    C:\Windows\SysWow64\ntdll.dll
2013-08-26 09:06:57    1424384    ----a-w-    C:\Windows\System32\WindowsCodecs.dll
2013-08-26 09:06:57    1230336    ----a-w-    C:\Windows\SysWow64\WindowsCodecs.dll
2013-08-26 09:06:54    1643520    ----a-w-    C:\Windows\System32\DWrite.dll
2013-08-26 09:06:54    1247744    ----a-w-    C:\Windows\SysWow64\DWrite.dll
2013-08-26 06:53:43    9728    ---ha-w-    C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-26 06:44:59    --------    d-----w-    C:\Program Files (x86)\Serious Sam. The Second Encounter HD
2013-08-26 05:53:26    410112    ----a-w-    C:\Windows\System32\drivers\srv2.sys
2013-08-26 05:53:25    467456    ----a-w-    C:\Windows\System32\drivers\srv.sys
2013-08-26 05:53:24    168448    ----a-w-    C:\Windows\System32\drivers\srvnet.sys
2013-08-26 05:53:03    983400    ----a-w-    C:\Windows\System32\drivers\dxgkrnl.sys
2013-08-26 05:53:03    265064    ----a-w-    C:\Windows\System32\drivers\dxgmms1.sys
2013-08-26 05:53:03    144384    ----a-w-    C:\Windows\System32\cdd.dll
2013-08-26 05:52:42    55296    ----a-w-    C:\Windows\System32\dhcpcsvc6.dll
2013-08-26 05:52:42    44032    ----a-w-    C:\Windows\SysWow64\dhcpcsvc6.dll
2013-08-26 05:52:42    226816    ----a-w-    C:\Windows\System32\dhcpcore6.dll
2013-08-26 05:52:42    193536    ----a-w-    C:\Windows\SysWow64\dhcpcore6.dll
2013-08-26 05:52:27    224256    ----a-w-    C:\Windows\System32\wintrust.dll
2013-08-26 05:52:27    1472512    ----a-w-    C:\Windows\System32\crypt32.dll
2013-08-26 05:52:27    1166848    ----a-w-    C:\Windows\SysWow64\crypt32.dll
2013-08-26 05:52:26    184320    ----a-w-    C:\Windows\System32\cryptsvc.dll
2013-08-26 05:52:26    175104    ----a-w-    C:\Windows\SysWow64\wintrust.dll
2013-08-26 05:52:26    140288    ----a-w-    C:\Windows\SysWow64\cryptsvc.dll
2013-08-26 05:52:26    139776    ----a-w-    C:\Windows\System32\cryptnet.dll
2013-08-26 05:52:26    103936    ----a-w-    C:\Windows\SysWow64\cryptnet.dll
2013-08-26 05:50:58    245760    ----a-w-    C:\Windows\System32\OxpsConverter.exe
2013-08-26 02:15:25    751104    ----a-w-    C:\Windows\System32\win32spl.dll
2013-08-26 02:15:25    492544    ----a-w-    C:\Windows\SysWow64\win32spl.dll
2013-08-26 02:15:24    3153920    ----a-w-    C:\Windows\System32\win32k.sys
2013-08-26 02:15:21    68608    ----a-w-    C:\Windows\System32\taskhost.exe
2013-08-26 02:15:10    30720    ----a-w-    C:\Windows\System32\cryptdlg.dll
2013-08-26 02:15:10    24576    ----a-w-    C:\Windows\SysWow64\cryptdlg.dll
2013-08-26 02:15:03    936448    ----a-w-    C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-08-26 02:15:03    1732608    ----a-w-    C:\Program Files\Windows Journal\NBDoc.DLL
2013-08-26 02:15:03    1402880    ----a-w-    C:\Program Files\Windows Journal\JNWDRV.dll
2013-08-26 02:15:03    1393152    ----a-w-    C:\Program Files\Windows Journal\JNTFiltr.dll
2013-08-26 02:15:03    1367040    ----a-w-    C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2013-08-25 19:38:16    --------    d-----w-    C:\Program Files (x86)\Serious Sam. The First Encounter
2013-08-25 08:43:42    --------    d-----w-    C:\Users\Mike\AppData\Roaming\RealHideIP
2013-08-25 08:43:42    --------    d-----w-    C:\ProgramData\RealHideIP
2013-08-25 08:41:50    --------    d-----w-    C:\Program Files (x86)\RealHideIP
2013-08-24 22:19:51    5174    ----a-w-    C:\Windows\SysWow64\nppt9x.vxd
2013-08-24 22:19:51    4682    ----a-w-    C:\Windows\SysWow64\npptNT2.sys
2013-08-24 22:06:56    --------    d-----w-    C:\Program Files (x86)\NCsoft
2013-08-24 17:25:47    --------    d-----w-    C:\Users\Mike\AppData\Roaming\AIMP3
2013-08-24 17:25:40    --------    d-----w-    C:\Program Files (x86)\AIMP3
2013-08-24 16:52:48    --------    d-----w-    C:\Program Files (x86)\VideoLAN
2013-08-24 16:41:56    --------    d-----w-    C:\Program Files (x86)\XBMC
2013-08-24 16:16:39    --------    d-----w-    C:\Users\Mike\AppData\Roaming\Wise Care 365
2013-08-24 16:14:18    --------    d-----w-    C:\Users\Mike\AppData\Roaming\EurekaLab s.a.s
2013-08-24 15:49:22    --------    d-----w-    C:\Program Files (x86)\Wise
2013-08-24 15:13:48    --------    d-----w-    C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-08-24 13:37:37    --------    d-----w-    C:\Users\Mike\AppData\Roaming\MoonriseInteractive
2013-08-24 11:54:58    --------    d-----w-    C:\Program Files (x86)\Nero
2013-08-23 19:53:08    --------    d-----w-    C:\NvidiaLogging
2013-08-23 19:51:43    39712    ----a-w-    C:\Windows\System32\drivers\nvvad64v.sys
2013-08-23 19:51:43    29984    ----a-w-    C:\Windows\System32\nvaudcap64v.dll
2013-08-23 19:51:43    28448    ----a-w-    C:\Windows\SysWow64\nvaudcap32v.dll
2013-08-23 19:51:28    --------    d-----w-    C:\Users\Mike\AppData\Local\NVIDIA
2013-08-23 15:41:33    --------    d-----w-    C:\Windows\System32\SPReview
2013-08-23 10:17:08    --------    d-----w-    C:\Users\Mike\AppData\Local\Diagnostics
2013-08-23 10:11:51    305152    ----a-w-    C:\Windows\IsUninst.exe
2013-08-23 07:15:04    --------    d-----w-    C:\Users\Mike\AppData\Local\Hitman Pro Portable MonbJIan
2013-08-23 07:09:57    --------    d-----w-    C:\ProgramData\HitmanPro
2013-08-23 06:58:44    --------    d-----w-    C:\Program Files (x86)\Aomei Partition Assistant Professional Edition 4.0
2013-08-23 06:51:08    --------    d-----w-    C:\Users\Mike\AppData\Roaming\ACD Systems
2013-08-23 06:51:08    --------    d-----w-    C:\Users\Mike\AppData\Local\ACD Systems
2013-08-23 06:49:43    --------    d-----w-    C:\ProgramData\ACD Systems
2013-08-23 06:49:25    --------    d-----w-    C:\Program Files (x86)\Common Files\ACD Systems
2013-08-23 06:49:25    --------    d-----w-    C:\Program Files (x86)\ACD Systems
2013-08-23 06:48:28    --------    d-----w-    C:\Users\Mike\AppData\Local\Downloaded Installations
2013-08-23 06:41:59    --------    d-----w-    C:\Users\Mike\AppData\Roaming\Origin
2013-08-23 06:41:31    --------    d-----w-    C:\ProgramData\Origin
2013-08-23 06:41:15    --------    d-----w-    C:\Program Files (x86)\Origin
2013-08-23 06:32:25    --------    d-----w-    C:\Users\Mike\AppData\Roaming\Malwarebytes
2013-08-23 06:32:17    --------    d-----w-    C:\ProgramData\Malwarebytes
2013-08-23 06:32:16    25928    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2013-08-23 06:32:16    --------    d-----w-    C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-23 06:32:06    --------    d-----w-    C:\Users\Mike\AppData\Local\Programs
2013-08-22 21:21:30    --------    d-----w-    C:\Windows\System32\EventProviders
2013-08-22 16:21:24    --------    d-----r-    C:\Sandbox
2013-08-22 16:19:29    --------    d-----w-    C:\Program Files\Sandboxie
2013-08-22 14:48:05    48976    ----a-w-    C:\Windows\System32\netfxperf.dll
2013-08-22 14:48:05    1942856    ----a-w-    C:\Windows\System32\dfshim.dll
2013-08-22 14:48:00    1130824    ----a-w-    C:\Windows\SysWow64\dfshim.dll
2013-08-22 14:46:59    933376    ----a-w-    C:\Windows\SysWow64\Vault.dll
2013-08-22 14:44:52    529408    ----a-w-    C:\Windows\System32\wbemcomn.dll
2013-08-22 14:44:52    244736    ----a-w-    C:\Program Files\Windows Portable Devices\sqmapi.dll
2013-08-22 14:44:47    244736    ----a-w-    C:\Windows\System32\sqmapi.dll
2013-08-22 13:31:04    --------    d-----w-    C:\Users\Mike\AppData\Local\Google
2013-08-22 10:54:29    --------    d-----w-    C:\Windows\PCHEALTH
2013-08-22 10:43:31    --------    d-----w-    C:\Users\Mike\AppData\Roaming\BlueSprig
2013-08-22 10:43:29    --------    d-----w-    C:\Program Files (x86)\BlueSprig
2013-08-22 10:33:58    --------    d-----w-    C:\Windows\SysWow64\Wat
2013-08-22 10:33:58    --------    d-----w-    C:\Windows\System32\Wat
2013-08-22 10:10:51    --------    d-----w-    C:\Program Files (x86)\Microsoft Visual Studio 8
2013-08-22 10:09:56    --------    d-----w-    C:\Users\Mike\AppData\Local\Microsoft Help
2013-08-22 07:20:25    --------    d-----w-    C:\Users\Mike\AppData\Roaming\URSoft
2013-08-22 07:20:17    --------    d-----w-    C:\Program Files (x86)\Your Uninstaller 2010
2013-08-22 07:12:18    55296    ----a-w-    C:\Windows\SysWow64\Remove.exe
2013-08-22 07:12:16    8704    ----a-w-    C:\Windows\System32\CoInst_071029.dll
2013-08-22 07:12:16    532480    ----a-w-    C:\Windows\System32\drivers\PAC7302.SYS
2013-08-22 07:12:14    --------    d-----w-    C:\Program Files (x86)\KYE SYSTEMS CORP
2013-08-22 07:12:13    14336    ----a-w-    C:\Windows\SysWow64\P7302USD.dll
2013-08-22 07:12:13    141824    ----a-w-    C:\Windows\SysWow64\SP7302.ax
2013-08-22 07:12:13    --------    d-----w-    C:\Windows\PixArt
2013-08-22 07:12:13    --------    d-----w-    C:\Program Files (x86)\Common Files\PAC7302
2013-08-22 06:24:17    --------    d-----w-    C:\Users\Mike\AppData\Roaming\uTorrent
2013-08-22 06:22:20    976896    ----a-w-    C:\Windows\System32\inetcomm.dll
2013-08-22 06:22:20    741376    ----a-w-    C:\Windows\SysWow64\inetcomm.dll
2013-08-22 06:07:20    --------    d-----w-    C:\Program Files (x86)\GetData
2013-08-22 06:00:19    --------    d-----w-    C:\Program Files (x86)\Restore My Files Data Recovery v6.01
2013-08-22 05:31:11    9728    ----a-w-    C:\Windows\System32\Wdfres.dll
2013-08-22 05:31:11    785512    ----a-w-    C:\Windows\System32\drivers\Wdf01000.sys
2013-08-22 05:31:11    54376    ----a-w-    C:\Windows\System32\drivers\WdfLdr.sys
2013-08-22 05:31:11    2560    ----a-w-    C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2013-08-22 05:13:31    --------    d-----w-    C:\Windows\SysWow64\directx
2013-08-22 05:11:45    --------    d-----w-    C:\Users\Mike\AppData\Local\Monkey Quest
2013-08-22 05:07:52    --------    d-----w-    C:\ProgramData\Electronic Arts
2013-08-21 21:04:41    294912    ----a-w-    C:\Windows\System32\browserchoice.exe
2013-08-21 20:53:02    70656    ----a-w-    C:\Windows\SysWow64\fontsub.dll
2013-08-21 20:53:02    46080    ----a-w-    C:\Windows\System32\atmlib.dll
2013-08-21 20:53:02    367616    ----a-w-    C:\Windows\System32\atmfd.dll
2013-08-21 20:53:02    34304    ----a-w-    C:\Windows\SysWow64\atmlib.dll
2013-08-21 20:53:02    295424    ----a-w-    C:\Windows\SysWow64\atmfd.dll
2013-08-21 20:53:02    100864    ----a-w-    C:\Windows\System32\fontsub.dll
2013-08-21 20:51:55    87040    ----a-w-    C:\Windows\System32\drivers\WUDFPf.sys
2013-08-21 20:51:55    84992    ----a-w-    C:\Windows\System32\WUDFSvc.dll
2013-08-21 20:51:55    198656    ----a-w-    C:\Windows\System32\drivers\WUDFRd.sys
2013-08-21 20:51:55    194048    ----a-w-    C:\Windows\System32\WUDFPlatform.dll
2013-08-21 20:51:54    744448    ----a-w-    C:\Windows\System32\WUDFx.dll
2013-08-21 20:51:54    45056    ----a-w-    C:\Windows\System32\WUDFCoinstaller.dll
2013-08-21 20:51:54    229888    ----a-w-    C:\Windows\System32\WUDFHost.exe
2013-08-21 20:46:43    81408    ----a-w-    C:\Windows\System32\imagehlp.dll
2013-08-21 20:46:43    5120    ----a-w-    C:\Windows\SysWow64\wmi.dll
2013-08-21 20:46:43    5120    ----a-w-    C:\Windows\System32\wmi.dll
2013-08-21 20:46:43    23408    ----a-w-    C:\Windows\System32\drivers\fs_rec.sys
2013-08-21 20:46:43    159232    ----a-w-    C:\Windows\SysWow64\imagehlp.dll
2013-08-21 20:37:54    --------    d-----w-    C:\Users\Mike\AppData\Local\Adobe
2013-08-21 20:28:27    283064    ----a-w-    C:\Windows\System32\drivers\dtsoftbus01.sys
2013-08-21 20:28:25    --------    d-----w-    C:\Users\Mike\AppData\Roaming\DAEMON Tools Lite
2013-08-21 20:28:23    --------    d-----w-    C:\Program Files (x86)\DAEMON Tools Lite
2013-08-21 20:27:36    --------    d-----w-    C:\ProgramData\DAEMON Tools Lite
2013-08-21 20:15:43    --------    d-----r-    C:\Users\Mike\Dropbox
2013-08-21 20:13:04    --------    d-----w-    C:\Users\Mike\AppData\Roaming\Dropbox
2013-08-21 20:10:45    --------    d-----w-    C:\Users\Mike\direct line paper
2013-08-21 20:07:12    8192    ----a-w-    C:\Users\Mike\ATAPI_iHAS124_B_AL0S.bin
2013-08-21 20:07:01    2097152    ----a-w-    C:\Users\Mike\liteon AL0S.bin
2013-08-21 20:05:48    --------    d-----w-    C:\Users\Mike\samsung
2013-08-21 20:05:43    --------    d-sh--w-    C:\Users\Mike\My Pictures
2013-08-21 20:05:43    --------    d-sh--w-    C:\Users\Mike\My Music
2013-08-21 20:05:43    --------    d-----w-    C:\Users\Mike\My Scans
2013-08-21 20:05:43    --------    d-----w-    C:\Users\Mike\Diablo III
2013-08-21 20:05:43    --------    d-----w-    C:\Users\Mike\astro van_files
2013-08-21 20:05:28    --------    d-----w-    C:\Users\Mike\ASTRO Court
2013-08-21 20:05:28    --------    d-----w-    C:\Users\Mike\Anditxt
2013-08-21 19:59:39    --------    d-----w-    C:\Users\Mike\AppData\Local\Macromedia
2013-08-21 19:42:04    71048    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-21 19:42:04    692104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2013-08-21 19:40:44    884512    ----a-w-    C:\Windows\System32\nvvsvc.exe
2013-08-21 19:40:44    6496544    ----a-w-    C:\Windows\System32\nvcpl.dll
2013-08-21 19:40:44    63776    ----a-w-    C:\Windows\System32\nvshext.dll
2013-08-21 19:40:44    3514656    ----a-w-    C:\Windows\System32\nvsvc64.dll
2013-08-21 19:40:44    2558240    ----a-w-    C:\Windows\System32\nvsvcr.dll
2013-08-21 19:40:44    237856    ----a-w-    C:\Windows\System32\nvmctray.dll
2013-08-21 19:39:59    --------    d-----w-    C:\ProgramData\NVIDIA Corporation
2013-08-21 19:30:37    34928    ----a-w-    C:\Windows\System32\drivers\BdNet.sys
2013-08-21 19:30:34    125496    ----a-w-    C:\Windows\System32\BgGamingMonitor.dll
2013-08-21 19:30:34    113088    ----a-w-    C:\Windows\SysWow64\BgGamingMonitor.dll
2013-08-21 19:30:27    73056    ----a-w-    C:\Windows\System32\BGLsp.dll
2013-08-21 19:30:27    60256    ----a-w-    C:\Windows\SysWow64\BGLsp.dll
2013-08-21 19:27:26    61216    ----a-w-    C:\Windows\System32\OpenCL.dll
2013-08-21 19:27:26    53024    ----a-w-    C:\Windows\SysWow64\OpenCL.dll
2013-08-21 19:27:03    --------    d-----w-    C:\Program Files\NVIDIA Corporation
2013-08-21 19:14:51    142336    ----a-w-    C:\Windows\System32\poqexec.exe
2013-08-21 19:14:51    123904    ----a-w-    C:\Windows\SysWow64\poqexec.exe
2013-08-21 19:14:40    2871808    ----a-w-    C:\Windows\explorer.exe
2013-08-21 19:14:40    2616320    ----a-w-    C:\Windows\SysWow64\explorer.exe
2013-08-21 19:14:26    961024    ----a-w-    C:\Windows\System32\CPFilters.dll
2013-08-21 19:14:26    642048    ----a-w-    C:\Windows\SysWow64\CPFilters.dll
2013-08-21 19:14:26    1118720    ----a-w-    C:\Windows\System32\sbe.dll
2013-08-21 19:14:25    850944    ----a-w-    C:\Windows\SysWow64\sbe.dll
2013-08-21 19:14:25    259072    ----a-w-    C:\Windows\System32\mpg2splt.ax
2013-08-21 19:14:25    199680    ----a-w-    C:\Windows\SysWow64\mpg2splt.ax
2013-08-21 19:14:00    1572864    ----a-w-    C:\Windows\System32\quartz.dll
2013-08-21 19:14:00    1328128    ----a-w-    C:\Windows\SysWow64\quartz.dll
2013-08-21 19:12:59    395776    ----a-w-    C:\Windows\System32\webio.dll
2013-08-21 19:12:59    314880    ----a-w-    C:\Windows\SysWow64\webio.dll
2013-08-21 19:12:03    1656680    ----a-w-    C:\Windows\System32\drivers\ntfs.sys
2013-08-21 19:11:41    515584    ----a-w-    C:\Windows\System32\timedate.cpl
2013-08-21 19:11:41    478720    ----a-w-    C:\Windows\SysWow64\timedate.cpl
2013-08-21 19:03:12    2002432    ----a-w-    C:\Windows\System32\msxml6.dll
2013-08-21 19:03:12    1882624    ----a-w-    C:\Windows\System32\msxml3.dll
2013-08-21 19:03:11    2048    ----a-w-    C:\Windows\SysWow64\msxml3r.dll
2013-08-21 19:03:11    2048    ----a-w-    C:\Windows\System32\msxml3r.dll
2013-08-21 19:03:11    1389568    ----a-w-    C:\Windows\SysWow64\msxml6.dll
2013-08-21 19:03:11    1236992    ----a-w-    C:\Windows\SysWow64\msxml3.dll
2013-08-21 19:03:07    27520    ----a-w-    C:\Windows\System32\drivers\Diskdump.sys
2013-08-21 19:03:03    33792    ----a-w-    C:\Windows\System32\profprov.dll
2013-08-21 19:03:03    209920    ----a-w-    C:\Windows\System32\profsvc.dll
2013-08-21 19:02:04    478208    ----a-w-    C:\Windows\System32\dpnet.dll
2013-08-21 19:02:04    376832    ----a-w-    C:\Windows\SysWow64\dpnet.dll
2013-08-21 19:02:04    3072    ----a-w-    C:\Windows\System32\dpnaddr.dll
2013-08-21 19:02:04    2560    ----a-w-    C:\Windows\SysWow64\dpnaddr.dll
2013-08-21 19:02:03    307200    ----a-w-    C:\Windows\System32\ncrypt.dll
2013-08-21 19:02:03    220160    ----a-w-    C:\Windows\SysWow64\ncrypt.dll
2013-08-21 19:01:54    215040    ----a-w-    C:\Windows\System32\winsrv.dll
2013-08-21 18:55:21    318568    ----a-w-    C:\Windows\SysWow64\nvdecodemft.dll
2013-08-21 18:55:19    202344    ----a-w-    C:\Windows\System32\nvcod189.dll
2013-08-21 18:46:00    75776    ----a-w-    C:\Windows\SysWow64\psisrndr.ax
2013-08-21 18:46:00    613888    ----a-w-    C:\Windows\System32\psisdecd.dll
2013-08-21 18:46:00    465408    ----a-w-    C:\Windows\SysWow64\psisdecd.dll
2013-08-21 18:46:00    288256    ----a-w-    C:\Windows\System32\MSNP.ax
2013-08-21 18:46:00    108032    ----a-w-    C:\Windows\System32\psisrndr.ax
2013-08-21 18:44:31    95744    ----a-w-    C:\Windows\System32\synceng.dll
2013-08-21 18:44:31    78336    ----a-w-    C:\Windows\SysWow64\synceng.dll
2013-08-21 18:44:30    642944    ----a-w-    C:\Windows\System32\winload.efi
2013-08-21 18:44:30    605552    ----a-w-    C:\Windows\System32\winload.exe
2013-08-21 18:44:30    566208    ----a-w-    C:\Windows\System32\winresume.efi
2013-08-21 18:44:30    518672    ----a-w-    C:\Windows\System32\winresume.exe
2013-08-21 18:44:30    20352    ----a-w-    C:\Windows\System32\kdusb.dll
2013-08-21 18:44:30    19328    ----a-w-    C:\Windows\System32\kd1394.dll
2013-08-21 18:44:30    17792    ----a-w-    C:\Windows\System32\kdcom.dll
2013-08-21 18:44:29    63488    ----a-w-    C:\Windows\System32\setbcdlocale.dll
2013-08-21 18:38:58    634880    ----a-w-    C:\Windows\System32\msvcrt.dll
2013-08-21 18:37:43    67072    ----a-w-    C:\Windows\splwow64.exe
2013-08-21 18:37:43    559104    ----a-w-    C:\Windows\System32\spoolsv.exe
2013-08-21 18:23:33    77312    ----a-w-    C:\Windows\System32\packager.dll
2013-08-21 18:23:33    67072    ----a-w-    C:\Windows\SysWow64\packager.dll
.
==================== Find3M  ====================
.
2013-08-26 06:53:43    9728    ---ha-w-    C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-23 15:46:53    175616    ----a-w-    C:\Windows\System32\msclmd.dll
2013-08-23 15:46:53    152576    ----a-w-    C:\Windows\SysWow64\msclmd.dll
2013-08-21 19:30:14    40544    ----a-r-    C:\Windows\System32\drivers\afw.sys
2013-08-21 19:30:13    68720    ----a-w-    C:\Windows\System32\drivers\BdSpy.sys
2013-08-21 19:30:10    350160    ----a-w-    C:\Windows\System32\drivers\Trufos.sys
2013-08-21 19:30:09    464480    ----a-r-    C:\Windows\System32\drivers\afwcore.sys
2013-07-25 09:25:54    1888768    ----a-w-    C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27    1620992    ----a-w-    C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-19 01:58:42    2048    ----a-w-    C:\Windows\System32\tzres.dll
2013-07-19 01:41:01    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2013-07-09 05:51:16    1217024    ----a-w-    C:\Windows\System32\rpcrt4.dll
2013-07-09 04:52:33    663552    ----a-w-    C:\Windows\SysWow64\rpcrt4.dll
2013-07-09 04:45:07    44032    ----a-w-    C:\Windows\apppatch\acwow64.dll
2013-07-06 06:03:53    1910208    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
2013-06-21 04:16:02    566048    ----a-w-    C:\Windows\SysWow64\nvStreaming.exe
2013-06-15 04:32:16    39936    ----a-w-    C:\Windows\System32\drivers\tssecsrv.sys
2013-06-04 06:00:13    624128    ----a-w-    C:\Windows\System32\qedit.dll
2013-06-04 04:53:07    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
.
============= FINISH: 10:09:18.51 ===============

 

 

Attach

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 01/10/2012 20:54:03
System Uptime: 01/09/2013 09:05:08 (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. |  | M4N72-E
Processor: AMD Phenom II X4 940 Processor | AM2 | 2280/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 293 GiB total, 30.691 GiB free.
D: is FIXED (NTFS) - 410 GiB total, 18.516 GiB free.
E: is FIXED (NTFS) - 576 GiB total, 7.918 GiB free.
F: is FIXED (NTFS) - 584 GiB total, 108.278 GiB free.
G: is CDROM ()
H: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP62: 30/08/2013 18:46:42 - Installed Steam
RP63: 30/08/2013 19:08:31 - Before uninstalling Awesomenauts
RP64: 30/08/2013 19:38:11 - Removed Steam
RP65: 30/08/2013 19:39:19 - Installed Steam
RP66: 30/08/2013 21:44:12 - Before uninstalling Real Hide IP
RP67: 31/08/2013 11:42:29 - Before uninstalling Shadow Defender
RP68: 31/08/2013 16:20:39 - Installed Dragon's Lair 2
RP69: 01/09/2013 07:45:00 - Installed Java 7 Update 25
RP70: 01/09/2013 08:16:54 - Restore Operation
RP71: 01/09/2013 08:33:52 - Before uninstalling Mozilla Firefox 15.0.1 (x86 en-US)
RP72: 01/09/2013 08:35:53 - Before uninstalling Awesomenauts
RP73: 01/09/2013 08:37:48 - Before uninstalling Smart Defrag 2
RP74: 01/09/2013 09:09:31 - Before uninstalling Mozilla Firefox 23.0.1 (x86 en-US)
RP75: 01/09/2013 10:06:55 - Before uninstalling µTorrent
.
==== Installed Programs ======================
.
AccelerateTab
ACDSee Pro 5
Adobe Flash Player 11 Plugin
Adobe Flash Player ActiveX
Adobe Reader XI (11.0.03)
Advanced SystemCare 6
AI Suite
AIMP3
ASUSUpdate
ATI Catalyst Install Manager
BullGuard
Castlevania: Lords of Shadow - Ultimate Edition
Cool & Quiet
DAEMON Tools Lite
Dropbox
Eye 312
Google Chrome
Google Update Helper
IObit Malware Fighter
JetClean
Lineage® II: Freya (High Five)
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Mouse and Keyboard Center
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Mozilla Firefox 23.0.1 (x86 en-US)
Mozilla Maintenance Service
NVIDIA 3D Vision Controller Driver 320.49
NVIDIA 3D Vision Driver 320.49
NVIDIA Control Panel 320.49
NVIDIA Drivers
NVIDIA GeForce Experience 1.6
NVIDIA Graphics Driver 320.49
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.13.0604
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 7.2.17
NVIDIA Update Components
NVIDIA Virtual Audio 1.2.1
Origin
Platform
Recover My Files
Sandboxie 4.04 (64-bit)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Serious Sam. The First Encounter
Serious Sam. The Second Encounter HD
SHIELD Streaming
Skype™ 5.10
TeamViewer 8
The Sims™ 3
The Sims™ 3 70s, 80s, & 90s Stuff
The Sims™ 3 Ambitions
The Sims™ 3 Diesel Stuff
The Sims™ 3 Fast Lane Stuff
The Sims™ 3 Generations
The Sims™ 3 High-End Loft Stuff
The Sims™ 3 Island Paradise
The Sims™ 3 Late Night
The Sims™ 3 Master Suite Stuff
The Sims™ 3 Outdoor Living Stuff
The Sims™ 3 Pets
The Sims™ 3 Seasons
The Sims™ 3 Showtime
The Sims™ 3 Supernatural
The Sims™ 3 University Life
The Sims™ 3 World Adventures
Total Commander 64-bit (Remove or Repair)
TurboV
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
VIA Platform Device Manager
VLC media player 2.0.8
Wise Care 365 version 2.74
World of Tanks
World of Tanks v.0.8.0
XBMC
Your Uninstaller! 7
.
==== Event Viewer Messages From Past Week ========
.
31/08/2013 11:57:46, Error: mbamchameleon [61440]  -
31/08/2013 07:39:16, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the MBAMScheduler service to connect.
31/08/2013 07:39:16, Error: Service Control Manager [7000]  - The MBAMScheduler service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
30/08/2013 19:42:50, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
30/08/2013 19:42:50, Error: Service Control Manager [7000]  - The Steam Client Service service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
30/08/2013 05:58:05, Error: volsnap [36]  - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
28/08/2013 15:48:14, Error: Service Control Manager [7030]  - The Advanced SystemCare Service 6 service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
28/08/2013 10:53:21, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the NVIDIA Streamer Service service to connect.
28/08/2013 10:52:45, Error: Service Control Manager [7009]  - A timeout was reached (30000 milliseconds) while waiting for the MBAMService service to connect.
28/08/2013 10:52:45, Error: Service Control Manager [7000]  - The MBAMService service failed to start due to the following error:  The service did not respond to the start or control request in a timely fashion.
26/08/2013 10:27:30, Error: Service Control Manager [7022]  - The Windows Update service hung on starting.
26/08/2013 10:19:09, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070103: Microsoft - Keyboard - Microsoft Hardware USB Keyboard.
26/08/2013 09:54:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80242016: Update for Windows 7 for x64-based Systems (KB2834140).
26/08/2013 07:40:48, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070002: Windows Malicious Software Removal Tool x64 - August 2013 (KB890830).
26/08/2013 06:48:26, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2820331).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2813956).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2798162).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2763523).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2862966).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2830290).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2840631).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2789645).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2756921).
26/08/2013 03:02:39, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2656356).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2863058).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2750841).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2719857).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2849470).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2847927).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2845187).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2803821).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2840628).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2844286).
26/08/2013 03:02:38, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070002: Internet Explorer 10 for Windows 7 for x64-based Systems.
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2791765).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2786400).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2773072).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2732059).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2861855).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2850851).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2839894).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2536275).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2804576).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2833946).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2804579).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2742599).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2729452).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2604115).
26/08/2013 03:02:37, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80070002: Security Update for Microsoft .NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2835393).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2808679).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2799926).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2786081).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2732500).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2868623).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2835364).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2834886).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2813430).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2491683).
26/08/2013 03:02:36, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2832414).
26/08/2013 03:02:33, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2834140).
26/08/2013 03:02:33, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Windows 7 for x64-based Systems (KB2835361).
26/08/2013 03:02:33, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Systems (KB2736422).
26/08/2013 03:02:33, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Cumulative Security Update for Internet Explorer 8 for Windows 7 for x64-based Systems (KB2862772).
26/08/2013 03:02:33, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x80246007: Cumulative Security Update for ActiveX Killbits for Windows 7 for x64-based Systems (KB2820197).
01/09/2013 09:06:56, Error: Service Control Manager [7024]  - The HomeGroup Listener service terminated with service-specific error %%-2147023143.
01/09/2013 09:06:51, Error: Service Control Manager [7034]  - The SecureUpdate service terminated unexpectedly.  It has done this 1 time(s).
01/09/2013 08:23:46, Error: Service Control Manager [7011]  - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the MBAMService service.
01/09/2013 08:22:38, Error: volmgr [46]  - Crash dump initialization failed!
.
==== End Of File ===========================


 

Link to post
Share on other sites

  • Root Admin

Hello and :welcome:

 

Please visit this webpage and read the ComboFix User's Guide:

  • Once you've read the article and are ready to use the program you can download it directly from the link below.
  • Important! - Please make sure you save combofix to your desktop and do not run it from your browser
  • Direct download link for: ComboFix.exe
  • Please make sure you disable your security applications before running ComboFix.
  • Once Combofix has completed it will produce and open a log file.  Please be patient as it can take some time to load.
  • Please attach that log file to your next reply.
  • If needed the file can be located here:  C:\combofix.txt
  • NOTE: If you receive the message "illegal operation has been attempted on a registry key that has been marked for deletion", just reboot the computer.


 

Link to post
Share on other sites

Hello, thanks for your reply and help.

 

Combofix.txt is as follows :-

 

ComboFix 13-09-01.02 - Mike 02/09/2013   7:39.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.44.1033.18.4095.2183 [GMT 1:00]
Running from: c:\users\Mike\Downloads\ComboFix.exe
AV: BullGuard Antivirus *Disabled/Outdated* {C3CCAC61-52F7-A056-1860-6406566E2578}
FW: BullGuard Firewall *Enabled* {FBF72D44-1898-A10E-333F-CD33A8BD6203}
SP: BullGuard Antispyware *Disabled/Outdated* {78AD4D85-74CD-AFD8-22D0-5F742DE96FC5}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Mike\288A.PDF
c:\windows\security\Database\tmp.edb
.
.
(((((((((((((((((((((((((   Files Created from 2013-08-02 to 2013-09-02  )))))))))))))))))))))))))))))))
.
.
2013-09-02 06:44 . 2013-09-02 06:44    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-09-01 08:22 . 2013-09-01 08:22    --------    d-----w-    c:\program files (x86)\Mozilla Maintenance Service
2013-09-01 06:45 . 2013-09-01 06:45    --------    d-----w-    c:\program files (x86)\Common Files\Java
2013-09-01 06:45 . 2013-09-01 06:45    --------    d-----w-    c:\program files (x86)\Java
2013-08-31 15:21 . 2013-08-31 15:21    --------    d-----w-    c:\program files (x86)\Digital Leisure Inc
2013-08-30 20:29 . 2013-08-30 20:29    --------    d-----w-    c:\programdata\PlatinumHideIP
2013-08-30 20:28 . 2013-09-01 07:21    --------    d-----w-    c:\program files (x86)\PlatinumHideIP
2013-08-30 20:21 . 2013-08-30 20:21    --------    d-----w-    c:\programdata\HideIPEasy
2013-08-30 20:21 . 2013-09-01 07:21    --------    d-----w-    c:\program files (x86)\Portable
2013-08-30 18:39 . 2013-09-01 07:21    --------    d-----w-    c:\program files (x86)\Steam
2013-08-30 17:46 . 2013-09-01 07:23    --------    d-----w-    c:\users\Mike\048298C9A4D3490B9FF9AB023A9238F3.TMP
2013-08-30 17:26 . 2013-09-01 07:21    --------    d-----w-    c:\program files (x86)\Romino Games
2013-08-29 22:02 . 2013-08-29 22:02    --------    d-----w-    c:\users\Mike\AppData\Local\MercurySteam
2013-08-29 22:02 . 2013-08-29 22:02    --------    d-----w-    c:\users\Mike\AppData\Local\EMU
2013-08-29 21:43 . 2013-08-29 21:43    --------    d--h--w-    c:\windows\PIF
2013-08-29 20:48 . 2013-08-29 21:42    --------    d-----w-    c:\program files (x86)\Castlevania Lords of Shadow - Ultimate Edition
2013-08-29 14:39 . 2013-08-29 15:32    --------    d-----w-    c:\users\Mike\AppData\Roaming\TeamViewer
2013-08-29 14:36 . 2013-08-29 14:36    --------    d-----w-    c:\program files (x86)\TeamViewer
2013-08-28 21:31 . 2013-08-28 22:19    --------    d-----w-    C:\Films
2013-08-28 14:48 . 2013-08-15 16:31    268968    ----a-w-    c:\windows\SysWow64\sqlite3.dll
2013-08-28 14:48 . 2013-09-01 07:21    --------    d-----w-    c:\program files (x86)\Secure Speed Dial
2013-08-28 14:48 . 2013-08-28 14:48    --------    d-----w-    c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-08-28 14:48 . 2013-08-28 14:48    --------    d-----w-    c:\users\Mike\AppData\Roaming\Apple Computer
2013-08-28 14:48 . 2013-09-01 07:21    --------    d-----w-    c:\programdata\IObit
2013-08-28 14:48 . 2013-08-28 14:50    --------    d-----w-    c:\users\Mike\AppData\Roaming\IObit
2013-08-28 14:47 . 2013-08-28 14:50    --------    d-----w-    c:\program files (x86)\IObit
2013-08-26 09:15 . 2013-08-26 09:15    --------    d-----w-    c:\program files\Microsoft Mouse and Keyboard Center
2013-08-26 09:15 . 2013-08-26 09:18    --------    d-----w-    c:\windows\system32\MRT
2013-08-26 09:09 . 2012-08-24 18:13    154480    ----a-w-    c:\windows\system32\drivers\ksecpkg.sys
2013-08-26 09:09 . 2012-08-24 18:09    458712    ----a-w-    c:\windows\system32\drivers\cng.sys
2013-08-26 09:09 . 2012-08-24 18:05    340992    ----a-w-    c:\windows\system32\schannel.dll
2013-08-26 09:09 . 2012-08-24 18:03    1448448    ----a-w-    c:\windows\system32\lsasrv.dll
2013-08-26 09:09 . 2012-08-24 16:57    247808    ----a-w-    c:\windows\SysWow64\schannel.dll
2013-08-26 09:09 . 2012-08-24 16:57    22016    ----a-w-    c:\windows\SysWow64\secur32.dll
2013-08-26 09:09 . 2012-08-24 16:53    96768    ----a-w-    c:\windows\SysWow64\sspicli.dll
2013-08-26 09:09 . 2012-05-04 11:00    366592    ----a-w-    c:\windows\system32\qdvd.dll
2013-08-26 09:09 . 2012-05-04 09:59    514560    ----a-w-    c:\windows\SysWow64\qdvd.dll
2013-08-26 09:08 . 2013-07-09 06:03    5550528    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-08-26 09:08 . 2013-07-09 05:54    1732032    ----a-w-    c:\windows\system32\ntdll.dll
2013-08-26 09:08 . 2013-07-09 05:03    3968960    ----a-w-    c:\windows\SysWow64\ntkrnlpa.exe
2013-08-26 09:08 . 2013-07-09 05:03    3913664    ----a-w-    c:\windows\SysWow64\ntoskrnl.exe
2013-08-26 09:08 . 2013-07-09 05:53    243712    ----a-w-    c:\windows\system32\wow64.dll
2013-08-26 09:08 . 2013-07-09 04:53    1292192    ----a-w-    c:\windows\SysWow64\ntdll.dll
2013-08-26 09:08 . 2013-07-09 04:52    5120    ----a-w-    c:\windows\SysWow64\wow32.dll
2013-08-26 09:08 . 2013-07-09 02:49    25600    ----a-w-    c:\windows\SysWow64\setup16.exe
2013-08-26 09:08 . 2013-07-09 02:49    7680    ----a-w-    c:\windows\SysWow64\instnm.exe
2013-08-26 09:08 . 2013-07-09 02:49    14336    ----a-w-    c:\windows\SysWow64\ntvdm64.dll
2013-08-26 09:08 . 2013-07-09 02:49    2048    ----a-w-    c:\windows\SysWow64\user.exe
2013-08-26 09:06 . 2013-04-17 07:02    1230336    ----a-w-    c:\windows\SysWow64\WindowsCodecs.dll
2013-08-26 09:06 . 2013-04-17 06:24    1424384    ----a-w-    c:\windows\system32\WindowsCodecs.dll
2013-08-26 09:06 . 2013-04-09 23:34    1247744    ----a-w-    c:\windows\SysWow64\DWrite.dll
2013-08-26 09:06 . 2013-04-02 22:51    1643520    ----a-w-    c:\windows\system32\DWrite.dll
2013-08-26 06:53 . 2013-08-26 06:53    9728    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-26 06:44 . 2013-08-26 16:12    --------    d-----w-    c:\program files (x86)\Serious Sam. The Second Encounter HD
2013-08-26 05:53 . 2011-04-29 03:05    410112    ----a-w-    c:\windows\system32\drivers\srv2.sys
2013-08-26 05:53 . 2011-04-29 03:06    467456    ----a-w-    c:\windows\system32\drivers\srv.sys
2013-08-26 05:53 . 2011-04-29 03:05    168448    ----a-w-    c:\windows\system32\drivers\srvnet.sys
2013-08-26 05:53 . 2013-04-10 06:01    265064    ----a-w-    c:\windows\system32\drivers\dxgmms1.sys
2013-08-26 05:53 . 2013-04-10 06:01    983400    ----a-w-    c:\windows\system32\drivers\dxgkrnl.sys
2013-08-26 05:53 . 2011-02-03 11:25    144384    ----a-w-    c:\windows\system32\cdd.dll
2013-08-26 05:52 . 2012-10-09 18:17    55296    ----a-w-    c:\windows\system32\dhcpcsvc6.dll
2013-08-26 05:52 . 2012-10-09 18:17    226816    ----a-w-    c:\windows\system32\dhcpcore6.dll
2013-08-26 05:52 . 2012-10-09 17:40    44032    ----a-w-    c:\windows\SysWow64\dhcpcsvc6.dll
2013-08-26 05:52 . 2012-10-09 17:40    193536    ----a-w-    c:\windows\SysWow64\dhcpcore6.dll
2013-08-26 05:52 . 2013-07-09 05:52    224256    ----a-w-    c:\windows\system32\wintrust.dll
2013-08-26 05:52 . 2013-07-09 05:46    1472512    ----a-w-    c:\windows\system32\crypt32.dll
2013-08-26 05:52 . 2013-07-09 04:46    1166848    ----a-w-    c:\windows\SysWow64\crypt32.dll
2013-08-26 05:52 . 2013-07-09 05:46    184320    ----a-w-    c:\windows\system32\cryptsvc.dll
2013-08-26 05:52 . 2013-07-09 05:46    139776    ----a-w-    c:\windows\system32\cryptnet.dll
2013-08-26 05:52 . 2013-07-09 04:52    175104    ----a-w-    c:\windows\SysWow64\wintrust.dll
2013-08-26 05:52 . 2013-07-09 04:46    140288    ----a-w-    c:\windows\SysWow64\cryptsvc.dll
2013-08-26 05:52 . 2013-07-09 04:46    103936    ----a-w-    c:\windows\SysWow64\cryptnet.dll
2013-08-26 05:50 . 2012-08-21 21:01    245760    ----a-w-    c:\windows\system32\OxpsConverter.exe
2013-08-26 02:15 . 2013-04-26 05:51    751104    ----a-w-    c:\windows\system32\win32spl.dll
2013-08-26 02:15 . 2013-04-26 04:55    492544    ----a-w-    c:\windows\SysWow64\win32spl.dll
2013-08-26 02:15 . 2013-06-05 03:34    3153920    ----a-w-    c:\windows\system32\win32k.sys
2013-08-26 02:15 . 2012-11-23 03:13    68608    ----a-w-    c:\windows\system32\taskhost.exe
2013-08-26 02:15 . 2013-05-10 05:49    30720    ----a-w-    c:\windows\system32\cryptdlg.dll
2013-08-26 02:15 . 2013-05-10 03:20    24576    ----a-w-    c:\windows\SysWow64\cryptdlg.dll
2013-08-26 02:15 . 2013-04-10 05:48    1732608    ----a-w-    c:\program files\Windows Journal\NBDoc.DLL
2013-08-26 02:15 . 2013-04-10 05:46    1402880    ----a-w-    c:\program files\Windows Journal\JNWDRV.dll
2013-08-26 02:15 . 2013-04-10 05:46    1393152    ----a-w-    c:\program files\Windows Journal\JNTFiltr.dll
2013-08-26 02:15 . 2013-04-10 05:46    1367040    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-08-26 02:15 . 2013-04-10 05:03    936448    ----a-w-    c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-08-25 19:38 . 2013-08-25 19:38    --------    d-----w-    c:\program files (x86)\Serious Sam. The First Encounter
2013-08-25 08:43 . 2013-08-25 08:43    --------    d-----w-    c:\users\Mike\AppData\Roaming\RealHideIP
2013-08-25 08:43 . 2013-08-25 08:43    --------    d-----w-    c:\programdata\RealHideIP
2013-08-25 08:41 . 2013-08-30 20:45    --------    d-----w-    c:\program files (x86)\RealHideIP
2013-08-24 22:19 . 2009-04-06 08:08    5174    ----a-w-    c:\windows\SysWow64\nppt9x.vxd
2013-08-24 22:19 . 2009-04-06 08:08    4682    ----a-w-    c:\windows\SysWow64\npptNT2.sys
2013-08-24 22:06 . 2013-08-24 22:06    --------    d-----w-    c:\program files (x86)\NCsoft
2013-08-24 17:25 . 2013-08-29 16:47    --------    d-----w-    c:\users\Mike\AppData\Roaming\AIMP3
2013-08-24 17:25 . 2013-08-24 17:25    --------    d-----w-    c:\program files (x86)\AIMP3
2013-08-24 16:55 . 2013-09-01 07:21    --------    d-----w-    c:\users\Mike\AppData\Roaming\vlc
2013-08-24 16:52 . 2013-08-24 16:52    --------    d-----w-    c:\program files (x86)\VideoLAN
2013-08-24 16:41 . 2013-08-24 16:42    --------    d-----w-    c:\program files (x86)\XBMC
2013-08-24 16:16 . 2013-09-02 06:46    --------    d-----w-    c:\users\Mike\AppData\Roaming\Wise Care 365
2013-08-24 16:14 . 2013-08-24 16:14    --------    d-----w-    c:\users\Mike\AppData\Roaming\EurekaLab s.a.s
2013-08-24 15:49 . 2013-08-24 15:49    --------    d-----w-    c:\program files (x86)\Wise
2013-08-24 15:13 . 2013-08-31 11:10    --------    d-----w-    c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-08-24 13:37 . 2013-08-24 13:37    --------    d-----w-    c:\users\Mike\AppData\Roaming\MoonriseInteractive
2013-08-24 11:54 . 2013-08-24 11:56    --------    d-----w-    c:\program files (x86)\Nero
2013-08-23 19:53 . 2013-08-23 19:53    --------    d-----w-    C:\NvidiaLogging
2013-08-23 19:51 . 2013-05-14 19:28    39712    ----a-w-    c:\windows\system32\drivers\nvvad64v.sys
2013-08-23 19:51 . 2013-05-14 19:27    29984    ----a-w-    c:\windows\system32\nvaudcap64v.dll
2013-08-23 19:51 . 2013-05-14 19:27    28448    ----a-w-    c:\windows\SysWow64\nvaudcap32v.dll
2013-08-23 19:51 . 2013-08-23 19:51    --------    d-----w-    c:\users\Mike\AppData\Local\NVIDIA
2013-08-23 15:41 . 2013-08-23 15:41    --------    d-----w-    c:\windows\system32\SPReview
2013-08-23 10:17 . 2013-08-23 10:17    --------    d-----w-    c:\users\Mike\AppData\Local\Diagnostics
2013-08-23 10:11 . 1998-07-30 11:51    305152    ----a-w-    c:\windows\IsUninst.exe
2013-08-23 07:15 . 2013-08-23 07:15    --------    d-----w-    c:\users\Mike\AppData\Local\Hitman Pro Portable MonbJIan
2013-08-23 07:09 . 2013-08-23 07:10    --------    d-----w-    c:\programdata\HitmanPro
2013-08-23 06:58 . 2013-08-23 07:43    --------    d-----w-    c:\program files (x86)\Aomei Partition Assistant Professional Edition 4.0
2013-08-23 06:51 . 2013-08-23 06:52    --------    d-----w-    c:\users\Mike\AppData\Local\ACD Systems
2013-08-23 06:51 . 2013-08-23 06:51    --------    d-----w-    c:\users\Mike\AppData\Roaming\ACD Systems
2013-08-23 06:49 . 2013-08-23 06:49    --------    d-----w-    c:\programdata\ACD Systems
2013-08-23 06:49 . 2013-08-23 07:54    --------    d-----w-    c:\program files (x86)\Common Files\ACD Systems
2013-08-23 06:49 . 2013-08-23 06:49    --------    d-----w-    c:\program files (x86)\ACD Systems
2013-08-23 06:48 . 2013-08-24 12:17    --------    d-----w-    c:\users\Mike\AppData\Local\Downloaded Installations
2013-08-23 06:41 . 2013-08-23 06:41    --------    d-----w-    c:\users\Mike\AppData\Roaming\Origin
2013-08-23 06:41 . 2013-08-23 06:41    --------    d-----w-    c:\programdata\Origin
2013-08-23 06:41 . 2013-08-23 06:41    --------    d-----w-    c:\program files (x86)\Origin
2013-08-23 06:32 . 2013-08-23 06:32    --------    d-----w-    c:\users\Mike\AppData\Roaming\Malwarebytes
2013-08-23 06:32 . 2013-08-23 06:32    --------    d-----w-    c:\programdata\Malwarebytes
2013-08-23 06:32 . 2013-08-23 06:32    --------    d-----w-    c:\program files (x86)\Malwarebytes' Anti-Malware
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-23 15:46 . 2009-07-14 02:36    175616    ----a-w-    c:\windows\system32\msclmd.dll
2013-08-23 15:46 . 2009-07-14 02:36    152576    ----a-w-    c:\windows\SysWow64\msclmd.dll
2013-08-21 19:30 . 2011-09-22 10:32    40544    ----a-r-    c:\windows\system32\drivers\afw.sys
2013-08-21 19:30 . 2011-09-22 10:32    68720    ----a-w-    c:\windows\system32\drivers\BdSpy.sys
2013-08-21 19:30 . 2012-10-01 20:14    350160    ----a-w-    c:\windows\system32\drivers\Trufos.sys
2013-08-21 19:30 . 2011-09-22 10:32    464480    ----a-r-    c:\windows\system32\drivers\afwcore.sys
2013-07-09 04:45 . 2013-08-26 09:08    44032    ----a-w-    c:\windows\apppatch\acwow64.dll
2013-06-21 12:06 . 2013-02-25 23:32    12427240    ----a-w-    c:\windows\SysWow64\nvd3dum.dll
2013-06-21 12:06 . 2013-02-25 23:32    2936208    ----a-w-    c:\windows\system32\nvapi64.dll
2013-06-21 12:06 . 2013-02-25 23:32    15920536    ----a-w-    c:\windows\system32\nvwgf2umx.dll
2013-06-21 12:06 . 2013-02-25 23:32    13411896    ----a-w-    c:\windows\SysWow64\nvwgf2um.dll
2013-06-21 04:16 . 2013-06-21 04:16    566048    ----a-w-    c:\windows\SysWow64\nvStreaming.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{48A789BF-F6D6-4930-9C8B-77855A63EDE1}]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17    130736    ----a-w-    c:\users\Mike\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17    130736    ----a-w-    c:\users\Mike\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17    130736    ----a-w-    c:\users\Mike\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 6"="c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-04-18 491840]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Ai Nap"="c:\program files (x86)\ASUS\AI Suite\Q-Button\QButton.exe" [2009-06-02 1968640]
"QFan Help"="c:\program files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe" [2009-07-01 601088]
"Cpu Level Up help"="c:\program files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe" [2007-11-30 881152]
"TurboV"="c:\program files (x86)\ASUS\TurboV\TurboV.exe" [2009-05-25 5391872]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2009-05-18 2157056]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-05-11 958576]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"ACPW05EN"="c:\program files (x86)\ACD Systems\ACDSee Pro\5.0\ACDSeeProInTouch2.exe" [2011-11-16 822384]
"IObit Malware Fighter"="c:\program files (x86)\IObit\IObit Malware Fighter\IMF.exe" [2013-06-14 1515328]
.
c:\users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Mike\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-6-5 27370808]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\System32\BgGamingMonitor.dll c:\progra~1\BULLGU~1\BULLGU~1\Files32\BgAgent.dll c:\progra~2\NVIDIA~1\NVSTRE~1\rxinput.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SecureUpdateSvc;SecureUpdate;c:\program files (x86)\Secure Speed Dial\IE\SecureUpdate.exe;c:\program files (x86)\Secure Speed Dial\IE\SecureUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 WiseBootAssistant;Wise Boot Assistant;c:\program files (x86)\Wise\Wise Care 365\BootTime.exe;c:\program files (x86)\Wise\Wise Care 365\BootTime.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
S1 AFW;Agnitum Firewall Driver;c:\windows\system32\DRIVERS\afw.sys;c:\windows\SYSNATIVE\DRIVERS\afw.sys [x]
S1 BdSpy;BdSpy;c:\windows\system32\DRIVERS\BdSpy.sys;c:\windows\SYSNATIVE\DRIVERS\BdSpy.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 NovaShieldFilterDriver;NovaShieldFilterDriver;c:\windows\system32\DRIVERS\NSKernel.sys;c:\windows\SYSNATIVE\DRIVERS\NSKernel.sys [x]
S1 NovaShieldTDIDriver;NovaShieldTDIDriver;c:\windows\system32\DRIVERS\NSNetmon.sys;c:\windows\SYSNATIVE\DRIVERS\NSNetmon.sys [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]
S2 BsBackup;BullGuard backup service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsBhvScan;BullGuard Behavioural Detection;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [x]
S2 BsFileScan;BullGuard on-access service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsFire;BullGuard firewall service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsMailProxy;BullGuard e-mail monitoring service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsMain;BullGuard main service;c:\windows\System32\SvcHost.exe;c:\windows\SYSNATIVE\SvcHost.exe [x]
S2 BsScanner;BullGuard scanning service;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [x]
S2 BsUpdate;BullGuard update service;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S3 afwcore;afwcore;c:\windows\system32\DRIVERS\afwcore.sys;c:\windows\SYSNATIVE\DRIVERS\afwcore.sys [x]
S3 BdNet;BdNet;c:\windows\system32\drivers\BdNet.sys;c:\windows\SYSNATIVE\drivers\BdNet.sys [x]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-08-30 11:36    1177552    ----a-w-    c:\program files (x86)\Google\Chrome\Application\29.0.1547.62\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-09-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21 10:36]
.
2013-09-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-22 13:31]
.
2013-09-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-22 13:31]
.
2013-09-02 c:\windows\Tasks\Wise Care 365.job
- c:\program files (x86)\Wise\Wise Care 365\WiseTray.exe [2013-08-24 13:57]
.
2013-08-24 c:\windows\Tasks\Wise Turbo Checker.job
- c:\program files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2013-08-24 11:46]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17    164016    ----a-w-    c:\users\Mike\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17    164016    ----a-w-    c:\users\Mike\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17    164016    ----a-w-    c:\users\Mike\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17    164016    ----a-w-    c:\users\Mike\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BullGuard"="c:\program files\BullGuard Ltd\BullGuard\bullguard.exe" [2013-08-21 970080]
"BullGuardUpdate2"="c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe" [2013-08-21 2531168]
"PAC7302_Monitor"="c:\windows\PixArt\PAC7302\Monitor.exe" [2007-12-10 323584]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-07-27 1028896]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\BgGamingMonitor.dll c:\progra~1\BULLGU~1\BULLGU~1\BgAgent.dll c:\progra~1\NVIDIA~1\NVSTRE~1\rxinput.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
LSP: c:\windows\system32\BGLsp.dll
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\0j5jbcmx.default\
FF - prefs.js: browser.startup.homepage - google.co.uk
FF - ExtSQL: 2013-09-01 11:39; jid1-F9UJ2thwoAm5gQ@jetpack; c:\users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\0j5jbcmx.default\extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
FF - ExtSQL: 2013-09-01 12:01; {E6C1199F-E687-42da-8C24-E7770CC3AE66}; c:\users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\0j5jbcmx.default\extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi
FF - ExtSQL: 2013-09-01 14:07; client@anonymox.net; c:\users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\0j5jbcmx.default\extensions\client@anonymox.net.xpi
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.032"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.abr"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ani"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.apd"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.arw"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.bay"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.bmp"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.bw"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.cr2"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.crw"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.cs1"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.cur"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.dcr"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.dcx"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.dib"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.djv"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.djvu"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.dng"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.emf"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.erf"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.fff"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.fpx"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.gif"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.hdr"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.icl"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.icn"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.iff"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ilbm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.int"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.inta"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.iw4"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.j2c"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.j2k"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jbr"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jfif"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jif"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jp2"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpc"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpe"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpeg"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpg"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpk"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.jpx"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.kdc"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.lbm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.mef"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.mos"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.mrw"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.nef"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.nrw"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.orf"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pbm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pbr"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pcd"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pct"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pcx"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pef"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pgm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pict"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pix"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.png"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ppm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.psp"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pspbrush"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.pspimage"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.raf"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ras"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.raw"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rgb"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rgba"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rle"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rsb"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rw2"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.rwl"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.sgi"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.sr2"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.srw"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.tga"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.thm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.tif"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.tiff"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ttc"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.ttf"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.wbm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.wbmp"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.wmf"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.xbm"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.xif"
.
[HKEY_USERS\S-1-5-21-1273006201-345161757-2322023537-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 5.xpm"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.9"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil9f.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil9f.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
.
**************************************************************************
.
Completion time: 2013-09-02  07:49:20 - machine was rebooted
ComboFix-quarantined-files.txt  2013-09-02 06:49
.
Pre-Run: 31,182,356,480 bytes free
Post-Run: 30,802,169,856 bytes free
.
- - End Of File - - 0A7EF8A0A8F271A0493909D6F816DA30
A36C5E4F47E84449FF07ED3517B43A31
 

Link to post
Share on other sites

  • Root Admin

I notice that you're running IObit Malware Fighter
 
The company behind this product was found to be stealing our database.
Personally I would not trust installing any software from a company that resorts to stealing someone's technology to sell their product.
Please see the following links and make up your own mind if you want to keep this on your system. If needed I can help you remove it.

Please download Junkware Removal Tool to your desktop.

  • Shutdown your antivirus to avoid any conflicts.
  • Right click over JRT.exe and select Run as administrator on Windows Vista or Windows 7, double-click on XP.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next reply message
  • When completed make sure to re-enable your antivirus

Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator

.

  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
Link to post
Share on other sites

Hello again. That was quite shocking about having your hard work stolen. I have removed this piece of software and have no intentions of re installing any product that carries their name. You have always been reputable and extend this kind of help to us N00B's so, in my opinion, offer far more than just a piece of software. Thank you

 

Here are the file logs.

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.7 (09.01.2013:1)
OS: Windows 7 Professional x64
Ran by Mike on 02/09/2013 at  9:50:38.73
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02/09/2013 at  9:57:56.90
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# AdwCleaner v3.002 - Report created 02/09/2013 at 10:00:46
# Updated 01/09/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Mike - MIKE-PC
# Running from : C:\Users\Mike\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\0j5jbcmx.default\jetpack

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\0j5jbcmx.default\prefs.js ]


-\\ Google Chrome v29.0.1547.62

[ File : C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [930 octets] - [02/09/2013 10:00:46]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [989 octets] ##########

 

 

Link to post
Share on other sites

  • Root Admin

Interesting that nothing was found with that tool as almost all computers have some level of unwanted files,, but that's good.
 
Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
Link to post
Share on other sites

  • 2 weeks later...
  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.