Jump to content

Recommended Posts

Hi,
I have a samsung series 7 gamer with this setup.
Intel core_i7 Processor 2.3GHz
16 GB RAM
1.5TB Hard Drive
17.3-Inch Screen, NVIDIA GeForce GTX 675M
Windows 7 Home Premium (64-bit)
1.5TB 7200 rpm Hard Drive
16 GB SO-DIMM RAM
17.3-Inch Screen; NVIDIA GeForce GTX 675M Graphics
Intel Core i7 Processor 3610QM 2.3GHz

In the last couple of days my computer has randomly been freezing when I'm running multiple programs. When I went to task manager it shows svchost.exe using 348k memory. This causes CPU usage to fluctuate between 15-60% usage and physical memory 30-40%. These are the services it's running Wlansvc(WLAN Autoconfig), UxSms(desktop window session manager), TrkWks(distributed link tracking client), SysMain(superfetch), PcaSvc(program compatibility assistant service), Netman(network connections), IPBusEnum(Pnp_X IP Bus Enumerator), Audio EndpointBuilder(Windows Audio Endpoint Builder)

 

I went to resource monitor and it says dvmonsrv.exe(bluetooth device monitor) is using a ridiculous amount of the CPU (avg 12.43), the next programs averages 1.16. Could that be the problem

I know recently there were windows updates and the only program I could find installed in the last few days under downloads was Nvidia. Nvidia does not seem to be hogging much Ram though.

Perfmon.exe is also using 258k of memory.

I have Comodo firewall and Avira Free anti-virus. I ran scans using both of these as well as a full malwarebytes scan and detected 0 viruses.

I googled this problem and must have read through 9-10 threads but noone seems to have a permanent solution (that I can find at least). Help is very much appreciated. Thanks in advance!

Link to post
Share on other sites

  • Root Admin

Hello and :welcome:

 

Let me have you run the following scanner and we'll take a look and see what we can find and go from there.

 

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system.
You can check here if you're not sure if your computer is 32-bit or 64-bit

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it also makes another log (Addition.txt). Please copy and paste it to your reply as well.


 

Thanks

Link to post
Share on other sites

First of all thanks for taking the time to help. :)

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-03-2014
Ran by Ben (administrator) on BEN-PC on 06-03-2014 19:17:02
Running from C:\Users\Ben\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link for 32-Bit version:
Download link for 64-Bit Version:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
() C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe
(PostgreSQL Global Development Group) c:\postgreSQL\bin\pg_ctl.exe
() C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(PostgreSQL Global Development Group) c:\postgreSQL\bin\postgres.exe
(Black Oak Computers, Inc.) C:\Program Files (x86)\StrongVPN\StrongService.exe
(PostgreSQL Global Development Group) c:\postgreSQL\bin\postgres.exe
(PostgreSQL Global Development Group) c:\postgreSQL\bin\postgres.exe
(PostgreSQL Global Development Group) c:\postgreSQL\bin\postgres.exe
(PostgreSQL Global Development Group) c:\postgreSQL\bin\postgres.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\ModeShift\ModeShift.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Spotify Ltd) C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
() C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\windows\System32\perfmon.exe
(Microsoft Corporation) C:\windows\system32\calc.exe
(Microsoft Corporation) C:\windows\system32\calc.exe
(Spotify Ltd) C:\Users\Ben\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
() C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe
() C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452456 2012-02-21] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2893608 2012-01-03] (ELAN Microelectronics Corp.)
HKLM\...\Run: [bTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [11406608 2011-12-19] (Intel Corporation)
HKLM\...\Run: [COMODO Internet Security] - C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1612504 2013-11-11] (COMODO)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iJNetworkScanUtility] - C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-23] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-25] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1758160 2014-02-12] (APN)
HKLM-x32\...\Run: [sunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKU\S-1-5-21-4017607708-2851936205-3148765964-1000\...\Run: [CPN Notifier] - C:\Program Files (x86)\Lock Poker\PokerNotifier.exe
HKU\S-1-5-21-4017607708-2851936205-3148765964-1000\...\Run: [spotify] - C:\Users\Ben\AppData\Roaming\Spotify\Spotify.exe [6118400 2014-01-17] (Spotify Ltd)
HKU\S-1-5-21-4017607708-2851936205-3148765964-1000\...\Run: [spotify Web Helper] - C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-17] (Spotify Ltd)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://us.yahoo.com/?fr=fp-comodo
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
SearchScopes: HKCU - {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = http://us.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo
SearchScopes: HKCU - {9815A5D2-9612-473C-9B40-F621FB6919C2} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=TV&apn_dtid=OSJ000YYUS&apn_uid=23F43CF4-18FD-4148-A6AD-BDA0DC3F59EC&apn_sauid=5426C8E8-0F63-4A96-B91B-1404DABDF5D2
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{3568718A-76A5-448B-8A19-5E8D9A6953E0}: [NameServer]156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{495DF2F2-6174-4168-8523-FF66CE745314}: [NameServer]156.154.70.22,156.154.71.22
 
FireFox:
========
FF ProfilePath: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\9zl37vsn.default
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Ask.com
FF DefaultSearchEngine: Google
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: tdameritrade.com/thinkorswim - C:\Program Files (x86)\thinkTDA\npthinkorswim.dll (TD Ameritrade)
FF Plugin HKCU: tdameritrade.com/tossc - C:\Program Files (x86)\thinkTDA\nptossc.dll (TD Ameritrade)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\browser\plugins\npatgpc.dll (Cisco WebEx LLC)
FF Plugin ProgramFiles/Appdata: C:\Users\Ben\AppData\Roaming\mozilla\plugins\npatgpc.dll (Cisco WebEx LLC)
FF SearchPlugin: C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\9zl37vsn.default\searchplugins\askcom.xml
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\Ben\AppData\Roaming\Mozilla\Firefox\Profiles\9zl37vsn.default\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi [2013-09-23]
 
Chrome: 
=======
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: Ask
CHR DefaultNewTabURL: 
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.149\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (tossc) - C:\Program Files (x86)\thinkTDA\tossc32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\windows\SysWOW64\npDeployJava1.dll No File
CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh [2013-10-23]
CHR Extension: (Google Docs) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-07-09]
CHR Extension: (Google Drive) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-09]
CHR Extension: (YouTube) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-09]
CHR Extension: (Adblock Plus) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-17]
CHR Extension: (Google Search) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-09]
CHR Extension: (AdBlock) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-17]
CHR Extension: (Google Wallet) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-20]
CHR Extension: (Gmail) - C:\Users\Ben\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-09]
CHR HKLM-x32\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx [2014-02-20]
 
==================== Services (Whitelisted) =================
 
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1017424 2014-02-25] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2014-02-12] (APN LLC.)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-04-19] (CyberLink)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6254152 2013-10-19] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [164056 2013-09-24] (COMODO)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2011-09-23] (Diskeeper Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-07] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 OpenVPNAccessClient; C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [24064 2012-05-03] ()
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37176 2013-08-22] (The OpenVPN Project)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2009-11-30] ()
R2 SamsungDeviceConfigurationWinService; C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [31624 2012-02-13] ()
R2 StrongService; C:\Program Files (x86)\StrongVPN\StrongService.exe [76136 2013-08-10] (Black Oak Computers, Inc.)
S3 GamesAppIntegrationService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe" [X]
S3 GamesAppService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe" [X]
R2 postgresql-8.4; c:/postgreSQL/bin/pg_ctl.exe runservice -N "postgresql-8.4" -D "c:/postgreSQL/data" -w [X]
 
==================== Drivers (Whitelisted) ====================
 
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-26] (Avira Operations GmbH & Co. KG)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2013-09-24] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [709144 2013-11-14] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48872 2013-09-24] (COMODO)
R3 CVPNDRVA; C:\windows\system32\Drivers\CVPNDRVA.sys [306536 2011-03-04] ()
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2011-09-23] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [80688 2011-09-23] (Diskeeper Corporation)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [96800 2013-09-24] (COMODO)
R2 SGDrv; C:\Windows\System32\DRIVERS\SGdrv64.sys [7680 2011-04-11] (Phoenix Technologies Ltd.)
R3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2011-08-19] (The OpenVPN Project)
R3 tapstrong; C:\Windows\System32\DRIVERS\tapstrong.sys [35520 2012-12-21] (The OpenVPN Project)
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-03-06 19:17 - 2014-03-06 19:17 - 00023546 _____ () C:\Users\Ben\Downloads\FRST.txt
2014-03-06 19:16 - 2014-03-06 19:17 - 00000000 ____D () C:\FRST
2014-03-06 19:15 - 2014-03-06 19:15 - 02156544 _____ (Farbar) C:\Users\Ben\Downloads\FRST64.exe
2014-03-06 17:43 - 2014-03-06 17:51 - 00007614 _____ () C:\Users\Ben\AppData\Local\Resmon.ResmonCfg
2014-03-06 05:56 - 2014-01-08 20:22 - 05694464 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-03-06 05:56 - 2014-01-03 16:44 - 06574592 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-03-05 04:51 - 2013-10-01 20:22 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys
2014-03-05 04:51 - 2013-10-01 20:11 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-05 04:51 - 2013-10-01 20:08 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-05 04:51 - 2013-10-01 19:48 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll
2014-03-05 04:51 - 2013-10-01 19:48 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll
2014-03-05 04:51 - 2013-10-01 19:29 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2014-03-05 04:51 - 2013-10-01 19:10 - 00044544 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll
2014-03-05 04:51 - 2013-10-01 18:15 - 01057280 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2014-03-05 04:51 - 2013-10-01 18:14 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\MsRdpWebAccess.dll
2014-03-05 04:51 - 2013-10-01 18:14 - 00017920 _____ (Microsoft Corporation) C:\windows\SysWOW64\wksprtPS.dll
2014-03-05 04:51 - 2013-10-01 18:08 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe
2014-03-05 04:51 - 2013-10-01 18:01 - 00420864 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2014-03-05 04:51 - 2013-10-01 17:58 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2014-03-05 04:51 - 2013-10-01 17:31 - 01147392 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe
2014-03-05 04:51 - 2013-10-01 17:08 - 00855552 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2014-03-05 04:51 - 2013-10-01 16:34 - 01068544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstsc.exe
2014-03-05 04:48 - 2012-08-23 08:13 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2014-03-05 04:48 - 2012-08-23 08:10 - 00019456 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys
2014-03-05 04:48 - 2012-08-23 08:08 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbGD.sys
2014-03-05 04:48 - 2012-08-23 07:24 - 00015360 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2014-03-05 04:48 - 2012-08-23 05:12 - 00192000 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpendp_winip.dll
2014-03-05 04:48 - 2012-08-23 04:51 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll
2014-03-05 04:48 - 2012-08-23 03:51 - 03174912 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2014-03-05 03:47 - 2013-09-24 20:23 - 01030144 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2014-03-05 03:47 - 2013-09-24 19:57 - 00792576 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2014-03-04 07:26 - 2014-03-04 07:26 - 00623874 _____ () C:\Users\Ben\Downloads\Attachments_201434.zip
2014-02-12 03:02 - 2013-12-21 03:53 - 00548864 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-02-12 03:02 - 2013-12-21 02:56 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-02-12 03:00 - 2014-02-06 06:16 - 23170048 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-02-12 03:00 - 2014-02-06 05:30 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-02-12 03:00 - 2014-02-06 05:30 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-02-12 03:00 - 2014-02-06 05:12 - 02765824 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-02-12 03:00 - 2014-02-06 05:07 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-02-12 03:00 - 2014-02-06 05:06 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-02-12 03:00 - 2014-02-06 04:57 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-02-12 03:00 - 2014-02-06 04:56 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-02-12 03:00 - 2014-02-06 04:52 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-02-12 03:00 - 2014-02-06 04:49 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-02-12 03:00 - 2014-02-06 04:48 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-02-12 03:00 - 2014-02-06 04:48 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-02-12 03:00 - 2014-02-06 04:38 - 17103872 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-02-12 03:00 - 2014-02-06 04:32 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-02-12 03:00 - 2014-02-06 04:20 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-02-12 03:00 - 2014-02-06 04:17 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-02-12 03:00 - 2014-02-06 04:11 - 05768704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-02-12 03:00 - 2014-02-06 04:01 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-02-12 03:00 - 2014-02-06 04:00 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-02-12 03:00 - 2014-02-06 03:57 - 02168320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-02-12 03:00 - 2014-02-06 03:57 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-02-12 03:00 - 2014-02-06 03:52 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-02-12 03:00 - 2014-02-06 03:52 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-02-12 03:00 - 2014-02-06 03:50 - 02041856 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 03:49 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-02-12 03:00 - 2014-02-06 03:47 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-02-12 03:00 - 2014-02-06 03:46 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-02-12 03:00 - 2014-02-06 03:25 - 04244480 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-02-12 03:00 - 2014-02-06 03:25 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-02-12 03:00 - 2014-02-06 03:24 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-02-12 03:00 - 2014-02-06 03:22 - 13051392 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-02-12 03:00 - 2014-02-06 03:13 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-02-12 03:00 - 2014-02-06 03:09 - 01964032 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-02-12 03:00 - 2014-02-06 03:03 - 11266048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-02-12 03:00 - 2014-02-06 02:55 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-02-12 03:00 - 2014-02-06 02:41 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-02-12 03:00 - 2014-02-06 02:40 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-02-12 03:00 - 2014-02-06 02:36 - 01156096 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-02-12 03:00 - 2014-02-06 02:34 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-02-11 16:03 - 2013-12-31 17:05 - 00420008 _____ () C:\windows\SysWOW64\locale.nls
2014-02-11 16:03 - 2013-12-31 17:04 - 00420008 _____ () C:\windows\system32\locale.nls
2014-02-11 16:03 - 2013-12-24 17:09 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-02-11 16:03 - 2013-12-24 16:48 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-02-11 16:03 - 2013-12-05 20:30 - 01882112 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-02-11 16:03 - 2013-12-05 20:30 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-02-11 16:03 - 2013-12-05 20:02 - 01237504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2014-02-11 16:03 - 2013-12-05 20:02 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2014-02-11 16:03 - 2013-12-03 20:27 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2014-02-11 16:03 - 2013-12-03 20:27 - 00485888 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2014-02-11 16:03 - 2013-12-03 20:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2014-02-11 16:03 - 2013-12-03 20:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2014-02-11 16:03 - 2013-12-03 20:26 - 00528384 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2014-02-11 16:03 - 2013-12-03 20:16 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2014-02-11 16:03 - 2013-12-03 20:16 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2014-02-11 16:03 - 2013-12-03 20:16 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2014-02-11 16:03 - 2013-12-03 20:16 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2014-02-11 16:03 - 2013-12-03 20:03 - 00428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll
2014-02-11 16:03 - 2013-12-03 20:03 - 00423936 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll
2014-02-11 16:03 - 2013-12-03 20:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp_isv.dll
2014-02-11 16:03 - 2013-12-03 20:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp.dll
2014-02-11 16:03 - 2013-12-03 20:02 - 00390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2014-02-11 16:03 - 2013-12-03 19:54 - 00594944 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe
2014-02-11 16:03 - 2013-12-03 19:54 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe
2014-02-11 16:03 - 2013-12-03 19:54 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe
2014-02-11 16:03 - 2013-12-03 19:54 - 00508928 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-11 16:03 - 2013-11-26 02:16 - 03419136 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2014-02-11 16:03 - 2013-11-22 16:48 - 03928064 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2014-02-07 16:30 - 2014-02-07 16:30 - 00000000 ____D () C:\Users\Ben\AppData\Local\Skype
2014-02-07 16:28 - 2014-02-07 16:28 - 01659552 _____ (Skype Technologies S.A.) C:\Users\Ben\Downloads\SkypeSetup (1).exe
2014-02-05 14:28 - 2014-02-05 14:28 - 00000772 _____ () C:\Users\Public\Desktop\William Hill Poker.lnk
 
==================== One Month Modified Files and Folders =======
 
2014-03-06 19:17 - 2014-03-06 19:17 - 00023546 _____ () C:\Users\Ben\Downloads\FRST.txt
2014-03-06 19:17 - 2014-03-06 19:16 - 00000000 ____D () C:\FRST
2014-03-06 19:16 - 2012-09-12 12:58 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-03-06 19:15 - 2014-03-06 19:15 - 02156544 _____ (Farbar) C:\Users\Ben\Downloads\FRST64.exe
2014-03-06 19:07 - 2013-10-21 19:52 - 00000000 ____D () C:\Users\Ben\AppData\Roaming\Spotify
2014-03-06 19:07 - 2012-03-16 02:29 - 01162540 _____ () C:\windows\WindowsUpdate.log
2014-03-06 19:06 - 2012-08-08 13:23 - 00000892 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-06 17:51 - 2014-03-06 17:43 - 00007614 _____ () C:\Users\Ben\AppData\Local\Resmon.ResmonCfg
2014-03-06 17:17 - 2012-03-15 10:45 - 00000830 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-03-06 14:13 - 2013-09-16 23:05 - 00000376 _____ () C:\Users\Ben\openvpn-connect.json
2014-03-06 11:56 - 2012-03-15 11:29 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-06 11:56 - 2012-03-15 10:38 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-06 11:56 - 2012-03-15 10:36 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-06 07:56 - 2009-07-13 22:51 - 00089921 _____ () C:\windows\setupact.log
2014-03-06 07:02 - 2012-08-08 12:25 - 00000000 ____D () C:\ProgramData\Skype
2014-03-06 06:30 - 2013-02-14 02:37 - 00000000 ____D () C:\Program Files (x86)\PokerTracker 4
2014-03-06 05:59 - 2009-07-13 22:45 - 00021200 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-06 05:59 - 2009-07-13 22:45 - 00021200 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-06 05:57 - 2009-07-13 23:13 - 00783424 _____ () C:\windows\system32\PerfStringBackup.INI
2014-03-06 05:56 - 2012-09-14 16:29 - 00001073 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-06 05:56 - 2012-09-14 16:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-05 22:19 - 2013-09-16 23:00 - 00031586 _____ () C:\Users\Ben\ovpntray.log
2014-03-05 22:19 - 2009-07-13 23:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-03-05 20:41 - 2012-08-08 13:02 - 00000000 ____D () C:\Poker
2014-03-05 20:29 - 2014-01-13 12:00 - 00000000 ____D () C:\Program Files\Takion
2014-03-05 20:29 - 2012-10-03 08:04 - 00000000 ____D () C:\Users\Ben\AppData\Roaming\WildTangent
2014-03-05 20:29 - 2012-03-15 10:53 - 00000000 ____D () C:\ProgramData\WildTangent
2014-03-05 20:21 - 2009-07-13 21:20 - 00000000 ____D () C:\windows\system32\NDF
2014-03-05 19:59 - 2009-07-13 21:20 - 00000000 ____D () C:\windows\rescache
2014-03-05 16:07 - 2012-12-07 17:39 - 00000000 ____D () C:\BlackChipPoker
2014-03-05 15:34 - 2012-08-09 23:33 - 00000000 ____D () C:\Users\Ben\AppData\Roaming\Skype
2014-03-05 05:08 - 2012-08-20 19:01 - 00000000 ____D () C:\Users\postgres
2014-03-05 05:06 - 2009-07-13 21:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-03-04 13:13 - 2013-02-05 00:50 - 00000000 ____D () C:\Program Files (x86)\PokerTracker 3
2014-03-04 08:33 - 2009-07-13 23:09 - 00000000 ____D () C:\windows\System32\Tasks\WPD
2014-03-04 08:32 - 2012-08-08 13:23 - 00000888 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-04 07:31 - 2013-11-01 20:51 - 00000000 ____D () C:\Users\Ben\Documents\Noelle
2014-03-04 07:28 - 2012-08-08 13:24 - 00002143 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-04 07:26 - 2014-03-04 07:26 - 00623874 _____ () C:\Users\Ben\Downloads\Attachments_201434.zip
2014-03-03 12:14 - 2013-10-21 19:52 - 00000000 ____D () C:\Users\Ben\AppData\Local\Spotify
2014-02-28 01:18 - 2013-03-22 14:31 - 00001095 _____ () C:\Users\Public\Desktop\BetOnline Poker 8.2.lnk
2014-02-27 00:31 - 2012-08-22 14:42 - 00000000 ____D () C:\Users\Ben\Documents\888poker
2014-02-21 15:16 - 2012-09-12 12:58 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 15:16 - 2012-09-12 12:58 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-21 15:16 - 2012-09-12 12:58 - 00003768 _____ () C:\windows\System32\Tasks\Adobe Flash Player Updater
2014-02-16 03:05 - 2013-08-15 08:12 - 00000000 ____D () C:\windows\system32\MRT
2014-02-16 03:00 - 2012-09-11 13:43 - 88567024 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-02-15 20:33 - 2012-08-08 13:23 - 00003888 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 20:33 - 2012-08-08 13:23 - 00003638 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-13 14:54 - 2013-09-09 01:04 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-12 03:04 - 2012-08-20 19:26 - 00776038 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-02-09 01:45 - 2013-05-08 14:04 - 00000000 ____D () C:\Users\Ben\.thinkorswim
2014-02-09 01:45 - 2013-05-08 14:03 - 00000000 ____D () C:\Program Files (x86)\thinkTDA
2014-02-07 16:30 - 2014-02-07 16:30 - 00000000 ____D () C:\Users\Ben\AppData\Local\Skype
2014-02-07 16:28 - 2014-02-07 16:28 - 01659552 _____ (Skype Technologies S.A.) C:\Users\Ben\Downloads\SkypeSetup (1).exe
2014-02-06 06:16 - 2014-02-12 03:00 - 23170048 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-02-06 05:30 - 2014-02-12 03:00 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-02-06 05:30 - 2014-02-12 03:00 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-02-06 05:12 - 2014-02-12 03:00 - 02765824 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-02-06 05:07 - 2014-02-12 03:00 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-02-06 05:06 - 2014-02-12 03:00 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-02-06 04:57 - 2014-02-12 03:00 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-02-06 04:56 - 2014-02-12 03:00 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-02-06 04:52 - 2014-02-12 03:00 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-02-06 04:49 - 2014-02-12 03:00 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-02-06 04:48 - 2014-02-12 03:00 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-02-06 04:48 - 2014-02-12 03:00 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-02-06 04:38 - 2014-02-12 03:00 - 17103872 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-02-06 04:32 - 2014-02-12 03:00 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-02-06 04:20 - 2014-02-12 03:00 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-02-06 04:17 - 2014-02-12 03:00 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-02-06 04:11 - 2014-02-12 03:00 - 05768704 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-02-06 04:01 - 2014-02-12 03:00 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-02-06 04:00 - 2014-02-12 03:00 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-02-06 03:57 - 2014-02-12 03:00 - 02168320 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-02-06 03:57 - 2014-02-12 03:00 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-02-06 03:52 - 2014-02-12 03:00 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-02-06 03:52 - 2014-02-12 03:00 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-02-06 03:50 - 2014-02-12 03:00 - 02041856 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-02-06 03:49 - 2014-02-12 03:00 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-02-06 03:47 - 2014-02-12 03:00 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-02-06 03:46 - 2014-02-12 03:00 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-02-06 03:25 - 2014-02-12 03:00 - 04244480 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-02-06 03:25 - 2014-02-12 03:00 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-02-06 03:24 - 2014-02-12 03:00 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-02-06 03:22 - 2014-02-12 03:00 - 13051392 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-02-06 03:13 - 2014-02-12 03:00 - 00524288 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-02-06 03:09 - 2014-02-12 03:00 - 01964032 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-02-06 03:03 - 2014-02-12 03:00 - 11266048 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-02-06 02:55 - 2014-02-12 03:00 - 01393664 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-02-06 02:41 - 2014-02-12 03:00 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-02-06 02:40 - 2014-02-12 03:00 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-02-06 02:36 - 2014-02-12 03:00 - 01156096 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-02-06 02:34 - 2014-02-12 03:00 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-02-05 15:23 - 2012-09-14 15:58 - 00000000 ____D () C:\Users\Ben\AppData\Local\CrashDumps
2014-02-05 14:28 - 2014-02-05 14:28 - 00000772 _____ () C:\Users\Public\Desktop\William Hill Poker.lnk
2014-02-04 22:49 - 2012-11-09 15:04 - 00000000 ____D () C:\Betsafe
 
Some content of TEMP:
====================
C:\Users\Ben\AppData\Local\Temp\APNStub.exe
C:\Users\Ben\AppData\Local\Temp\AskSLib.dll
C:\Users\Ben\AppData\Local\Temp\avgnt.exe
C:\Users\Ben\AppData\Local\Temp\BetOnline Updater.exe
C:\Users\Ben\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Ben\AppData\Local\Temp\gffsgnjh.dll
C:\Users\Ben\AppData\Local\Temp\GoogleToolbarInstaller_en32_signed.exe
C:\Users\Ben\AppData\Local\Temp\i4jdel0.exe
C:\Users\Ben\AppData\Local\Temp\install_reader10_en_gtba_chra_dy_aih.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Ben\AppData\Local\Temp\openvpn-2.1_rc20-install.exe
C:\Users\Ben\AppData\Local\Temp\setup.exe
C:\Users\Ben\AppData\Local\Temp\SIInvoker.exe
C:\Users\Ben\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Ben\AppData\Local\Temp\StrongHelper.exe
C:\Users\Ben\AppData\Local\Temp\tmp7712.tmp.exe
C:\Users\Ben\AppData\Local\Temp\tmpa3b6.tmp.exe
C:\Users\Ben\AppData\Local\Temp\{3A75BFBC-572D-4CEC-964B-7A6EC8189665}-28.0.1500.72_28.0.1500.71_chrome_updater.exe
C:\Users\bigben\AppData\Local\Temp\AskSLib.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-03-01 21:13
 
==================== End Of Log ============================
Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-03-2014

Ran by Ben at 2014-03-06 19:18:19

Running from C:\Users\Ben\Downloads

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: COMODO Antivirus (Disabled - Out of date) {0C2D2636-923D-EE52-2A83-E643204A8275}

FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}

 

==================== Installed Programs ======================

 

„Windows Live Essentials“ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

„Windows Live Mail“ (x32 Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden

„Windows Live Messenger“ (x32 Version: 15.4.3538.0513 - „Microsoft Corporation“) Hidden

„Windows Live“ fotogalerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

5Dimes (HKLM-x32\...\0BCD4FA0-01EA-402A-BA3C-B8AAD0DE6270) (Version: 16.6 - IGSoft)

888poker (HKLM-x32\...\888poker) (Version:  - )

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.2.0.2070 - Adobe Systems Incorporated)

Adobe AIR (x32 Version: 3.2.0.2070 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)

Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)

Adobe Reader X (10.1.8) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.8 - Adobe Systems Incorporated)

Agatha Christie - Death on the Nile (x32 Version: 2.2.0.82 - WildTangent) Hidden

Amazon Kindle (HKLM-x32\...\Amazon Kindle) (Version:  - Amazon)

Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.338 - Avira)

Avira SearchFree Toolbar (HKLM-x32\...\{41564952-412D-5637-00A7-A758B70C0A03}) (Version: 12.10.3.4489 - APN, LLC)

Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

BetOnline Poker 8.2 (HKLM-x32\...\BetOnline Poker 8.2) (Version: 8.2.10.201209281300 - Hero Poker Network)

Betsafe Poker 1.0.0 (HKLM-x32\...\Betsafe Poker_is1) (Version: 1.0.0 - betsafe)

BlackChipPoker (HKLM-x32\...\FE4D6F94-B3D5-484b-94F7-8BC45DEB7A82) (Version: 16.6 - IGSoft)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Build-a-lot (x32 Version: 2.2.0.82 - WildTangent) Hidden

bwin Poker (HKLM-x32\...\bwincomPoker) (Version:  - bwincom)

Canon IJ Network Scan Utility (HKLM-x32\...\Canon_IJ_Network_Scan_UTILITY) (Version:  - )

Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version:  - )

Canon MP Navigator EX 3.1 (HKLM-x32\...\MP Navigator EX 3.1) (Version:  - )

Canon MX870 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX870_series) (Version:  - )

CCleaner (HKLM\...\CCleaner) (Version: 3.23 - Piriform)

Chuzzle Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden

Cisco Systems VPN Client 5.0.07.0440 (HKLM\...\{5FDC06BF-3D3D-4367-8FFB-4FAFCB61972D}) (Version: 5.0.7 - Cisco Systems, Inc.)

COMODO Firewall (HKLM\...\{A0BABADE-E154-4F08-97A1-2903CD110E88}) (Version: 6.2.20728.2847 - COMODO Security Solutions Inc.)

CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)

CyberLink Media Suite (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden

CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.0.1130a - CyberLink Corp.)

CyberLink MediaShow (x32 Version: 5.0.1130a - CyberLink Corp.) Hidden

CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4813b - CyberLink Corp.)

CyberLink Power2Go (x32 Version: 6.1.4813b - CyberLink Corp.) Hidden

CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.4207 - CyberLink Corp.)

CyberLink PowerDirector (x32 Version: 8.0.4207 - CyberLink Corp.) Hidden

CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.3706.52 - CyberLink Corp.)

CyberLink PowerDVD 10 (x32 Version: 10.0.3706.52 - CyberLink Corp.) Hidden

CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.4417 - CyberLink Corp.)

CyberLink YouCam (x32 Version: 3.1.4417 - CyberLink Corp.) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82 - WildTangent) Hidden

Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)

Easy File Share (HKLM-x32\...\{12F81925-F3C1-40DB-91F7-777817974319}) (Version: 1.2.4 - Samsung Electronics Co., Ltd.)

Easy Migration (HKLM-x32\...\{AD86049C-3D9C-43E1-BE73-643F57D83D50}) (Version: 1.0 - Samsung Electronics Co., Ltd.)

Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics Co., Ltd.)

Easy Software Manager (HKLM-x32\...\{DE256D8B-D971-456D-BC02-CB64DA24F115}) (Version: 1.1.41.25 - Samsung Electronics Co., Ltd.)

Easy Support Center 1.0 (HKLM-x32\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.49 - Samsung)

E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung)

ETDWare PS/2-X64 10.7.6.3_WHQL (HKLM\...\Elantech) (Version: 10.7.6.3 - ELAN Microelectronic Corp.)

ExpressCache (HKLM\...\{F9EB0DDE-931C-4E89-96B2-DE8286EDFA6C}) (Version: 1.0.64 - Diskeeper Corporation)

Farm Frenzy (x32 Version: 2.2.0.82 - WildTangent) Hidden

Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Full Tilt Poker (HKLM-x32\...\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}) (Version: 4.48.3.WIN.FullTilt.COM - )

Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Goalwin Poker 1.0.0 (HKLM-x32\...\Goalwin Poker_is1) (Version: 1.0.0 - goalwin)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)

Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4805.320 - Google Inc.)

Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden

Heaven Bet Poker 1.0.0 (HKLM-x32\...\Heaven Bet Poker_is1) (Version: 1.0.0 - Heaven Bet)

Holdem Manager 2 (HKLM-x32\...\HoldemManager2) (Version:  - )

Insaniquarium Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden

Intel PROSet Wireless (Version:  - ) Hidden

Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)

Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0059 - Intel Corporation)

Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{F0932859-AA60-459E-B843-0BDECA34E2C7}) (Version: 2.0.0.0086 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)

Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 - Intel Corporation)

Intel® PROSet/Wireless WiFi Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation)

Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)

iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)

Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.510 - Oracle)

Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden

John Deere Drive Green (x32 Version: 2.2.0.82 - WildTangent) Hidden

Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

K-Lite Codec Pack 7.0.0 (Standard) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.0.0 - )

Lock Poker (HKLM-x32\...\Lock Poker) (Version: 2.0.1.6800 - Lock Poker)

LuckyAcePoker.com (HKLM-x32\...\LuckyAcePoker.com) (Version:  - )

Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)

Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden

Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

ModeShift (HKLM-x32\...\{287D1D31-F936-4848-8760-4446C689AAFF}) (Version: 1.0 - Samsung Electronics Co., Ltd.)

Mozilla Firefox 23.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 23.0.1 (x86 en-US)) (Version: 23.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 23.0.1 - Mozilla)

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

Muchos Poker Launcher (HKLM-x32\...\{7828F326-08D4-455A-BE6D-081DAF70093E}) (Version: 1.0.91 - Muchos Poker)

MuchosPoker CustomAvatars (HKCU\...\MuchosPokerCustomAvatars_298_12) (Version: 03.43 - MuchosPoker CustomAvatars)

Multimedia POP (HKLM-x32\...\{9B24AA09-3DCB-470F-9B42-FF2BD8780367}) (Version: 1.0 - )

NinjaTrader 7 (HKLM-x32\...\{705D3DF2-7156-4262-BE8D-AD1E50EAAD25}) (Version: 7.0.1020 - NinjaTrader)

Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)

NVIDIA Control Panel 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden

NVIDIA Graphics Driver 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)

NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden

NVIDIA PhysX (x32 Version: 9.11.1111 - NVIDIA Corporation) Hidden

NVIDIA PhysX System Software 9.11.1111 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.11.1111 - NVIDIA Corporation)

OpenVPN 2.3.2-I003  (HKLM\...\OpenVPN) (Version: 2.3.2-I003 - )

OpenVPN Connect (HKLM-x32\...\{9D5EE462-390D-42F7-B12D-56121A7640E1}) (Version: 1.8.3.347 - OpenVPN Technologies)

Peggle (x32 Version: 2.2.0.82 - WildTangent) Hidden

Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden

PIVCAKE (HKLM-x32\...\PIVCAKE) (Version: 2.0.1.4798 - PIVCAKE)

PivEntr (HKLM-x32\...\1180-6883-2514-0226-pokerinvenice-PROD) (Version: 54.0.30602-30520-9 - IGT Interactive AB)

Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden

Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

PokerTracker 3 (remove only) (HKLM-x32\...\PokerTracker3) (Version:  - )

PokerTracker 4 (remove only) (HKLM-x32\...\PokerTracker4) (Version:  - )

Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden

Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

PostgreSQL 8.4 (HKLM-x32\...\PostgreSQL 8.4) (Version: 8.4 - PostgreSQL Global Development Group)

ProPokerTools Odds Oracle 2.2.0 (HKLM-x32\...\5992-1726-3179-3433) (Version: 2.2.0 - ProPokerTools)

Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.50.1123.2011 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6577 - Realtek Semiconductor Corp.)

Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.28094 - Realtek Semiconductor Corp.)

Redbet Poker (HKLM-x32\...\Redbet Poker ) (Version:  - Boss Media AB)

Redbet Poker 1.0.0 (HKLM-x32\...\Redbet Poker_is1) (Version: 1.0.0 - Redbet)

Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.2.3 - Samsung)

Snagit 11 (HKLM-x32\...\{A56C6348-59D0-433B-A48A-75914858664E}) (Version: 11.2.1 - TechSmith Corporation)

Software Launcher (HKLM-x32\...\{B750B5C2-CC17-4967-905B-29F4EB986131}) (Version: 1.0.2 - Samsung)

Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)

StrongVPN Client version 1.2 (HKLM-x32\...\{6EB6293C-9286-4981-8672-956E1A92F33B}_is1) (Version: 1.2 - Black Oak Computers)

T4 Simulator  (HKLM-x32\...\T4 Simulator) (Version:  - CTS)

TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )

thinkorswim from TD AMERITRADE (HKLM-x32\...\thinkorswim from TD AMERITRADE) (Version:  - TD AMERITRADE, Inc.)

Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden

User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.4 - )

WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.1.5 - WildTangent)

WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-wildgames) (Version: 4.0.11.2 - WildTangent)

William Hill Poker (HKLM-x32\...\William Hill Poker) (Version:  - )

Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live fotoattēlu galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Foto-galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Galerija fotografija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden

Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden

Windows Live Messenger (x32 Version: 15.4.3538.0513 - Корпорация Майкрософт) Hidden

Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Pošta (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden

Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 메일 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 사진 갤러리 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 필수 패키지 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 照片库 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)

Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Live 软件包 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

WPT Poker (HKLM-x32\...\WPTPoker) (Version:  - WPT)

Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden

Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

 

==================== Restore Points  =========================

 

06-03-2014 02:29:00 Removed Takion

06-03-2014 02:42:15 Removed MuchosPoker

06-03-2014 13:01:53 Removed Skype™ 6.13

06-03-2014 13:04:39 Removed Skype Click to Call

06-03-2014 13:12:50 Windows Update

 

==================== Hosts content: ==========================

 

2009-07-13 20:34 - 2013-09-16 23:06 - 00000997 ____A C:\windows\system32\Drivers\etc\hosts

127.94.0.1 client.openvpn.net

127.94.0.2 openvpn-client.toronto7.network-isp.com

 

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: {3C5AF259-F19D-410B-87DC-660C00AEEDA4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-08] (Google Inc.)

Task: {46A18004-6C2F-4AE1-859A-4D65DCB2D8CD} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-08-17] (CyberLink)

Task: {478D15DF-5BF0-4007-BB81-15CAECBAF06A} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe [2012-03-04] (Samsung Electronics Co., Ltd.)

Task: {4C5D469E-D7C8-40CD-8589-ACC7E24B4806} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe [2012-01-26] (SAMSUNG Electronics)

Task: {6184B53C-7611-4872-AAF3-934F2336BF9C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-09-24] (Piriform Ltd)

Task: {6B087643-E9D6-4049-A91D-426DE99B9FCC} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)

Task: {76C8C17E-4359-45F3-99AC-8C86AE7E1948} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe [2012-01-31] (Samsung Electronics Co., Ltd.)

Task: {79FB3964-37E5-41A9-BD2A-DEB405CD0093} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-24] (Intel Corporation)

Task: {9873EEF6-A429-4C56-BDC5-C4F5DDFA42D6} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe [2012-02-13] (Samsung Electronics Co., Ltd.)

Task: {B29FA995-0FAA-4D0B-A40D-3F5BEE84126D} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe [2012-01-31] (Samsung Electronics)

Task: {BBFB867E-BA33-486D-8CFA-D4AD74524C4D} - System32\Tasks\Easy Software Manager Agent => C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe [2012-02-08] (Samsung)

Task: {CBEBC6C2-4FD1-4A8D-9972-E94638ABF257} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2011-12-19] (SEC)

Task: {D3EDEF42-5CEE-4440-8E19-4B82B45C5C16} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-24] (Intel Corporation)

Task: {D885B1B1-EE60-4C4D-B814-ABF32BD3ED77} - System32\Tasks\ModeShift => C:\Program Files (x86)\Samsung\ModeShift\ModeShift.exe [2012-02-01] (Samsung Electronics Co., Ltd.)

Task: {E515CF46-9306-4F17-B2C9-5152FC48F2A1} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-11] (COMODO)

Task: {E667DA20-C630-4BB2-8919-E1E496EBAB5C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-08-08] (Google Inc.)

Task: {EB557E4F-13AA-481F-9C74-3D7661DD9A55} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {F0DDB945-D5DF-48F2-BED5-DA7B203B591A} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe [2011-11-18] (SAMSUNG Electronics co., LTD.)

Task: {F4975D65-FA27-47C4-A738-0F79DE3C25D4} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [2012-03-04] (Samsung Electronics Co., Ltd.)

Task: {FE45081B-EBC4-4853-A53B-5E006E387C81} - System32\Tasks\COMODO\COMODO Welcome {CEB54B45-2B5E-4FF5-9223-6735CD80FE69} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2013-11-20] (COMODO)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe

Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe

 

==================== Loaded Modules (whitelisted) =============

 

2012-03-15 10:44 - 2012-02-07 20:03 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

2012-05-03 14:49 - 2012-05-03 14:49 - 00024064 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe

2012-03-15 10:49 - 2012-02-13 00:02 - 00031624 _____ () C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe

2012-05-03 14:49 - 2012-05-03 14:49 - 00055296 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\ovpntray.exe

2012-03-15 11:59 - 2009-11-30 09:21 - 00244904 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

2012-03-15 10:37 - 2013-08-29 16:43 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2013-10-21 19:52 - 2014-01-17 19:15 - 00603648 _____ () C:\Users\Ben\AppData\Roaming\Spotify\Data\SpotifyHelper.exe

2011-12-22 19:24 - 2011-12-22 19:24 - 00119808 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe

2013-10-23 11:01 - 2013-10-23 10:53 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll

2012-08-27 21:33 - 2012-08-27 21:33 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

2012-08-27 21:33 - 2012-08-27 21:33 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

2011-03-04 12:49 - 2011-03-04 12:49 - 00202752 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll

2011-02-26 10:33 - 2011-02-26 10:33 - 00027648 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\servicemanager.pyd

2011-02-27 09:12 - 2011-02-27 09:12 - 00110080 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\pywintypes26.dll

2011-02-26 10:32 - 2011-02-26 10:32 - 00040960 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32service.pyd

2011-02-26 10:33 - 2011-02-26 10:33 - 00096768 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32api.pyd

2010-08-24 17:48 - 2010-08-24 17:48 - 00153088 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\pyexpat.pyd

2010-08-24 17:47 - 2010-08-24 17:47 - 00040448 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_socket.pyd

2010-08-24 17:48 - 2010-08-24 17:48 - 00720896 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_ssl.pyd

2012-03-27 15:59 - 2012-03-27 15:59 - 00019968 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\zope.interface._zope_interface_coptimizations.pyd

2010-08-24 17:48 - 2010-08-24 17:48 - 00286208 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_hashlib.pyd

2010-08-24 17:48 - 2010-08-24 17:48 - 00073728 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\_ctypes.pyd

2010-08-24 17:48 - 2010-08-24 17:48 - 00011776 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\select.pyd

2012-03-27 16:00 - 2012-03-27 16:00 - 00010240 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.rand.pyd

2012-03-27 16:00 - 2012-03-27 16:00 - 00061440 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.crypto.pyd

2012-03-27 16:00 - 2012-03-27 16:00 - 00039424 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\OpenSSL.SSL.pyd

2011-02-26 10:32 - 2011-02-26 10:32 - 00035840 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32process.pyd

2012-03-27 16:00 - 2012-03-27 16:00 - 00007680 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\twisted.protocols._c_urlarg.pyd

2012-03-27 16:00 - 2012-03-27 16:00 - 00006656 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\pyovpnc.pyd

2011-02-26 10:34 - 2011-02-26 10:34 - 00354304 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\pythoncom26.dll

2011-02-26 10:38 - 2011-02-26 10:38 - 00265728 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32com.shell.shell.pyd

2011-02-26 10:31 - 2011-02-26 10:31 - 00112128 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32file.pyd

2011-02-26 10:32 - 2011-02-26 10:32 - 00110080 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32security.pyd

2011-02-26 10:31 - 2011-02-26 10:31 - 00017408 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32event.pyd

2011-02-26 10:32 - 2011-02-26 10:32 - 00023552 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32pipe.pyd

2011-02-26 10:33 - 2011-02-26 10:33 - 00022528 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32ts.pyd

2010-08-24 17:48 - 2010-08-24 17:48 - 00585728 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\unicodedata.pyd

2012-08-20 19:01 - 2011-01-27 23:15 - 00172032 _____ () c:\postgreSQL\bin\LIBPQ.dll

2012-08-20 19:01 - 2009-02-12 13:01 - 00976384 _____ () c:\postgreSQL\bin\libxml2.dll

2012-08-20 19:01 - 2005-07-20 04:48 - 00059904 _____ () c:\postgreSQL\bin\zlib1.dll

2012-03-15 10:49 - 2011-02-16 10:03 - 00203776 _____ () C:\Program Files (x86)\Samsung\Easy Settings\WinCRT.dll

2011-02-26 10:33 - 2011-02-26 10:33 - 00167424 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\win32gui.pyd

2011-08-19 00:44 - 2011-08-19 00:44 - 00005632 _____ () C:\Program Files (x86)\OpenVPN Technologies\OpenVPN Client\core\ovpntray.dll

2012-03-15 10:49 - 2006-08-11 21:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll

2009-11-01 23:20 - 2009-11-01 23:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll

2009-11-01 23:23 - 2009-11-01 23:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll

2012-03-15 10:44 - 2012-02-07 19:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll

2013-10-21 19:52 - 2014-01-17 19:15 - 36967424 _____ () C:\Users\Ben\AppData\Roaming\Spotify\Data\libcef.dll

2013-10-21 19:52 - 2014-01-17 19:15 - 00887808 _____ () C:\Users\Ben\AppData\Roaming\Spotify\Data\libglesv2.dll

2013-10-21 19:52 - 2014-01-17 19:15 - 00109568 _____ () C:\Users\Ben\AppData\Roaming\Spotify\Data\libegl.dll

2011-08-15 05:12 - 2011-08-15 05:12 - 02603520 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll

2011-08-15 05:15 - 2011-08-15 05:15 - 00382464 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll

2011-08-17 01:41 - 2011-08-17 01:41 - 00400384 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll

2011-08-17 01:48 - 2011-08-17 01:48 - 00322048 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll

2011-11-24 22:29 - 2011-11-24 22:29 - 00015872 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll

2011-08-15 05:12 - 2011-08-15 05:12 - 01006592 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll

2011-08-17 01:48 - 2011-08-17 01:48 - 00195584 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll

2011-08-15 04:23 - 2011-08-15 04:23 - 00062464 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll

2011-11-24 22:28 - 2011-11-24 22:28 - 00484352 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll

2011-11-24 22:42 - 2011-11-24 22:42 - 00499976 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll

2011-11-24 22:26 - 2011-11-24 22:26 - 00013824 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll

2011-07-19 01:05 - 2011-07-19 01:05 - 14978048 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtWebKit4.dll

2011-07-19 01:04 - 2011-07-19 01:04 - 00317952 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\phonon4.dll

2011-08-15 05:17 - 2011-08-15 05:17 - 09224704 _____ () C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll

2014-02-21 15:16 - 2014-02-21 15:16 - 16265096 _____ () C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll

2014-03-04 07:28 - 2014-03-01 20:35 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll

2014-03-04 07:28 - 2014-03-01 20:35 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libglesv2.dll

2014-03-04 07:28 - 2014-03-01 20:35 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libegl.dll

2014-03-04 07:28 - 2014-03-01 20:35 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll

2014-03-04 07:28 - 2014-03-01 20:35 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll

2014-03-04 07:28 - 2014-03-01 20:35 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

AlternateDataStreams: C:\Program Files (x86)\Lock Poker:MID

AlternateDataStreams: C:\Program Files (x86)\PIVCAKE:MID

 

==================== Safe Mode (whitelisted) ===================

 

 

==================== Disabled items from MSCONFIG ==============

 

 

==================== Faulty Device Manager Devices =============

 

Name: Cisco Systems VPN Adapter for 64-bit Windows

Description: Cisco Systems VPN Adapter for 64-bit Windows

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Cisco Systems

Service: CVirtA

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (03/06/2014 06:00:08 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5007

 

Error: (03/06/2014 06:00:08 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 5007

 

Error: (03/06/2014 06:00:08 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (03/06/2014 06:00:07 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 4009

 

Error: (03/06/2014 06:00:07 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 4009

 

Error: (03/06/2014 06:00:07 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (03/06/2014 06:00:06 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 3010

 

Error: (03/06/2014 06:00:06 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 3010

 

Error: (03/06/2014 06:00:06 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (03/06/2014 06:00:05 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 2012

 

 

System errors:

=============

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The WLAN AutoConfig service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

 

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The Desktop Window Manager Session Manager service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

 

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The Distributed Link Tracking Client service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

 

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The Superfetch service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

 

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The Program Compatibility Assistant Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

 

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The Network Connections service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 100 milliseconds: Restart the service.

 

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The PnP-X IP Bus Enumerator service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

 

Error: (03/06/2014 07:47:57 AM) (Source: Service Control Manager) (User: )

Description: The Windows Audio Endpoint Builder service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

 

Error: (03/06/2014 07:15:19 AM) (Source: Service Control Manager) (User: )

Description: The NVIDIA Display Driver Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (03/05/2014 10:20:21 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

 

Microsoft Office Sessions:

=========================

Error: (03/06/2014 06:00:08 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5007

 

Error: (03/06/2014 06:00:08 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 5007

 

Error: (03/06/2014 06:00:08 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (03/06/2014 06:00:07 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 4009

 

Error: (03/06/2014 06:00:07 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 4009

 

Error: (03/06/2014 06:00:07 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (03/06/2014 06:00:06 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 3010

 

Error: (03/06/2014 06:00:06 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 3010

 

Error: (03/06/2014 06:00:06 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (03/06/2014 06:00:05 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 2012

 

 

==================== Memory info =========================== 

 

Percentage of memory in use: 28%

Total physical RAM: 16352.11 MB

Available physical RAM: 11613.16 MB

Total Pagefile: 32702.39 MB

Available Pagefile: 26391.93 MB

Total Virtual: 8192 MB

Available Virtual: 8191.81 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:676.83 GB) (Free:567.59 GB) NTFS

Drive d: (2ndHDD) (Fixed) (Total:698.64 GB) (Free:698.53 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (Size: 699 GB) (Disk ID: CD24A570)

 

Partition: GPT Partition Type.

 

========================================================

Disk: 1 (Size: 7 GB) (Disk ID: 74F02DEA)

Partition 1: (Not Active) - (Size=7 GB) - (Type=73)

 

========================================================

Disk: 2 (Size: 699 GB) (Disk ID: 92CDA70E)

Partition 1: (Not Active) - (Size=699 GB) - (Type=07 NTFS)

 

==================== End Of Log ============================

Link to post
Share on other sites

  • Root Admin

I don't see anything obvious in these logs but the Event Logs it recorded show that something is certainly causing a crash to other services which can cause all sorts of problems.

 

It may not be an infection but probably best to check it our further just to make sure.

 

I would suggest following the advice from the topic here Available Assistance for Possibly Infected Computers and having one of the Experts assist you with looking into your issue.


Thanks

Link to post
Share on other sites

  • Root Admin

There is no membership and no cost.  Basically all you have to do is post the requested logs in that forum and wait - someone will take your topic and assist you with fixing it if at all possible.

 

Again, there is no cost or obligation to pay for anything.  We do offer our program Malwarebytes Anti-Malware PRO to help prevent infections if interested but you do not need to purchase it to get help with cleaning your computer of an infection.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.