Jump to content

Can not connect to update server

Afterburner83
 Share

Recommended Posts

1PW

1PW

Posted
Posted

Hello Afterburner83 and :welcome:

Your attached diagnostic report file indicates a needed reboot was not performed when required.

 

Please consider starting here and include the necessary reboots:

Please let us know, in a reply to this thread, if the above steps have helped you with your issue.

Thank You. :)

Link to post
Share on other sites
Afterburner83

Afterburner83

Posted
  • Author
Posted

Hi thank you for getting bk to me, It has not worked and I am now posting the following txt. Files

 

 

frst.txt:-

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:21-06-2014 01
Ran by sturn_000 (administrator) on TURNER on 22-06-2014 13:02:02
Running from C:\Users\sturn_000\Downloads
Platform: Microsoft Windows 8.1 Pro (X86) OS Language: English (United Kingdom)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Internet Helper) C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Western Digital Technologies, Inc.) C:\Windows\System32\WDBtnMgr.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2299176 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-04-03] (DivX, LLC)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [internet Helper Anti-phishing] => C:\ProgramData\Internet Helper Anti-phishing\internetHelper_antiphishing.exe [235072 2013-05-14] (Internet Helper)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [APVXDWIN] => C:\Program Files\Panda Security\Panda Internet Security 2013\APVXDWIN.EXE [1038192 2012-12-12] (Panda Security, S.L.)
HKLM\...\Run: [sCANINICIO] => C:\Program Files\Panda Security\Panda Internet Security 2013\Inicio.exe [70432 2012-11-08] (Panda Security, S.L.)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2013-12-22] (RealNetworks, Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [WD Button Manager] => C:\WINDOWS\SYSTEM32\WDBtnMgr.exe [143360 2014-02-09] (Western Digital Technologies, Inc.)
HKLM\...\Run: [setIcon] => \Program Files\WDC\SetIcon.exe [42496 2004-04-28] (Standard Microsystems Corp.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5537136 2013-11-02] (Western Digital Technologies, Inc.)
HKLM\...\Run: [Onboard] => C:\Program Files\Western Digital\WD SmartWare\WDSmartWare.exe [3167088 2013-11-02] (Western Digital Technologies, Inc.)
HKLM\...\Run: [DVD or CD Sharing] => C:\Program Files\DVD or CD Sharing\ODSAgent.exe [488760 2010-03-31] (Apple Inc.)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [337432 2014-02-03] (Power Software Ltd)
Winlogon\Notify\avldr: C:\WINDOWS\SYSTEM32\avldr.dll (On-Access Anti-Malware Scanner Sync)
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\Run: [HP Deskjet 3050 J610 series (NET)] => C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\Run: [TomTomHOME.exe] => C:\\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-08-27] (TomTom)
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\Run: [steam] => C:\Program Files\Steam\Steam.exe [1821888 2014-02-25] (Valve Corporation)
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\MountPoints2: {541d6034-75e1-11e3-b01b-ec9a74493342} - "G:\setup.exe" 
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\MountPoints2: {b913aa74-c2f3-11e3-b04b-806e6f6e6963} - "F:\Autorun.exe" 
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\MountPoints2: {dbfdd2ae-a7d1-11e3-b040-ec9a74493342} - "G:\setup.exe" 
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\MountPoints2: {dbfdd36c-a7d1-11e3-b040-ec9a74493342} - "H:\Autorun.exe" 
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\MountPoints2: {e73b24a7-b91f-11e3-b045-ec9a74493342} - "G:\Startme.exe" 
HKU\S-1-5-21-2832039846-180994725-1788798635-1006\...\MountPoints2: {ea1ef1af-a7a9-11e3-b03f-ec9a74493342} - "H:\Autorun.exe" 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FastMediaConverter.lnk
ShortcutTarget: FastMediaConverter.lnk -> C:\Program Files\FastMediaConverter\FastMediaConverterApp.exe (No File)
Startup: C:\Users\sturn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Deskjet 3050 J610 series (Network).lnk
ShortcutTarget: Monitor Ink Alerts - HP Deskjet 3050 J610 series (Network).lnk -> C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\sturn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\sturn_001\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BBC iPlayer Desktop.lnk
ShortcutTarget: BBC iPlayer Desktop.lnk -> C:\Program Files\BBC iPlayer Desktop\BBC iPlayer Desktop.exe (No File)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
 
==================== Internet (Whitelisted) ====================
 
ProxyServer: http=127.0.0.1:8888;https=127.0.0.1:8888
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.uk.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4911DD19593CCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} 
Winsock: Catalog5 07 C:\Windows\system32\wlidnsp.dll [49664] (Microsoft Corporation)
Winsock: Catalog5 08 C:\Windows\system32\wlidnsp.dll [49664] (Microsoft Corporation)
Hosts: 74.208.10.249 gs.apple.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
 
FireFox:
========
FF ProfilePath: C:\Users\sturn_000\AppData\Roaming\Mozilla\Firefox\Profiles\hqkzcjwk.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @Nero.com/KM - C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin: @nielsen/FirefoxTracker - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll No File
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: sony.com/MediaGoDetector - C:\Program Files\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF user.js: detected! => C:\Users\sturn_000\AppData\Roaming\Mozilla\Firefox\Profiles\hqkzcjwk.default\user.js
FF SearchPlugin: C:\Users\sturn_000\AppData\Roaming\Mozilla\Firefox\Profiles\hqkzcjwk.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\sturn_000\AppData\Roaming\Mozilla\Firefox\Profiles\hqkzcjwk.default\searchplugins\Web Search.xml
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-12-22]
FF HKLM\...\Firefox\Extensions: [netsight@nielsen.com] - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\netsight@nielsen.xpi
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-12-22]
FF HKCU\...\Firefox\Extensions: [{586A6831-1198-48F5-9D2D-79B4664F0CE6}] - C:\Program Files\LyricsWatch\128.xpi
FF HKCU\...\Firefox\Extensions: [wcapturex@deskperience.com] - C:\Program Files\KingTranslate\WCaptureMoz
 
Chrome: 
=======
CHR HomePage: 
CHR DefaultSearchKeyword: google.co.uk
CHR Extension: (Bob Marley) - C:\Users\sturn_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\alpnhingmddeadgmgjbfefmaanaeifak [2014-02-06]
CHR Extension: (RealDownloader) - C:\Users\sturn_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-12-22]
CHR Extension: (Google Wallet) - C:\Users\sturn_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM\...\Chrome\Extension: [akmegfnobiiokgogbedihgolimahonkj] - C:\Program Files\LyricsWatch\128.crx [2013-08-23]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [mjdepfkicdcciagbigfcmdhknnoaaegf] - C:\Program Files\KingTranslate\wcxChrome.crx [2013-08-14]
 
========================== Services (Whitelisted) =================
 
S4 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-22] (Freemake) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S4 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [762192 2013-07-18] (Nero AG)
S4 Panda Software Controller; C:\Program Files\Panda Security\Panda Internet Security 2013\PsCtrls.exe [177440 2012-11-19] (Panda Security, S.L.)
S4 PAVFNSVR; C:\Program Files\Panda Security\Panda Internet Security 2013\PavFnSvr.exe [202016 2012-09-21] (Panda Security, S.L.)
S4 PAVSRV; C:\Program Files\Panda Security\Panda Internet Security 2013\pavsrvx86.exe [313664 2011-04-13] (Panda Security, S.L.)
S4 PSHost; c:\program files\panda security\panda internet security 2013\firewall\PSHOST.EXE [226560 2009-11-26] (Panda Security International)
S4 PSIMSVC; C:\Program Files\Panda Security\Panda Internet Security 2013\PsImSvc.exe [108288 2008-06-19] (Panda Security S.L.)
S4 PskSvcRetail; C:\Program Files\Panda Security\Panda Internet Security 2013\PskSvc.exe [28992 2010-08-16] (Panda Security, S.L.)
S4 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S4 RetroWDSvc; C:\Program Files\Dantz\Retrospect\wdsvc.exe [46592 2003-12-11] (Dantz Development Corporation) [File not signed]
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [105472 2013-08-22] (Microsoft Corporation)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
S4 TomTomHOMEService; C:\TomTom HOME 2\TomTomHOMEService.exe [93072 2013-08-27] (TomTom)
S4 TPSrv; C:\Program Files\Panda Security\Panda Internet Security 2013\TPSrv.exe [156960 2012-11-16] (Panda Security, S.L.)
S4 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279784 2014-03-24] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [20992 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22224 2014-03-24] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1210368 2014-04-03] (Microsoft Corporation)
S2 ICM_UpdaterService; C:\Program Files\SAMSUNG\Samsung Networking Wizard\ICM_Service.exe [X]
S3 MozillaMaintenance; "C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" [X]
 
==================== Drivers (Whitelisted) ====================
 
R3 ACPIVPC; C:\WINDOWS\System32\drivers\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R2 AmFSM; C:\WINDOWS\System32\DRIVERS\amm8660.sys [59656 2012-03-26] (Panda Security, S.L.)
S3 Apowersoft_AudioDevice; C:\WINDOWS\system32\drivers\Apowersoft_AudioDevice.sys [26032 2013-06-02] (Wondershare)
R2 APPFLT; C:\WINDOWS\system32\Drivers\APPFLT.SYS [83528 2011-01-31] (Panda Security, S.L.)
S3 awUSB; C:\WINDOWS\System32\drivers\USBDrv.sys [13824 2014-03-09] (Scott)
R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [25600 2014-05-02] (Microsoft Corporation)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63l.sys [4715008 2013-07-01] (Broadcom Corporation)
R2 ComFiltr; C:\WINDOWS\system32\DRIVERS\COMFiltr.sys [13880 2013-10-28] ()
R2 DSAFLT; C:\WINDOWS\system32\Drivers\DSAFLT.SYS [53256 2009-09-25] (Panda Security, S.L.)
R2 FNETMON; C:\WINDOWS\system32\Drivers\fnetmon.SYS [22024 2009-09-25] (Panda Security, S.L.)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R2 IDSFLT; C:\WINDOWS\system32\Drivers\IDSFLT.SYS [193864 2010-09-09] (Panda Security, S.L.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [110296 2014-06-22] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R2 NETFLTDI; C:\WINDOWS\system32\Drivers\NETFLTDI.SYS [159112 2009-09-25] (Panda Security, S.L.)
R3 NETIMFLT01060044; C:\WINDOWS\system32\DRIVERS\neti1644.sys [201032 2010-09-01] (Panda Security, S.L.)
R0 pavboot; C:\WINDOWS\System32\Drivers\pavboot.sys [26696 2010-06-22] (Panda Security, S.L.)
S3 pneteth; C:\WINDOWS\system32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.)
S3 PSKMAD; C:\WINDOWS\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [204288 2013-04-29] (QUALCOMM Incorporated)
S3 RimUsb; C:\WINDOWS\System32\Drivers\RimUsb.sys [22656 2007-05-14] (Research In Motion Limited) [File not signed]
S3 RSPCIESTOR; C:\WINDOWS\system32\DRIVERS\RtsPStor.sys [256616 2012-03-29] (Realtek Semiconductor Corp.)
S3 RTWlanE; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2564312 2013-07-12] (Realtek Semiconductor Corporation                           )
R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [114408 2014-02-03] (Power Software Ltd)
R3 udsbus; C:\WINDOWS\System32\drivers\udsbus.sys [13184 2009-10-15] (SysNucleus)
S3 udsstub; C:\WINDOWS\System32\drivers\udsstub.sys [16000 2009-10-15] (SysNucleus) [File not signed]
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2013-03-18] (Apple, Inc.) [File not signed]
S3 usbUDisc; C:\WINDOWS\System32\drivers\USBDrv.sys [13824 2014-03-09] (Scott)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [92504 2014-03-24] (Microsoft Corporation)
R2 WNMFLT; C:\WINDOWS\system32\Drivers\WNMFLT.SYS [46856 2009-09-25] (Panda Security, S.L.)
R0 Wof; C:\WINDOWS\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
S3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation)
S2 AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [X]
S3 AvFlt; \SystemRoot\system32\drivers\av5flt.sys [X]
S3 mcdbus; \SystemRoot\System32\drivers\mcdbus.sys [X]
S3 PavSRK.sys; \??\C:\WINDOWS\system32\PavSRK.sys [X]
S3 PavTPK.sys; \??\C:\WINDOWS\system32\PavTPK.sys [X]
S3 pohci13F; \??\C:\Users\Lloyd\AppData\Local\Temp\pohci13F.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-06-22 13:02 - 2014-06-22 13:02 - 00023433 _____ () C:\Users\sturn_000\Downloads\FRST.txt
2014-06-22 13:01 - 2014-06-22 13:02 - 00000000 ____D () C:\FRST
2014-06-22 13:01 - 2014-06-22 13:01 - 01070592 _____ (Farbar) C:\Users\sturn_000\Downloads\FRST.exe
2014-06-22 12:59 - 2014-06-22 12:59 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-06-22 12:59 - 2014-06-22 12:59 - 00001072 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-22 12:59 - 2014-06-22 12:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-22 12:58 - 2014-06-22 12:58 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-06-22 12:58 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-06-22 12:58 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-06-22 12:58 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-06-22 12:55 - 2014-06-22 12:55 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (4).exe
2014-06-22 12:49 - 2014-06-22 12:49 - 00315392 _____ (Malwarebytes Corporation) C:\Users\sturn_000\Downloads\mbam-clean-2.0.2.0 (1).exe
2014-06-22 12:03 - 2014-06-22 12:05 - 00395800 _____ () C:\WINDOWS\Minidump\062214-29921-01.dmp
2014-06-21 21:36 - 2014-06-21 21:36 - 00338432 _____ (Propellerhead Software AB) C:\WINDOWS\system32\REX Shared Library.dll
2014-06-21 21:28 - 2014-06-21 21:28 - 00000000 ____D () C:\Users\sturn_000\Desktop\Bitwig Studio v1.0.4 WiN OSX LINUX Incl. Keygen [deepstatus][h33t][1337x][flashtorrents]
2014-06-21 21:28 - 2014-06-21 21:28 - 00000000 ____D () C:\Users\sturn_000\Desktop\[o0].REASON.SOUND
2014-06-21 21:26 - 2014-06-21 21:27 - 00150701 _____ () C:\Users\sturn_000\Downloads\[kickass.to]reason.refills.soundbanks.xxl.pack.torrent.loaded
2014-06-21 21:23 - 2014-06-21 21:36 - 00000000 ____D () C:\ProgramData\Propellerhead Software
2014-06-21 21:22 - 2014-06-21 21:22 - 00001043 _____ () C:\Users\Public\Desktop\Reason.lnk
2014-06-21 21:22 - 2014-06-21 21:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Propellerhead
2014-06-21 21:20 - 2014-06-21 21:20 - 00000000 ____D () C:\Program Files\Propellerhead
2014-06-21 20:31 - 2014-06-21 20:31 - 00000392 _____ () C:\WINDOWS\Tasks\ReclaimerInstall_sturn_000.job
2014-06-21 19:36 - 2014-06-21 19:36 - 00000977 _____ () C:\Users\Public\Desktop\PowerISO.lnk
2014-06-21 19:36 - 2014-06-21 19:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2014-06-21 19:36 - 2014-06-21 19:36 - 00000000 ____D () C:\Program Files\PowerISO
2014-06-21 19:34 - 2014-06-21 19:34 - 00001299 _____ () C:\Users\sturn_000\Downloads\[kickass.to]poweriso.v5.9.final.crack.universal.patch.kindly.torrent.loaded
2014-06-21 19:34 - 2014-06-21 19:34 - 00000000 ____D () C:\Users\sturn_000\Desktop\PowerISO 5.9
2014-06-21 19:04 - 2014-06-21 21:21 - 00000000 ____D () C:\Users\sturn_000\Desktop\Propellerhead Reason 5
2014-06-21 19:04 - 2014-06-21 19:04 - 00013336 _____ () C:\Users\sturn_000\Downloads\3EEEA70DC648298F200BF3971A4E4672DBAAE6F9.torrent.loaded
2014-06-21 14:12 - 2014-06-21 14:14 - 479886644 _____ () C:\Users\sturn_000\Desktop\butt fuk.wav
2014-06-21 14:11 - 2014-06-21 14:11 - 00000000 ____D () C:\Users\sturn_000\Desktop\butt fuk
2014-06-21 14:05 - 2014-06-21 14:07 - 479886644 _____ () C:\Users\sturn_000\Desktop\Afterburner Mix up june 2014.wav
2014-06-21 14:03 - 2014-06-21 14:03 - 06727988 _____ () C:\Users\sturn_000\Desktop\Afterburner Mix up june 2014 redone.wav
2014-06-21 11:39 - 2014-06-21 18:56 - 00000000 ____D () C:\Users\sturn_000\Desktop\Audio Analysis Cache
2014-06-21 11:39 - 2014-06-21 11:46 - 00000000 ____D () C:\Users\sturn_000\Desktop\Afterburner Mix up june 2014
2014-06-21 06:54 - 2014-06-21 06:54 - 00000343 _____ () C:\Users\sturn_000\Downloads\UKF Please Confirm Subscription.zip
2014-06-21 06:51 - 2014-06-21 06:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-consumer-2.0.2.1012.exe
2014-06-21 06:27 - 2014-06-21 06:28 - 00039286 _____ () C:\Users\sturn_000\Desktop\CheckResults.txt
2014-06-21 06:27 - 2014-06-21 06:27 - 01673896 _____ (Malwarebytes Corporation) C:\Users\sturn_000\Downloads\mbam-check-2.1.0.0002.exe
2014-06-21 06:21 - 2014-06-21 06:21 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (3).exe
2014-06-20 23:46 - 2014-06-20 23:46 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (2).exe
2014-06-19 19:35 - 2014-05-14 23:47 - 03886080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-06-19 19:35 - 2014-05-13 06:21 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-06-19 19:35 - 2014-05-13 04:59 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-06-19 19:35 - 2014-05-13 04:43 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-06-19 19:35 - 2014-05-13 04:33 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-19 19:35 - 2014-05-13 04:31 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-06-19 19:35 - 2014-05-13 04:04 - 00875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-06-19 19:35 - 2014-05-05 05:57 - 00382296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-06-19 19:35 - 2014-05-05 05:57 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-06-19 19:35 - 2014-05-05 05:57 - 00072536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-06-19 19:35 - 2014-05-05 05:57 - 00023384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-06-19 19:35 - 2014-05-03 10:20 - 01450880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-06-19 19:35 - 2014-05-03 07:36 - 03497472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-06-19 19:35 - 2014-05-03 07:35 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-06-19 19:35 - 2014-05-03 05:57 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-06-19 19:35 - 2014-05-03 05:46 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2014-06-19 19:35 - 2014-05-03 05:37 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2014-06-19 19:35 - 2014-05-03 05:37 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedyn.dll
2014-06-19 19:35 - 2014-05-03 04:27 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-06-19 19:35 - 2014-05-03 00:26 - 00050745 _____ () C:\WINDOWS\system32\srms.dat
2014-06-19 19:35 - 2014-05-01 12:05 - 00049552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-06-19 19:35 - 2014-05-01 09:24 - 00560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-06-19 19:35 - 2014-05-01 06:46 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-06-19 19:35 - 2014-05-01 06:35 - 02818048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-06-19 19:35 - 2014-04-30 07:10 - 00735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-06-19 19:35 - 2014-04-30 06:32 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys
2014-06-19 19:35 - 2014-04-30 06:29 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-06-19 19:35 - 2014-04-30 06:29 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2014-06-19 19:35 - 2014-04-30 05:48 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-06-19 19:35 - 2014-04-30 04:46 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-06-19 19:35 - 2014-04-30 04:46 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-06-19 19:35 - 2014-04-30 04:46 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-06-19 19:35 - 2014-04-30 04:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-06-19 19:35 - 2014-04-30 04:40 - 01089536 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-06-19 19:35 - 2014-04-30 04:38 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-06-19 19:35 - 2014-04-30 04:25 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-06-19 19:35 - 2014-04-30 04:15 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2014-06-19 19:35 - 2014-04-28 23:40 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-06-19 19:35 - 2014-04-26 21:14 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-06-19 19:35 - 2014-04-26 17:59 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2014-06-19 19:35 - 2014-04-26 17:43 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-06-19 19:35 - 2014-04-26 17:31 - 00304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2014-06-19 19:35 - 2014-04-26 17:07 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-06-19 19:35 - 2014-04-14 09:08 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-06-19 19:35 - 2014-04-14 06:18 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2014-06-19 19:35 - 2014-04-09 06:20 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-06-19 18:49 - 2014-06-19 18:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-19 18:47 - 2014-06-19 18:48 - 17291904 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam_premium.exe
2014-06-19 18:41 - 2014-06-19 18:41 - 00315392 _____ (Malwarebytes Corporation) C:\Users\sturn_000\Downloads\mbam-clean-2.0.2.0.exe
2014-06-19 18:23 - 2014-06-19 18:24 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-06-19 18:23 - 2014-06-19 18:23 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-19 10:51 - 2014-06-19 10:51 - 28597688 _____ (Sony Mobile Communications ) C:\Users\sturn_000\Downloads\Sony PC Companion_Web (1).exe
2014-06-19 10:51 - 2014-06-19 10:51 - 00002058 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-06-19 10:51 - 2014-06-19 10:51 - 00000000 ____D () C:\ProgramData\Sony
2014-06-19 10:50 - 2014-06-19 10:50 - 28597688 _____ (Sony Mobile Communications ) C:\Users\sturn_000\Downloads\Sony PC Companion_Web.exe
2014-06-19 10:48 - 2014-06-19 10:48 - 00000060 _____ () C:\Users\sturn_000\AppData\Roaming\mbam.context.scan
2014-06-19 10:39 - 2014-06-19 10:40 - 27043000 _____ (Sony Ericsson ) C:\Users\sturn_000\Downloads\PC_Companion_2.02.015_Web (1).exe
2014-06-19 10:38 - 2014-06-19 10:39 - 27043000 _____ (Sony Ericsson ) C:\Users\sturn_000\Downloads\PC_Companion_2.02.015_Web.exe
2014-06-19 09:17 - 2014-06-19 09:17 - 51843712 _____ () C:\Users\sturn_000\Downloads\Sony_Mobile_Update_Engine_Setup-2.14.8.201405281228 (1).exe
2014-06-19 09:05 - 2014-06-19 09:06 - 00000000 ____D () C:\Program Files\Sony Media Go Install
2014-06-19 09:03 - 2014-06-19 09:04 - 92773912 _____ (Sony Network Entertainment International LLC) C:\Users\sturn_000\Downloads\mediago_setup.exe
2014-06-19 09:02 - 2014-06-19 09:02 - 51843712 _____ () C:\Users\sturn_000\Downloads\Sony_Mobile_Update_Engine_Setup-2.14.8.201405281228.exe
2014-06-18 14:59 - 2014-05-31 06:13 - 00703992 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-06-18 14:59 - 2014-05-31 06:13 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-06-18 14:54 - 2014-06-18 14:54 - 00385192 _____ () C:\WINDOWS\Minidump\061814-27578-01.dmp
2014-06-14 19:01 - 2014-05-09 00:08 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-06-13 11:02 - 2014-05-30 10:18 - 17271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-06-13 11:02 - 2014-05-30 09:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-06-13 11:02 - 2014-05-30 09:38 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-06-13 11:02 - 2014-05-30 09:27 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-06-13 11:02 - 2014-05-30 09:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-06-13 11:02 - 2014-05-30 09:04 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-06-13 11:02 - 2014-05-30 09:02 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-06-13 11:02 - 2014-05-30 08:57 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-06-13 11:02 - 2014-05-30 08:56 - 04244992 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-06-13 11:02 - 2014-05-30 08:54 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-06-13 11:02 - 2014-05-30 08:49 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-06-13 11:02 - 2014-05-30 08:40 - 11725312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-06-13 11:02 - 2014-05-30 08:21 - 01790976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-06-13 11:02 - 2014-05-30 08:15 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-06-13 11:02 - 2014-05-30 08:13 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-06-13 11:02 - 2014-05-19 06:33 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe
2014-06-13 11:02 - 2014-05-19 06:23 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-06-13 11:02 - 2014-05-10 04:22 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-06-13 11:02 - 2014-05-05 05:02 - 02826240 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-06-13 11:02 - 2014-05-03 07:36 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-06-13 11:02 - 2014-05-03 07:12 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2014-06-13 11:02 - 2014-05-03 05:07 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-13 11:02 - 2014-05-03 04:38 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-06-13 11:02 - 2014-05-01 12:00 - 02257608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-06-13 11:02 - 2014-05-01 12:00 - 00046512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2014-06-13 11:02 - 2014-05-01 07:51 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-06-13 11:02 - 2014-05-01 07:42 - 02045440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-06-13 11:02 - 2014-05-01 06:31 - 02366976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2014-06-13 11:02 - 2014-04-30 11:10 - 01090296 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-06-13 11:02 - 2014-04-30 04:47 - 01509888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2014-06-13 11:02 - 2014-04-30 04:43 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2014-06-13 11:02 - 2014-04-18 09:58 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-06-13 11:02 - 2014-04-18 08:51 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-06-13 11:02 - 2014-04-18 08:49 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-13 11:02 - 2014-04-06 16:22 - 18755672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-06-13 11:02 - 2014-04-06 16:16 - 00669856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-13 11:02 - 2014-04-06 12:54 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-13 11:02 - 2014-04-06 11:37 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-13 11:02 - 2014-04-06 11:36 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-06-13 11:02 - 2014-04-03 04:46 - 01871704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-06-13 11:02 - 2014-04-03 04:46 - 00286040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-06-13 11:02 - 2014-03-31 04:34 - 05786968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-06-13 11:02 - 2014-03-30 23:37 - 01167360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-06-13 11:02 - 2014-03-20 00:33 - 05774848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-06-13 11:02 - 2014-03-19 05:14 - 02130432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-13 11:02 - 2014-03-18 05:52 - 05104640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-06-13 11:01 - 2014-06-13 11:01 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-06-13 11:01 - 2014-06-13 11:01 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-13 11:01 - 2014-04-18 14:43 - 00031064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-06-13 11:01 - 2014-04-18 14:29 - 01200288 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-06-13 11:01 - 2014-04-18 09:51 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2014-06-13 11:01 - 2014-04-18 09:01 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-06-13 11:01 - 2014-04-14 09:01 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-13 11:01 - 2014-04-11 05:23 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-06-13 11:01 - 2014-04-11 04:27 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-06-13 11:01 - 2014-04-09 11:47 - 00294744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-06-13 11:01 - 2014-04-09 06:44 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2014-06-13 11:01 - 2014-04-09 04:22 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-06-13 11:01 - 2014-04-08 00:47 - 00502104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-06-13 11:01 - 2014-04-06 16:27 - 00311128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-06-13 11:01 - 2014-04-06 16:27 - 00240472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2014-06-13 11:01 - 2014-04-06 16:23 - 00098584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-06-13 11:01 - 2014-04-06 16:22 - 00178184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-13 11:01 - 2014-04-06 16:18 - 00271192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-06-13 11:01 - 2014-04-06 16:16 - 01209616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 01159520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 00518544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 00406504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-13 11:01 - 2014-04-06 16:16 - 00194752 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-06-13 11:01 - 2014-04-06 13:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-06-13 11:01 - 2014-04-06 13:00 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2014-06-13 11:01 - 2014-04-06 12:47 - 00264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2014-06-13 11:01 - 2014-04-06 12:40 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2014-06-13 11:01 - 2014-04-06 11:58 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2014-06-13 11:01 - 2014-04-06 11:55 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-13 11:01 - 2014-04-06 11:44 - 00623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-06-13 11:01 - 2014-04-06 10:59 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-13 11:01 - 2014-04-03 05:03 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-06-13 11:01 - 2014-04-03 05:03 - 00111528 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2014-06-13 11:01 - 2014-04-03 03:44 - 01210368 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-06-13 11:01 - 2014-04-03 03:24 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-06-13 11:01 - 2014-04-03 03:23 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlscsp.dll
2014-06-13 11:01 - 2014-04-01 06:09 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-06-13 11:01 - 2014-03-31 00:26 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-13 11:01 - 2014-03-31 00:13 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-13 11:01 - 2014-03-30 23:35 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-06-13 11:01 - 2014-03-28 10:04 - 00328984 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2014-06-13 11:01 - 2014-03-27 06:21 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-06-13 11:01 - 2014-03-27 05:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2014-06-13 11:01 - 2014-03-27 05:19 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-06-13 11:01 - 2014-03-27 04:22 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2014-06-13 11:01 - 2014-03-27 04:03 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-06-13 11:01 - 2014-03-27 03:59 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-06-13 11:01 - 2014-03-24 23:57 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-06-13 11:01 - 2014-03-21 04:46 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2014-06-13 11:01 - 2014-03-20 02:20 - 00229344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-13 11:01 - 2014-03-20 00:38 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2014-06-13 11:01 - 2014-03-19 08:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-06-13 11:01 - 2014-03-19 08:09 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-06-13 11:01 - 2014-03-19 06:56 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-06-13 11:01 - 2014-03-19 06:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-06-13 11:01 - 2014-03-19 05:51 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-06-13 11:01 - 2014-03-19 05:47 - 01309184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-06-13 11:01 - 2014-03-19 05:23 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-13 11:01 - 2014-03-18 08:22 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-06-13 11:01 - 2014-03-17 05:11 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-13 11:01 - 2014-03-17 03:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-06-13 11:01 - 2014-03-14 07:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-13 11:01 - 2014-03-06 11:37 - 00264536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-06-13 10:55 - 2014-06-13 10:55 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-06-07 18:51 - 2014-06-07 18:51 - 00381856 _____ () C:\WINDOWS\Minidump\060714-20203-01.dmp
2014-06-01 19:10 - 2014-06-01 19:11 - 00150048 _____ () C:\WINDOWS\Minidump\060114-16890-01.dmp
2014-06-01 18:59 - 2014-06-01 18:59 - 00150048 _____ () C:\WINDOWS\Minidump\060114-16937-01.dmp
2014-06-01 15:49 - 2014-06-01 15:51 - 00000000 ____D () C:\Users\sturn_000\Documents\Freemake
2014-06-01 15:49 - 2014-06-01 15:50 - 00000000 ____D () C:\ProgramData\Freemake
2014-06-01 15:49 - 2014-06-01 15:49 - 00001294 _____ () C:\Users\Public\Desktop\Freemake Audio Converter.lnk
2014-06-01 15:49 - 2014-06-01 15:49 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-06-01 15:49 - 2014-06-01 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2014-06-01 15:46 - 2014-06-01 15:49 - 00000000 ____D () C:\Program Files\Freemake
2014-06-01 15:45 - 2014-06-01 15:45 - 01318408 _____ (Ellora Assets Corporation ) C:\Users\sturn_000\Downloads\FreemakeAudioConverterSetup.exe
2014-05-31 21:21 - 2014-06-21 13:58 - 00000000 ____D () C:\Users\sturn_000\Desktop\Afterburner023
2014-05-27 22:04 - 2014-05-27 22:04 - 00000000 ____D () C:\Users\sturn_000\Desktop\tuneeee - Copy
2014-05-27 19:28 - 2014-05-27 19:29 - 25756225 _____ () C:\Users\sturn_000\Downloads\ITCH_2.2.2_Win.zip
2014-05-27 19:15 - 2014-05-27 19:15 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\Serato
2014-05-27 18:54 - 2014-05-27 18:58 - 139361759 _____ () C:\Users\sturn_000\Downloads\Serato DJ 1.6.3 (1).zip
2014-05-27 18:50 - 2014-05-27 18:54 - 139361759 _____ () C:\Users\sturn_000\Downloads\Serato DJ 1.6.3.zip
2014-05-27 17:18 - 2014-05-27 17:18 - 00021401 _____ () C:\Users\sturn_000\Downloads\Refund-Form.html
2014-05-26 23:07 - 2014-05-26 23:07 - 00001394 _____ () C:\Users\sturn_000\Untitled Master.wav
2014-05-26 23:07 - 2014-05-26 23:07 - 00001394 _____ () C:\Users\sturn_000\Untitled Drum Machine.wav
2014-05-26 22:16 - 2014-05-26 22:16 - 00002557 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitwig Studio 1.0.4.lnk
2014-05-26 22:16 - 2014-05-26 22:16 - 00000000 ____D () C:\Program Files\Bitwig Studio 1.0.4
2014-05-26 21:57 - 2014-05-26 21:57 - 00017422 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.4.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents (1).torrent.loaded
2014-05-26 21:45 - 2014-05-26 21:46 - 128040960 _____ () C:\Users\sturn_000\Downloads\Bitwig Studio 1.0.8.msi
2014-05-26 21:18 - 2014-05-26 21:18 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\Oracle
2014-05-26 21:16 - 2014-05-26 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-26 21:16 - 2014-04-14 20:13 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-05-26 21:16 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-05-26 21:16 - 2014-04-14 20:05 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-05-26 21:16 - 2014-04-14 20:04 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-05-26 21:15 - 2014-05-26 21:16 - 00004088 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-05-26 21:13 - 2014-05-26 21:13 - 00921512 _____ (Oracle Corporation) C:\Users\sturn_000\Downloads\chromeinstall-7u55.exe
2014-05-26 21:11 - 2014-05-26 21:11 - 00017422 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.4.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents.torrent.loaded
2014-05-26 21:11 - 2014-05-26 21:11 - 00017422 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.4.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents.torrent
2014-05-26 21:10 - 2014-05-26 21:10 - 00017385 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.3.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents.torrent.loaded
2014-05-26 20:40 - 2014-05-26 21:00 - 00000000 ____D () C:\Users\sturn_000\Documents\Bitwig Studio
2014-05-26 19:20 - 2014-05-26 21:30 - 00001315 _____ () C:\Users\sturn_000\registration-request.bwregrequest
2014-05-26 19:15 - 2014-06-21 21:47 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\Bitwig Studio
2014-05-26 18:36 - 2014-05-26 18:36 - 00349160 _____ () C:\Users\sturn_000\Downloads\MediaPlayerClassic.exe
2014-05-26 18:33 - 2014-05-26 18:48 - 00000000 ____D () C:\Program Files\VideoLAN
2014-05-26 18:31 - 2014-05-26 18:31 - 00942576 _____ () C:\Users\sturn_000\Downloads\install-flashplayer.exe
2014-05-26 18:07 - 2014-05-26 18:07 - 00000000 ____D () C:\Users\sturn_000\Downloads\Electro
2014-05-26 17:59 - 2014-05-26 18:00 - 00399304 _____ () C:\WINDOWS\Minidump\052614-30796-01.dmp
2014-05-25 22:59 - 2014-05-25 22:59 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\WorldofTanks
2014-05-25 22:49 - 2014-05-25 22:49 - 00001113 _____ () C:\Users\Public\Desktop\DivX Converter.lnk
2014-05-25 22:49 - 2014-05-25 22:49 - 00001048 _____ () C:\Users\Public\Desktop\DivX Player.lnk
2014-05-25 22:49 - 2014-05-25 22:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2014-05-25 22:49 - 2014-05-25 22:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirectVobSub
2014-05-25 22:49 - 2012-01-09 20:45 - 00178688 _____ () C:\WINDOWS\system32\unrar.dll
2014-05-25 22:48 - 2014-05-26 18:44 - 00000000 ____D () C:\Program Files\DSP-worx
2014-05-25 22:48 - 2014-05-25 22:49 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\LavFilters
2014-05-25 22:48 - 2014-05-25 22:49 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\CDXReader
2014-05-25 22:48 - 2014-05-25 22:49 - 00000000 ____D () C:\Program Files\Xvid
2014-05-25 22:48 - 2014-05-25 22:49 - 00000000 ____D () C:\Program Files\DirectVobSub
2014-05-25 22:48 - 2014-05-25 22:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
2014-05-25 22:48 - 2011-05-30 14:42 - 00240640 _____ () C:\WINDOWS\system32\xvidvfw.dll
2014-05-25 22:48 - 2011-05-23 10:52 - 00153088 _____ () C:\WINDOWS\system32\xvid.ax
2014-05-25 22:48 - 2011-05-23 08:46 - 00645632 _____ () C:\WINDOWS\system32\xvidcore.dll
2014-05-25 22:47 - 2014-05-25 22:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2014-05-25 22:47 - 2014-05-25 22:47 - 00000000 ____D () C:\Program Files\ffdshow
2014-05-25 22:47 - 2012-02-26 16:47 - 00079360 _____ () C:\WINDOWS\system32\ff_vfw.dll
2014-05-25 22:40 - 2014-05-25 22:40 - 01445348 _____ () C:\Users\sturn_000\Downloads\lame-3.99.5.tar.gz
 
==================== One Month Modified Files and Folders =======
 
2014-06-22 13:02 - 2014-06-22 13:02 - 00023433 _____ () C:\Users\sturn_000\Downloads\FRST.txt
2014-06-22 13:02 - 2014-06-22 13:01 - 00000000 ____D () C:\FRST
2014-06-22 13:02 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-06-22 13:01 - 2014-06-22 13:01 - 01070592 _____ (Farbar) C:\Users\sturn_000\Downloads\FRST.exe
2014-06-22 12:59 - 2014-06-22 12:59 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-06-22 12:59 - 2014-06-22 12:59 - 00001072 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-22 12:59 - 2014-06-22 12:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-22 12:58 - 2014-06-22 12:58 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-06-22 12:57 - 2013-10-18 22:34 - 01067970 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-22 12:56 - 2013-09-13 20:35 - 01469952 ___SH () C:\Users\sturn_000\Downloads\Thumbs.db
2014-06-22 12:55 - 2014-06-22 12:55 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (4).exe
2014-06-22 12:55 - 2013-07-10 18:43 - 00000000 ____D () C:\ProgramData\Internet Helper Anti-phishing
2014-06-22 12:54 - 2013-12-14 18:41 - 00002149 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-22 12:54 - 2013-12-14 18:40 - 00000902 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-22 12:54 - 2013-10-18 22:48 - 00000000 ___DO () C:\Users\sturn_000\SkyDrive
2014-06-22 12:52 - 2013-09-29 21:01 - 00313356 _____ () C:\WINDOWS\PFRO.log
2014-06-22 12:52 - 2013-08-22 08:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-22 12:49 - 2014-06-22 12:49 - 00315392 _____ (Malwarebytes Corporation) C:\Users\sturn_000\Downloads\mbam-clean-2.0.2.0 (1).exe
2014-06-22 12:40 - 2013-09-10 18:17 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-06-22 12:14 - 2013-06-03 20:46 - 00000360 _____ () C:\WINDOWS\Tasks\HP Photo Creations Communicator.job
2014-06-22 12:10 - 2013-12-14 18:40 - 00000906 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-22 12:05 - 2014-06-22 12:03 - 00395800 _____ () C:\WINDOWS\Minidump\062214-29921-01.dmp
2014-06-22 12:03 - 2013-10-22 22:00 - 00000000 ____D () C:\WINDOWS\Minidump
2014-06-22 12:03 - 2013-04-18 16:39 - 270828507 _____ () C:\WINDOWS\MEMORY.DMP
2014-06-21 22:21 - 2013-05-21 17:19 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\uTorrent
2014-06-21 21:47 - 2014-05-26 19:15 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\Bitwig Studio
2014-06-21 21:39 - 2014-02-06 22:34 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\Propellerhead Software
2014-06-21 21:36 - 2014-06-21 21:36 - 00338432 _____ (Propellerhead Software AB) C:\WINDOWS\system32\REX Shared Library.dll
2014-06-21 21:36 - 2014-06-21 21:23 - 00000000 ____D () C:\ProgramData\Propellerhead Software
2014-06-21 21:28 - 2014-06-21 21:28 - 00000000 ____D () C:\Users\sturn_000\Desktop\Bitwig Studio v1.0.4 WiN OSX LINUX Incl. Keygen [deepstatus][h33t][1337x][flashtorrents]
2014-06-21 21:28 - 2014-06-21 21:28 - 00000000 ____D () C:\Users\sturn_000\Desktop\[o0].REASON.SOUND
2014-06-21 21:27 - 2014-06-21 21:26 - 00150701 _____ () C:\Users\sturn_000\Downloads\[kickass.to]reason.refills.soundbanks.xxl.pack.torrent.loaded
2014-06-21 21:22 - 2014-06-21 21:22 - 00001043 _____ () C:\Users\Public\Desktop\Reason.lnk
2014-06-21 21:22 - 2014-06-21 21:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Propellerhead
2014-06-21 21:22 - 2013-05-20 21:52 - 01888256 ___SH () C:\Users\sturn_000\Desktop\Thumbs.db
2014-06-21 21:21 - 2014-06-21 19:04 - 00000000 ____D () C:\Users\sturn_000\Desktop\Propellerhead Reason 5
2014-06-21 21:20 - 2014-06-21 21:20 - 00000000 ____D () C:\Program Files\Propellerhead
2014-06-21 20:31 - 2014-06-21 20:31 - 00000392 _____ () C:\WINDOWS\Tasks\ReclaimerInstall_sturn_000.job
2014-06-21 19:36 - 2014-06-21 19:36 - 00000977 _____ () C:\Users\Public\Desktop\PowerISO.lnk
2014-06-21 19:36 - 2014-06-21 19:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2014-06-21 19:36 - 2014-06-21 19:36 - 00000000 ____D () C:\Program Files\PowerISO
2014-06-21 19:34 - 2014-06-21 19:34 - 00001299 _____ () C:\Users\sturn_000\Downloads\[kickass.to]poweriso.v5.9.final.crack.universal.patch.kindly.torrent.loaded
2014-06-21 19:34 - 2014-06-21 19:34 - 00000000 ____D () C:\Users\sturn_000\Desktop\PowerISO 5.9
2014-06-21 19:31 - 2014-02-09 23:39 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\Nero
2014-06-21 19:04 - 2014-06-21 19:04 - 00013336 _____ () C:\Users\sturn_000\Downloads\3EEEA70DC648298F200BF3971A4E4672DBAAE6F9.torrent.loaded
2014-06-21 18:56 - 2014-06-21 11:39 - 00000000 ____D () C:\Users\sturn_000\Desktop\Audio Analysis Cache
2014-06-21 14:14 - 2014-06-21 14:12 - 479886644 _____ () C:\Users\sturn_000\Desktop\butt fuk.wav
2014-06-21 14:11 - 2014-06-21 14:11 - 00000000 ____D () C:\Users\sturn_000\Desktop\butt fuk
2014-06-21 14:07 - 2014-06-21 14:05 - 479886644 _____ () C:\Users\sturn_000\Desktop\Afterburner Mix up june 2014.wav
2014-06-21 14:03 - 2014-06-21 14:03 - 06727988 _____ () C:\Users\sturn_000\Desktop\Afterburner Mix up june 2014 redone.wav
2014-06-21 13:58 - 2014-05-31 21:21 - 00000000 ____D () C:\Users\sturn_000\Desktop\Afterburner023
2014-06-21 11:46 - 2014-06-21 11:39 - 00000000 ____D () C:\Users\sturn_000\Desktop\Afterburner Mix up june 2014
2014-06-21 07:53 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-06-21 06:54 - 2014-06-21 06:54 - 00000343 _____ () C:\Users\sturn_000\Downloads\UKF Please Confirm Subscription.zip
2014-06-21 06:52 - 2014-06-21 06:51 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-consumer-2.0.2.1012.exe
2014-06-21 06:28 - 2014-06-21 06:27 - 00039286 _____ () C:\Users\sturn_000\Desktop\CheckResults.txt
2014-06-21 06:27 - 2014-06-21 06:27 - 01673896 _____ (Malwarebytes Corporation) C:\Users\sturn_000\Downloads\mbam-check-2.1.0.0002.exe
2014-06-21 06:21 - 2014-06-21 06:21 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (3).exe
2014-06-20 23:48 - 2013-10-18 22:30 - 00876080 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-20 23:46 - 2014-06-20 23:46 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (2).exe
2014-06-20 20:11 - 2014-02-22 20:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-06-20 11:15 - 2013-08-22 07:13 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-06-19 20:55 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\rescache
2014-06-19 19:42 - 2013-08-22 08:22 - 00369288 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-19 19:39 - 2013-10-18 22:15 - 00000000 ____D () C:\Users\sturn_000
2014-06-19 19:39 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-06-19 19:39 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-06-19 19:39 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\FileManager
2014-06-19 19:39 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\Camera
2014-06-19 19:36 - 2012-07-26 07:43 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-06-19 19:03 - 2013-09-04 11:03 - 00000000 ____D () C:\Users\sturn_000\Desktop\Richard Eaton
2014-06-19 18:49 - 2014-06-19 18:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-19 18:48 - 2014-06-19 18:47 - 17291904 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam_premium.exe
2014-06-19 18:41 - 2014-06-19 18:41 - 00315392 _____ (Malwarebytes Corporation) C:\Users\sturn_000\Downloads\mbam-clean-2.0.2.0.exe
2014-06-19 18:39 - 2013-12-17 21:09 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\CrashDumps
2014-06-19 18:24 - 2014-06-19 18:23 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-06-19 18:23 - 2014-06-19 18:23 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\sturn_000\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-19 10:53 - 2012-11-26 16:44 - 01092058 _____ () C:\WINDOWS\DPINST.LOG
2014-06-19 10:51 - 2014-06-19 10:51 - 28597688 _____ (Sony Mobile Communications ) C:\Users\sturn_000\Downloads\Sony PC Companion_Web (1).exe
2014-06-19 10:51 - 2014-06-19 10:51 - 00002058 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-06-19 10:51 - 2014-06-19 10:51 - 00000000 ____D () C:\ProgramData\Sony
2014-06-19 10:51 - 2012-11-26 16:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-06-19 10:51 - 2012-11-26 16:43 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-06-19 10:51 - 2012-11-26 16:43 - 00000000 ____D () C:\Program Files\Sony
2014-06-19 10:50 - 2014-06-19 10:50 - 28597688 _____ (Sony Mobile Communications ) C:\Users\sturn_000\Downloads\Sony PC Companion_Web.exe
2014-06-19 10:48 - 2014-06-19 10:48 - 00000060 _____ () C:\Users\sturn_000\AppData\Roaming\mbam.context.scan
2014-06-19 10:40 - 2014-06-19 10:39 - 27043000 _____ (Sony Ericsson ) C:\Users\sturn_000\Downloads\PC_Companion_2.02.015_Web (1).exe
2014-06-19 10:39 - 2014-06-19 10:38 - 27043000 _____ (Sony Ericsson ) C:\Users\sturn_000\Downloads\PC_Companion_2.02.015_Web.exe
2014-06-19 10:29 - 2013-04-22 20:20 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\Sony
2014-06-19 09:18 - 2014-03-31 13:06 - 00000000 ____D () C:\Program Files\Sony Mobile
2014-06-19 09:17 - 2014-06-19 09:17 - 51843712 _____ () C:\Users\sturn_000\Downloads\Sony_Mobile_Update_Engine_Setup-2.14.8.201405281228 (1).exe
2014-06-19 09:08 - 2014-03-08 14:19 - 00001871 _____ () C:\Users\Public\Desktop\Media Go.lnk
2014-06-19 09:07 - 2013-09-02 10:39 - 00000000 ____D () C:\Program Files\Common Files\Sony Shared
2014-06-19 09:06 - 2014-06-19 09:05 - 00000000 ____D () C:\Program Files\Sony Media Go Install
2014-06-19 09:04 - 2014-06-19 09:03 - 92773912 _____ (Sony Network Entertainment International LLC) C:\Users\sturn_000\Downloads\mediago_setup.exe
2014-06-19 09:02 - 2014-06-19 09:02 - 51843712 _____ () C:\Users\sturn_000\Downloads\Sony_Mobile_Update_Engine_Setup-2.14.8.201405281228.exe
2014-06-18 16:51 - 2013-10-18 22:15 - 00000000 ____D () C:\Users\sturn_001
2014-06-18 16:51 - 2013-08-20 00:23 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-06-18 16:49 - 2012-12-11 22:55 - 92708840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-06-18 15:01 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-06-18 14:57 - 2013-08-22 07:13 - 00786432 ___SH () C:\WINDOWS\system32\config\BBI
2014-06-18 14:55 - 2013-08-22 09:17 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-06-18 14:55 - 2013-08-22 09:17 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-06-18 14:55 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\WinStore
2014-06-18 14:54 - 2014-06-18 14:54 - 00385192 _____ () C:\WINDOWS\Minidump\061814-27578-01.dmp
2014-06-13 11:01 - 2014-06-13 11:01 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-06-13 11:01 - 2014-06-13 11:01 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-06-13 11:01 - 2014-06-13 11:01 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-06-13 11:01 - 2014-06-13 11:01 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-13 10:55 - 2014-06-13 10:55 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-06-07 18:51 - 2014-06-07 18:51 - 00381856 _____ () C:\WINDOWS\Minidump\060714-20203-01.dmp
2014-06-01 19:11 - 2014-06-01 19:10 - 00150048 _____ () C:\WINDOWS\Minidump\060114-16890-01.dmp
2014-06-01 18:59 - 2014-06-01 18:59 - 00150048 _____ () C:\WINDOWS\Minidump\060114-16937-01.dmp
2014-06-01 18:31 - 2013-10-28 22:22 - 00000284 _____ () C:\WINDOWS\system32\Drivers\etc\NetLoc.wlt.bck
2014-06-01 18:31 - 2013-10-28 22:22 - 00000284 _____ () C:\WINDOWS\system32\Drivers\etc\NetLoc.wlt
2014-06-01 18:31 - 2013-10-28 22:22 - 00000056 _____ () C:\WINDOWS\system32\Drivers\etc\WnmFlt.cfg.bck
2014-06-01 18:31 - 2013-10-28 22:22 - 00000056 _____ () C:\WINDOWS\system32\Drivers\etc\WnmFlt.cfg
2014-06-01 18:31 - 2013-10-28 22:22 - 00000056 _____ () C:\WINDOWS\system32\Drivers\etc\DsaFlt.cfg.bck
2014-06-01 18:31 - 2013-10-28 22:22 - 00000056 _____ () C:\WINDOWS\system32\Drivers\etc\DsaFlt.cfg
2014-06-01 18:31 - 2013-10-28 22:21 - 00000252 _____ () C:\WINDOWS\system32\Drivers\etc\IdsFlt.cfg.bck
2014-06-01 18:31 - 2013-10-28 22:21 - 00000252 _____ () C:\WINDOWS\system32\Drivers\etc\IdsFlt.cfg
2014-06-01 18:31 - 2013-10-28 22:20 - 00000068 _____ () C:\WINDOWS\system32\Drivers\etc\NetFlt.cfg.bck
2014-06-01 18:31 - 2013-10-28 22:20 - 00000068 _____ () C:\WINDOWS\system32\Drivers\etc\NetFlt.cfg
2014-06-01 18:31 - 2013-10-28 22:14 - 00369180 _____ () C:\WINDOWS\system32\Drivers\APPFCONT.DAT.bck
2014-06-01 18:31 - 2013-10-28 22:14 - 00369180 _____ () C:\WINDOWS\system32\Drivers\APPFCONT.DAT
2014-06-01 18:31 - 2013-10-28 22:14 - 00303044 _____ () C:\WINDOWS\system32\Drivers\etc\DsaFlt.rls.bck
2014-06-01 18:31 - 2013-10-28 22:14 - 00303044 _____ () C:\WINDOWS\system32\Drivers\etc\DsaFlt.rls
2014-06-01 18:31 - 2013-10-28 22:14 - 00001132 _____ () C:\WINDOWS\system32\Drivers\APPFLTR.CFG.bck
2014-06-01 18:31 - 2013-10-28 22:14 - 00001132 _____ () C:\WINDOWS\system32\Drivers\APPFLTR.CFG
2014-06-01 18:24 - 2013-10-28 22:20 - 00000184 _____ () C:\WINDOWS\system32\Drivers\etc\NetAdapt.cfg.bck
2014-06-01 18:24 - 2013-10-28 22:20 - 00000184 _____ () C:\WINDOWS\system32\Drivers\etc\NetAdapt.cfg
2014-06-01 18:24 - 2013-10-28 22:20 - 00000064 _____ () C:\WINDOWS\system32\Drivers\etc\NetAR.wlt.bck
2014-06-01 18:24 - 2013-10-28 22:20 - 00000064 _____ () C:\WINDOWS\system32\Drivers\etc\NetAR.wlt
2014-06-01 18:23 - 2014-02-09 16:52 - 00008192 _____ () C:\WINDOWS\system32\WDPABKP.dat
2014-06-01 17:11 - 2014-01-28 20:39 - 00001241 _____ () C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
2014-06-01 15:51 - 2014-06-01 15:49 - 00000000 ____D () C:\Users\sturn_000\Documents\Freemake
2014-06-01 15:50 - 2014-06-01 15:49 - 00000000 ____D () C:\ProgramData\Freemake
2014-06-01 15:49 - 2014-06-01 15:49 - 00001294 _____ () C:\Users\Public\Desktop\Freemake Audio Converter.lnk
2014-06-01 15:49 - 2014-06-01 15:49 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2014-06-01 15:49 - 2014-06-01 15:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2014-06-01 15:49 - 2014-06-01 15:46 - 00000000 ____D () C:\Program Files\Freemake
2014-06-01 15:45 - 2014-06-01 15:45 - 01318408 _____ (Ellora Assets Corporation ) C:\Users\sturn_000\Downloads\FreemakeAudioConverterSetup.exe
2014-05-31 21:38 - 2014-05-06 05:31 - 00000000 ____D () C:\Users\sturn_000\Desktop\Adam F - Colours (1997)
2014-05-31 19:58 - 2014-01-30 23:11 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-31 19:58 - 2014-01-30 23:10 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-05-31 19:19 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-05-31 06:13 - 2014-06-18 14:59 - 00703992 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-05-31 06:13 - 2014-06-18 14:59 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-05-30 10:18 - 2014-06-13 11:02 - 17271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-05-30 09:43 - 2014-06-13 11:02 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-05-30 09:38 - 2014-06-13 11:02 - 02179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-05-30 09:27 - 2014-06-13 11:02 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-05-30 09:16 - 2014-06-13 11:02 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-05-30 09:04 - 2014-06-13 11:02 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-05-30 09:02 - 2014-06-13 11:02 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-05-30 08:57 - 2014-06-13 11:02 - 00595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-05-30 08:56 - 2014-06-13 11:02 - 04244992 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-05-30 08:54 - 2014-06-13 11:02 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-05-30 08:49 - 2014-06-13 11:02 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-05-30 08:40 - 2014-06-13 11:02 - 11725312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-05-30 08:21 - 2014-06-13 11:02 - 01790976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-05-30 08:15 - 2014-06-13 11:02 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-05-30 08:13 - 2014-06-13 11:02 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-05-27 22:04 - 2014-05-27 22:04 - 00000000 ____D () C:\Users\sturn_000\Desktop\tuneeee - Copy
2014-05-27 22:04 - 2014-04-30 22:24 - 00000000 ____D () C:\Users\sturn_000\Desktop\Drum n Bass MP3
2014-05-27 22:03 - 2014-03-11 22:12 - 00000000 ____D () C:\Users\sturn_000\Desktop\Ministry Of Sound - Back 2 The Old Skool Garage Classics
2014-05-27 21:44 - 2013-12-21 11:38 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\NCH Software
2014-05-27 21:44 - 2013-12-21 11:38 - 00000000 ____D () C:\Program Files\NCH Software
2014-05-27 21:43 - 2013-12-27 21:21 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-27 19:29 - 2014-05-27 19:28 - 25756225 _____ () C:\Users\sturn_000\Downloads\ITCH_2.2.2_Win.zip
2014-05-27 19:15 - 2014-05-27 19:15 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\Serato
2014-05-27 18:58 - 2014-05-27 18:54 - 139361759 _____ () C:\Users\sturn_000\Downloads\Serato DJ 1.6.3 (1).zip
2014-05-27 18:54 - 2014-05-27 18:50 - 139361759 _____ () C:\Users\sturn_000\Downloads\Serato DJ 1.6.3.zip
2014-05-27 17:18 - 2014-05-27 17:18 - 00021401 _____ () C:\Users\sturn_000\Downloads\Refund-Form.html
2014-05-27 13:42 - 2014-02-10 13:30 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\Windows Live
2014-05-26 23:07 - 2014-05-26 23:07 - 00001394 _____ () C:\Users\sturn_000\Untitled Master.wav
2014-05-26 23:07 - 2014-05-26 23:07 - 00001394 _____ () C:\Users\sturn_000\Untitled Drum Machine.wav
2014-05-26 22:16 - 2014-05-26 22:16 - 00002557 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitwig Studio 1.0.4.lnk
2014-05-26 22:16 - 2014-05-26 22:16 - 00000000 ____D () C:\Program Files\Bitwig Studio 1.0.4
2014-05-26 21:57 - 2014-05-26 21:57 - 00017422 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.4.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents (1).torrent.loaded
2014-05-26 21:46 - 2014-05-26 21:45 - 128040960 _____ () C:\Users\sturn_000\Downloads\Bitwig Studio 1.0.8.msi
2014-05-26 21:30 - 2014-05-26 19:20 - 00001315 _____ () C:\Users\sturn_000\registration-request.bwregrequest
2014-05-26 21:18 - 2014-05-26 21:18 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\Oracle
2014-05-26 21:17 - 2013-10-27 13:11 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-26 21:16 - 2014-05-26 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-26 21:16 - 2014-05-26 21:15 - 00004088 _____ () C:\WINDOWS\system32\jupdate-1.7.0_55-b14.log
2014-05-26 21:16 - 2013-10-27 12:36 - 00000000 ____D () C:\Program Files\Java
2014-05-26 21:13 - 2014-05-26 21:13 - 00921512 _____ (Oracle Corporation) C:\Users\sturn_000\Downloads\chromeinstall-7u55.exe
2014-05-26 21:11 - 2014-05-26 21:11 - 00017422 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.4.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents.torrent.loaded
2014-05-26 21:11 - 2014-05-26 21:11 - 00017422 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.4.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents.torrent
2014-05-26 21:10 - 2014-05-26 21:10 - 00017385 _____ () C:\Users\sturn_000\Downloads\[kickass.to]bitwig.studio.v1.0.3.win.osx.linux.incl.keygen.deepstatus.h33t.1337x.flashtorrents.torrent.loaded
2014-05-26 21:00 - 2014-05-26 20:40 - 00000000 ____D () C:\Users\sturn_000\Documents\Bitwig Studio
2014-05-26 19:57 - 2009-07-14 04:20 - 00000000 ___RD () C:\Program Files (x86)
2014-05-26 18:49 - 2014-03-11 23:36 - 00000000 ____D () C:\ProgramData\WinZip
2014-05-26 18:48 - 2014-05-26 18:33 - 00000000 ____D () C:\Program Files\VideoLAN
2014-05-26 18:44 - 2014-05-25 22:48 - 00000000 ____D () C:\Program Files\DSP-worx
2014-05-26 18:36 - 2014-05-26 18:36 - 00349160 _____ () C:\Users\sturn_000\Downloads\MediaPlayerClassic.exe
2014-05-26 18:31 - 2014-05-26 18:31 - 00942576 _____ () C:\Users\sturn_000\Downloads\install-flashplayer.exe
2014-05-26 18:07 - 2014-05-26 18:07 - 00000000 ____D () C:\Users\sturn_000\Downloads\Electro
2014-05-26 18:00 - 2014-05-26 17:59 - 00399304 _____ () C:\WINDOWS\Minidump\052614-30796-01.dmp
2014-05-26 11:44 - 2014-01-20 15:12 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\Audacity
2014-05-25 22:59 - 2014-05-25 22:59 - 00000000 ____D () C:\Users\sturn_000\AppData\Local\WorldofTanks
2014-05-25 22:50 - 2013-05-20 20:53 - 00001609 _____ () C:\Users\sturn_000\Desktop\DivX Movies.lnk
2014-05-25 22:50 - 2013-05-20 20:49 - 00000000 ____D () C:\Program Files\DivX
2014-05-25 22:50 - 2013-05-20 20:48 - 00000000 ____D () C:\ProgramData\DivX
2014-05-25 22:49 - 2014-05-25 22:49 - 00001113 _____ () C:\Users\Public\Desktop\DivX Converter.lnk
2014-05-25 22:49 - 2014-05-25 22:49 - 00001048 _____ () C:\Users\Public\Desktop\DivX Player.lnk
2014-05-25 22:49 - 2014-05-25 22:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2014-05-25 22:49 - 2014-05-25 22:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirectVobSub
2014-05-25 22:49 - 2014-05-25 22:48 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\LavFilters
2014-05-25 22:49 - 2014-05-25 22:48 - 00000000 ____D () C:\Users\sturn_000\AppData\Roaming\CDXReader
2014-05-25 22:49 - 2014-05-25 22:48 - 00000000 ____D () C:\Program Files\Xvid
2014-05-25 22:49 - 2014-05-25 22:48 - 00000000 ____D () C:\Program Files\DirectVobSub
2014-05-25 22:49 - 2013-09-16 21:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-05-25 22:48 - 2014-05-25 22:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
2014-05-25 22:47 - 2014-05-25 22:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2014-05-25 22:47 - 2014-05-25 22:47 - 00000000 ____D () C:\Program Files\ffdshow
2014-05-25 22:40 - 2014-05-25 22:40 - 01445348 _____ () C:\Users\sturn_000\Downloads\lame-3.99.5.tar.gz
 
Some content of TEMP:
====================
C:\Users\sturn_000\AppData\Local\Temp\6_Offer_12.exe
C:\Users\sturn_000\AppData\Local\Temp\f.exe
C:\Users\sturn_000\AppData\Local\Temp\FreemakeAudioConverter_1.1.0.58.exe
C:\Users\sturn_000\AppData\Local\Temp\PCloudCleanerUpdater.exe
C:\Users\sturn_000\AppData\Local\Temp\sqlite-3.8.0-x86-sqlitejdbc.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-06-21 07:46
 
==================== End Of Log ============================
 
 
 
 
Link to post
Share on other sites
Afterburner83

Afterburner83

Posted
  • Author
Posted
Additional scan result of Farbar Recovery Scan Tool (x86) Version:21-06-2014 01

Ran by sturn_000 at 2014-06-22 13:03:51

Running from C:\Users\sturn_000\Downloads

Boot Mode: Normal

==========================================================

 

 

==================== Security Center ========================

 

AV: Panda Internet Security 2013 (Disabled - Up to date) {65216B53-8D58-3C85-9923-623F89CF692B}

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Panda Internet Security 2013 (Disabled - Up to date) {DE408AB7-AB62-330B-A393-594DF2482396}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Panda Personal Firewall 2013 (Disabled) {5D1AEA76-C737-3DDD-B27C-CB0A771C2E50}

 

==================== Installed Programs ======================

 

µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.31395 - BitTorrent Inc.)

Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)

Adobe AIR (Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.07) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)

BBC iPlayer Desktop (HKLM\...\BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1) (Version: 3.2.15 - British Broadcasting Corp.)

BBC iPlayer Desktop (Version: 3.2.15 - British Broadcasting Corp.) Hidden

Bitwig Studio 1.0.4 (HKLM\...\{A79BAFFB-F92E-4551-A91C-5215176269A5}) (Version: 1.0.0 - Bitwig GmbH)

Catalyst Control Center InstallProxy (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden

D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden

DirectVobSub 2.40.4209 (HKLM\...\vsfilter_is1) (Version: 2.40.4209 - MPC-HC Team)

DivX Setup (HKLM\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)

DVD or CD Sharing (HKLM\...\{FC40D492-92EC-4814-BF3B-D819BAF7B732}) (Version: 1.4.1.2 - Apple Inc.)

Express Burn (HKLM\...\ExpressBurn) (Version: 4.68 - NCH Software)

Express Rip (HKLM\...\ExpressRip) (Version: 1.92 - NCH Software)

ffdshow v1.1.4399 [2012-03-22] (HKLM\...\ffdshow_is1) (Version: 1.1.4399.0 - )

Football Manager 2014 (HKLM\...\Steam App 231670) (Version:  - Sports Interactive)

Freemake Audio Converter version 1.1.0 (HKLM\...\Freemake Audio Converter_is1) (Version: 1.1.0 - Ellora Assets Corporation)

Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)

Google Drive (HKLM\...\{D9F75285-4864-461D-83DA-8D056BAC44D1}) (Version: 1.16.6866.4367 - Google, Inc.)

Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)

Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden

Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden

HP Deskjet 3050 J610 series Basic Device Software (HKLM\...\{1F00E21B-8434-4DFB-899C-81CF08A3E146}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)

HP Deskjet 3050 J610 series Help (HKLM\...\{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}) (Version: 140.0.63.63 - Hewlett Packard)

HP Deskjet 3050 J610 series Product Improvement Study (HKLM\...\{B1963EE3-260D-47B1-9082-DC9D38802022}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)

HP Update (HKLM\...\{97486FBE-A3FC-4783-8D55-EA37E9D171CC}) (Version: 5.005.000.002 - Hewlett-Packard)

HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden

HPDiagnosticCoreDll (HKLM\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard)

Internet Helper Anti-phishing (HKLM\...\Internet Helper Anti-phishing) (Version: 1.3.1.0 - Internet Helper (Powered by Panda Security))

Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.550 - Oracle)

Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden

Java SE Development Kit 7 Update 45 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0170450}) (Version: 1.7.0.450 - Oracle)

KingTranslate (HKLM\...\{CE33F0F6-2DB1-4C70-95F8-314CD94D6A4E}) (Version: 1.0 - KingTranslate)

KMSpico v9.1.3 (HKLM\...\KMSpico_is1) (Version: 9.1.3 - )

Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)

Media Go (HKLM\...\{F66C4A41-C3A8-4523-AB6C-BAA1DB38305C}) (Version: 2.7.357 - Sony)

Media Go Network Downloader (HKLM\...\{73FA7631-3015-4EEC-A002-09488C47A07C}) (Version: 1.5.19.0 - Sony)

Media Go Video Playback Engine 2.4.112.12050 (HKLM\...\{7C5AEEE1-6D7C-8922-4548-7BF9096077EC}) (Version: 2.4.112.12050 - Sony)

Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden

Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)

Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1 - Nokia) Hidden

Movie Maker (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Mozilla Firefox 28.0 (x86 en-US) (HKLM\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)

Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)

MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden

MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden

MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden

MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT110 (Version: 16.4.1108.0727 - Microsoft) Hidden

MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)

MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)

MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )

Nero Audio Pack 1 (Version: 11.0.11500.110.0 - Nero AG) Hidden

Nero Blu-ray Player (Version: 12.0.20064 - Nero AG) Hidden

Nero Blu-ray Player Help (CHM) (Version: 15.0.00015 - Nero AG) Hidden

Nero Core Components (Version: 11.0.23400 - Nero AG) Hidden

Nero Kwik Themes Basic (Version: 12.0.11500 - Nero AG) Hidden

Nero MediaHome (Version: 1.22.3600 - Nero AG) Hidden

Nero MediaHome Free (HKLM\...\{AFDFD861-3D6A-403F-8DB8-C1E815D366EC}) (Version: 15.0.02800 - Nero AG)

Nero MediaHome Help (CHM) (Version: 15.0.00021 - Nero AG) Hidden

Nero SharedVideoCodecs (Version: 1.0.15005 - Nero AG) Hidden

Nero Update (Version: 11.0.13300.42.0 - Nero AG) Hidden

OpenOffice.org 3.4.1 (HKLM\...\{9E3E3D64-5A2A-4CEF-A500-EB71188DBA90}) (Version: 3.41.9593 - Apache Software Foundation)

Panda Cloud Cleaner (HKLM\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.0.102 - Panda Security)

Panda Internet Security 2013 (HKLM\...\{7926EFB6-7CB4-4A9D-AB01-095F67F9D519}) (Version: 18.01.01 - Panda Security)

Panda Internet Security 2013 (Version: 18.01.01 - Panda Security) Hidden

Password Depot 6 - Panda Secure Vault Edition (HKLM\...\{AAE587E4-E661-4DB5-96DF-6E31C548F186}_is1) (Version: 6.1.5 - AceBIT GmbH)

PC Connectivity Solution (HKLM\...\{55EB7967-5BB1-4EA2-8AFF-B2F9E487E553}) (Version: 11.5.13.0 - Nokia)

Photo Common (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Photo Gallery (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

PowerISO (HKLM\...\PowerISO) (Version: 5.9 - Power Software Ltd)

Prerequisite installer (Version: 15.0.0005 - Nero AG) Hidden

RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden

RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden

RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden

RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)

RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden

Reason 5.0 (HKLM\...\Reason5_is1) (Version: 5.0 - Propellerhead Software AB)

Retrospect 6.5 (HKLM\...\{73B69C5C-87D6-471E-B695-0BD736C4B644}) (Version: 6.50.0000 - Dantz Development Corp.)

Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.14.8.201405281228 - Sony Mobile Communications AB)

Sony PC Companion 2.10.206 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.206 - Sony)

Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)

TomTom HOME (HKLM\...\{99072AB4-D795-44D5-9D65-E3C9F8322C97}) (Version: 2.9.7 - TomTom)

TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)

VAFPlayer (HKLM\...\{EBE677C0-CBCB-4EBF-8098-E27E1B5271CF}) (Version: 1.6.8 - Tuguu SL) <==== ATTENTION

VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden

WD Media Center Driver (HKLM\...\{3F70FB44-FD00-4ED2-9154-661AA9DB0B28}) (Version: 1.8.0.0 - WDC)

WD Quick View (HKLM\...\{507B1304-194A-4204-A9D9-9BAAF51EF760}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)

WD SmartWare (HKLM\...\{FDAEE697-A659-43C5-9520-6DA298EF021E}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)

WD SmartWare Installer (HKLM\...\{ba99df5b-3e46-419e-81e2-544352772fda}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)

WD USB Mass Storage Driver Installation (HKLM\...\{F9C3BDA6-E360-4D10-A1FA-222DC45E01B5}) (Version:  - )

Windows Live Communications Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)

Windows Live Essentials (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Installer (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Photo Common (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live SOXE (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live UX Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

WinRAR 4.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)

 

==================== Restore Points  =========================

 

08-06-2014 16:16:38 Scheduled Checkpoint

14-06-2014 18:13:28 Windows Update

18-06-2014 15:44:24 Windows Update

 

==================== Hosts content: ==========================

 

2014-03-10 02:46 - 2014-03-10 19:27 - 00000888 ____A C:\WINDOWS\system32\Drivers\etc\hosts

74.208.10.249 gs.apple.com

 

==================== Scheduled Tasks (whitelisted) =============

 

Task: {00BC77BF-3352-4FE8-9617-4F1B27BEC19A} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup

Task: {09708E0C-D5D7-4281-B61B-A47CBA88FE89} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-12-14] (Google Inc.)

Task: {0A849C9A-467E-4AC2-97BA-CE16E6A9B71E} - System32\Tasks\WPD\SqmUpload_S-1-5-21-2832039846-180994725-1788798635-1001

Task: {0C5320D8-3D44-41EF-8899-BA08732AA320} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-06-18] (Microsoft Corporation)

Task: {17233BE9-87E9-40B0-B003-AE9D2B92CBBE} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask

Task: {1983D875-D470-46B8-8239-6CC981A421BB} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2832039846-180994725-1788798635-1006 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {247BD142-0549-4E91-84B0-172C25563718} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)

Task: {2B3DA352-1653-4A2E-90AB-CC3F3227D6A1} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2832039846-180994725-1788798635-1006 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {2BE65564-89D1-4396-A5CC-D7D9283FC4A1} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task

Task: {3231FC32-C69B-4BBB-BCA1-C7D832C55E51} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-12-14] (Google Inc.)

Task: {392EB017-207C-42BF-A061-F3BE721F456C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState

Task: {3E0DF76C-CFC0-452B-AD0A-45D56314BD0E} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2832039846-180994725-1788798635-1006 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {3F9BE62F-4571-4D26-9B82-69A942CD9AAA} - System32\Tasks\BrowserProtect => Sc.exe start BrowserProtect <==== ATTENTION

Task: {474AFD62-0823-4763-B188-CD59677A07AB} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\WINDOWS\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)

Task: {4B7EF56A-8A42-4BD2-BB5C-7C389AC54A37} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask

Task: {5221CE86-0489-4640-8F25-FA5C813164B0} - System32\Tasks\0 => Iexplore.exe  <==== ATTENTION

Task: {5700ACE8-D0AF-4BA7-98B6-1033521A877A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask

Task: {5DA573B8-5244-486E-B9D5-258A2BF713F1} - System32\Tasks\ReclaimerInstall_sturn_000 => C:\Users\sturn_000\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe [2014-06-18] (RealNetworks, Inc.)

Task: {5DDD99DA-E8BD-4074-B096-47E2AD5B3ABB} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION

Task: {5F350511-0BE1-4930-9A1E-4278AD2A1D00} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION

Task: {6E84A59B-1863-4B21-8BD8-C9B20FD15484} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask

Task: {718C929F-0FC4-483B-B629-B40C301772D9} - System32\Tasks\HPCustParticipation HP Deskjet 3050 J610 series => C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)

Task: {7C7CF1DA-F461-4850-96B2-ADCA8A67E59C} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing

Task: {8B5819AE-7B44-478B-A3D3-8846AF160A8F} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate

Task: {8DBD1C48-FBE1-44FE-89F3-34B3E33D5798} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2013-06-03] ()

Task: {92ED6570-4654-4BFA-9A6C-1084C6939C16} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work

Task: {997C8BBD-710B-4E66-B5BC-CC09575A58D2} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance

Task: {A02D4427-A615-404F-B6C5-D74EE0BB1065} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload

Task: {A5D45ED3-F524-4574-8F39-527F3729D1E2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\WINDOWS\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)

Task: {AC70C3CD-09BF-4166-8146-432162EBEDB7} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2832039846-180994725-1788798635-1006 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)

Task: {BCD1FC06-C157-480E-BB01-C7F30DD41068} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation

Task: {C0D0F7C4-419F-41B3-90A2-FE79270B828A} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask

Task: {CF5A1DDC-D14D-4D59-AD49-A19A645B087B} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization

Task: {DCF55BED-B1DF-4ABF-8D85-6542C7007799} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE

Task: {E06DD2B3-9DA1-459E-B81D-5EB0916E66B4} - System32\Tasks\4863 => Wscript.exe C:\Users\STURN_~1\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION

Task: {E3AA1BF5-E00A-4122-AA66-BF5DD3F6E276} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-15] (Adobe Systems Incorporated)

Task: {E4C8774A-2818-45A4-8A6D-11DDF6348886} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task

Task: {E56ED37E-696F-4E16-BD48-1130E6009A7C} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2832039846-180994725-1788798635-1006 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)

Task: {E91E8E06-6350-4379-B10D-3E39C265B497} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv

Task: {E97FD468-C3C0-4CBC-BEC4-2CC8E9CB231B} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management

Task: {FAB49829-3EE7-4234-BE84-277862F2A57C} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList

Task: {FE354F72-A8B2-4AE2-894E-15126B9E1778} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files\DriverToolkit\DriverToolkit.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe

Task: C:\WINDOWS\Tasks\ReclaimerInstall_sturn_000.job => C:\Users\sturn_000\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.01\agent\rnupgagent.exe

 

==================== Loaded Modules (whitelisted) =============

 

2014-06-13 11:12 - 2014-06-05 14:58 - 00716616 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\libglesv2.dll

2014-06-13 11:12 - 2014-06-05 14:58 - 00126280 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\libegl.dll

2014-06-13 11:12 - 2014-06-05 14:58 - 04217672 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\pdf.dll

2014-06-13 11:12 - 2014-06-05 14:58 - 00414536 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll

2014-06-13 11:12 - 2014-06-05 14:58 - 01732424 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll

 

==================== Alternate Data Streams (whitelisted) =========

 

AlternateDataStreams: C:\Users\sturn_000\SkyDrive:ms-properties

AlternateDataStreams: C:\Users\sturn_001\SkyDrive:ms-properties

 

==================== Safe Mode (whitelisted) ===================

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail => ""="Service"

 

==================== EXE Association (whitelisted) =============

 

 

==================== MSCONFIG/TASK MANAGER disabled items =========

 

MSCONFIG\Services: AdobeARMservice => 2

MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3

MSCONFIG\Services: AMD External Events Utility => 2

MSCONFIG\Services: Freemake Improver => 2

MSCONFIG\Services: gupdate => 2

MSCONFIG\Services: gupdatem => 3

MSCONFIG\Services: gusvc => 3

MSCONFIG\Services: MBAMScheduler => 2

MSCONFIG\Services: MBAMService => 2

MSCONFIG\Services: NAUpdate => 2

MSCONFIG\Services: Panda Software Controller => 2

MSCONFIG\Services: PAVFNSVR => 2

MSCONFIG\Services: PAVSRV => 2

MSCONFIG\Services: PSHost => 2

MSCONFIG\Services: PSIMSVC => 2

MSCONFIG\Services: PskSvcRetail => 2

MSCONFIG\Services: RealNetworks Downloader Resolver Service => 2

MSCONFIG\Services: RetroWDSvc => 2

MSCONFIG\Services: ServiceLayer => 3

MSCONFIG\Services: Sony PC Companion => 3

MSCONFIG\Services: Steam Client Service => 3

MSCONFIG\Services: TomTomHOMEService => 2

MSCONFIG\Services: TPSrv => 2

MSCONFIG\Services: WDBackup => 2

MSCONFIG\Services: WDDriveService => 2

HKLM\...\StartupApproved\StartupFolder: => "FastMediaConverter.lnk"

HKLM\...\StartupApproved\StartupFolder: => "simplicheck.lnk"

HKLM\...\StartupApproved\Run: => "DivXMediaServer"

HKLM\...\StartupApproved\Run: => "DivXUpdate"

HKLM\...\StartupApproved\Run: => "HP Software Update"

HKLM\...\StartupApproved\Run: => "BroadWave"

HKLM\...\StartupApproved\Run: => "KiesTrayAgent"

HKLM\...\StartupApproved\Run: => "BlueStacks Agent"

HKLM\...\StartupApproved\Run: => "SetIcon"

HKLM\...\StartupApproved\Run: => "Onboard"

HKLM\...\StartupApproved\Run: => "WD Quick View"

HKCU\...\StartupApproved\StartupFolder: => "OpenOffice.org 3.4.1.lnk"

HKCU\...\StartupApproved\Run: => "uTorrent"

HKCU\...\StartupApproved\Run: => "iLivid"

HKCU\...\StartupApproved\Run: => "HP Deskjet 3050 J610 series (NET)"

HKCU\...\StartupApproved\Run: => "Sony PC Companion"

HKCU\...\StartupApproved\Run: => "TomTomHOME.exe"

HKCU\...\StartupApproved\Run: => "KiesPreload"

HKCU\...\StartupApproved\Run: => ""

HKCU\...\StartupApproved\Run: => "S60 PC Suite Tray"

HKCU\...\StartupApproved\Run: => "NextLive"

HKCU\...\StartupApproved\Run: => "Steam"

 

==================== Faulty Device Manager Devices =============

 

Name: Synaptics PS/2 Port Compatible TouchPad

Description: Synaptics PS/2 Port Compatible TouchPad

Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}

Manufacturer: Synaptics

Service: i8042prt

Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)

Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.

Devices stay in this state if they have been prepared for removal.

After you remove the device, this error disappears.Remove the device, and this error should be resolved.

 

Name: USB Device(VID_1f3a_PID_efe8)

Description: USB Device(VID_1f3a_PID_efe8)

Class Guid: {36fc9e60-c465-11cf-8056-444553540000}

Manufacturer: USB Devices

Service: awUSB

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (06/22/2014 00:53:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: Activation of application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147024894 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (06/22/2014 00:53:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: License Activation (slui.exe) failed with the following error code:

hr=0xC004F074

Command-line arguments:

RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

 

Error: (06/22/2014 00:53:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: License Activation (slui.exe) failed with the following error code:

hr=0xC004F074

Command-line arguments:

RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

 

Error: (06/22/2014 00:53:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: Activation of application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147024894 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (06/22/2014 00:53:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: Activation of application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147024894 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (06/22/2014 00:50:19 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: mbamscheduler.exe, version: 3.0.2.0, time stamp: 0x5339cec3

Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1e

Exception code: 0x40000015

Fault offset: 0x0008d6fd

Faulting process ID: 0x6d0

Faulting application start time: 0xmbamscheduler.exe0

Faulting application path: mbamscheduler.exe1

Faulting module path: mbamscheduler.exe2

Report ID: mbamscheduler.exe3

Faulting package full name: mbamscheduler.exe4

Faulting package-relative application ID: mbamscheduler.exe5

 

Error: (06/22/2014 00:34:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: Activation of application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147024894 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (06/22/2014 00:33:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: Activation of application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147024894 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (06/22/2014 00:32:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: Activation of application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147024894 See the Microsoft-Windows-TWinUI/Operational log for additional information.

 

Error: (06/22/2014 00:28:15 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: License Activation (slui.exe) failed with the following error code:

hr=0xC004F074

Command-line arguments:

RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

 

 

System errors:

=============

Error: (06/22/2014 00:53:27 PM) (Source: DCOM) (EventID: 10001) (User: TURNER)

Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaUnavailableUnavailable

 

Error: (06/22/2014 00:53:18 PM) (Source: DCOM) (EventID: 10001) (User: TURNER)

Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaUnavailableUnavailable

 

Error: (06/22/2014 00:53:18 PM) (Source: DCOM) (EventID: 10001) (User: TURNER)

Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaUnavailableUnavailable

 

Error: (06/22/2014 00:52:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The ICM_UpdaterService Disp service failed to start due to the following error: 

%%2

 

Error: (06/22/2014 00:52:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The AODDriver4.2.0 service failed to start due to the following error: 

%%3

 

Error: (06/22/2014 00:52:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: The VirtualBox Bridged Networking Service service failed to start due to the following error: 

%%2

 

Error: (06/22/2014 00:34:44 PM) (Source: DCOM) (EventID: 10001) (User: TURNER)

Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaUnavailableUnavailable

 

Error: (06/22/2014 00:33:31 PM) (Source: DCOM) (EventID: 10001) (User: TURNER)

Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaUnavailableUnavailable

 

Error: (06/22/2014 00:32:31 PM) (Source: DCOM) (EventID: 10001) (User: TURNER)

Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaUnavailableUnavailable

 

Error: (06/22/2014 00:27:53 PM) (Source: DCOM) (EventID: 10001) (User: TURNER)

Description: "C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x86__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server2Microsoft.WindowsLive.Mail.AppXj3e9v0xw9sf8t58nqr15tqqb2yq4zsfg.mcaUnavailableUnavailable

 

 

Microsoft Office Sessions:

=========================

Error: (06/22/2014 00:53:32 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147024894

 

Error: (06/22/2014 00:53:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

 

Error: (06/22/2014 00:53:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

 

Error: (06/22/2014 00:53:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147024894

 

Error: (06/22/2014 00:53:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147024894

 

Error: (06/22/2014 00:50:19 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: mbamscheduler.exe3.0.2.05339cec3MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd6d001cf8e09956c47cbC:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exeC:\Program Files\Malwarebytes Anti-Malware\MSVCR100.dll6203f61d-fa03-11e3-b07d-002622d84692

 

Error: (06/22/2014 00:34:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147024894

 

Error: (06/22/2014 00:33:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147024894

 

Error: (06/22/2014 00:32:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TURNER)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2147024894

 

Error: (06/22/2014 00:28:15 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )

Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

 

 

CodeIntegrity Errors:

===================================

  Date: 2013-10-20 06:15:02.878

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:02.781

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:02.614

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:01.900

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:01.836

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:01.755

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:01.690

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:01.645

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:01.524

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

  Date: 2013-10-20 06:15:01.171

  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

 

==================== Memory info =========================== 

 

Percentage of memory in use: 39%

Total physical RAM: 3004.61 MB

Available physical RAM: 1814.29 MB

Total Pagefile: 6076.61 MB

Available Pagefile: 4817 MB

Total Virtual: 2047.88 MB

Available Virtual: 1869.39 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:446.91 GB) (Free:283.02 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Drive d: (Recovery) (Fixed) (Total:14.69 GB) (Free:1.58 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.1 GB) FAT32

Drive f: (Reason 5) (CDROM) (Total:2.5 GB) (Free:0 GB) UDF

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: B40499E8)

Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=447 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)

Partition 4: (Not Active) - (Size=4 GB) - (Type=0C)

 

==================== End Of Log ============================

Link to post
Share on other sites
Maurice Naggar

Maurice Naggar

Posted
Posted

Hello Afterburner83,

First, ( but only if the program is running) lets shutdown the realtime Malwarebytes Anti-Malware. Go to the desktop Taskbar. See the blue-color MBAM icon in the notification area.
Do a Right-click on it with your mouse, and select EXIT.

I have attached a zip file which you need to Save to your system.

Once saved, unzip it to extract all contents.   which will be 2 files.
Next, double-click on **net_replacement.bat** file.
It should run fairly quickly in a command-prompt window.

 

I would suggest then a Logoff >> Shutdown >> Restart so that your pc is then in a new Windows session.

Once that is done, restart the Anti-Malware and let me know if it works normally.

Netconf-batch-file.zip

Link to post
Share on other sites
Maurice Naggar

Maurice Naggar

Posted
Posted

Do you have more detail information from the "message"?

 

Did it say

 

"a problem caused the program to stop working correctly.

 

or

 

This application has requested the Runtime to terminate it in an unusual way.

 

I would like as much detail as possible.

 

download VEW  by Vino Rosso and save it to your desktop >> from here <<.

Double click on VEW.exe to start the program.

In the Select log to query section, check (tick):

  • Application    
  • System

In the Select type to list section, check:

  • Critical (not XP)
  • Error
  • Information
  • Warning

In the Number or date of events section, check:
Number of events... then enter 20 in the entry box beside it.

Press the Run button.
A Notepad report will open when done, please Copy >Paste  the contents of this report.
It is located at %systemdrive%\VEW.txt, usually C:\VEW.txt.

 

 

Link to post
Share on other sites
Maurice Naggar

Maurice Naggar

Posted
Posted

I do not understand the issue with the event log viewer tool?   Did you follow all the instructions, including "saving" the exe first to your system?

{ ie, never run a tool straight out of a download / while in your internet browser}.

 

As to the batch file, you should only run it one time.   Not more.

 

and tell me, Have you Restarted the system since doing any of this ?

Link to post
Share on other sites
Maurice Naggar

Maurice Naggar

Posted
Posted

.......How would I save it from downloading it?

I hope we do not get lost in the detail of the How to-s.

All I am getting at is to insure that you Save any download to your system first.

The browser ought to be prompting you about Saving a file that you download.

Or maybe you set your browser to always save to a particular folder or the default folder.

 

All I am getting to, is, To make sure downloads are saved to the hard drive.

Then one closes the browser.

Then do to the Desktop or the folder where the tool is.   And only then one "runs" the tool or the procedure.

 

I only mention this because "some" folks just simply "run" the app without first saving the download.   I'll reply in a new reply about what to do next.

Link to post
Share on other sites
Afterburner83

Afterburner83

Posted
  • Author
Posted

Yeah thats what I did, I opened it from the browser, I hope you are taking me as being funning with you as It was a general question to how to save it to the system :) i will delete the files and re do the steps to the bat.file, Also this VEW.txt file its saying there is not one on my laptop and I am trying to save it to the C drive but for some reason its telling me i dont have permission and to contact an admin (which is me lol)

Link to post
Share on other sites
Maurice Naggar

Maurice Naggar

Posted
Posted

Ok, I did not ask that you run the bat file anymore !

 

Please do not jump ahead of me.

Now then, I see that you had set ( in the old version) for mbam.exe to run in "compatibility mode" in windows.  Please do not do that !

You need to Save the zip file attached in this reply.

Unzip the content to your system  ( on the desktop or to a known folder).

 

Go to that saved-location.  Do a Right-click on Fixal.reg and select Merge.

It should show a confirmation message.

 

Go forward and do this next.

 

Shutdown and restart Windows for a fresh start.

 

(2)

Your MBAM does start and is use-able, so we need to do specific things in it for the Scheduler.

 

Take a look inside the program. Start the Anti-Malware. Click on the Settings icon at the top bar up at top.
Then click the **Advanced Settings** button at the left.
Be sure all top 3 lines on that window are check-marked ( selected ).

Now a couple of changes for each of the Update task & the Threat scan task in the Scheduler.
Click on **Automated Scheduling** button.

Locate and click once on **Check for Updates** line and press Edit. Then press the Advanced button at bottom left.
Slide the window up so you can see all of it. {press the mouse on the very top bar and slide UP }
A few changes are needed.
Look at the "starting time" of the task and use some good time when you know that your computer will be on & powered & that Windows would be on at that time.
Look at the line in Schedule Options. UN-check "Show notification after successful update".

In the Frequency and Settings. Select Hourly and I suggest using the Recurrence at 4 hours.
In the Recovery Options put a check-mark on "Recover missed tasks" and select 1 hour
When done, press the OK button.

Locate and click once on the Threat Scan line and press Edit.Then press the Advanced button at bottom left.
Slide the window up so you can see all of it. {press the mouse on the very top bar and slide UP }

In the Schedule Options, put a check-mark on the line Terminate program when no threats are found
{when no malwares are detected you want the scheduled task to close}.

In the Frequency and Settings block.
You should have Daily and the recurrence set to 1 day.
now UN-check the line Check for updates before scanning {{that line should be always off otherwise the task may not run at the time set. It maybe run +/- 15 minutes of that period.}

In the Recovery Options put a check-mark on "Recover missed tasks" and select 1 hour
When done, press the OK button.

When completely done, close the window.

A fresh Windows start would be good to do at this point. Use Logoff and Restart Windows.

Monitor your system over the next day or two and let me know how it goes.

 

Fixal.zip

Link to post
Share on other sites
Afterburner83

Afterburner83

Posted
  • Author
Posted

I am Now going to download and run Netconf-batch-file.zip, Wait for the command-prompt window to show and disappear before Logging off, Shutting Down the laptop and restarting it, I will then retry Malbytes and see if it will update I will then also let you know if it has worked, I am given a full details of what im doing so you know I have done it right or wrong

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

  I accept