Jump to content

Virus Infection undetected!


Recommended Posts

Hi All,

 

My computer is infected with a virus but not a single anti-virus solution is able to to detect it.  I scanned in safe mode.  Nothing.

 

The virus keeps deleting text, typed repeated "=". sometimes prevents me from opening windows such as windows update.  Was able to upldate after a lots .of work.

 

Here is the hijackthis log.

 

Please help:

 

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 6:21:54 PM, on 07/08/2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17207)

FIREFOX: 31.0 (x86 en-US)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
C:\Users\Benji\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/...=AVASDF&PC=AV01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
R3 - URLSearchHook: (no name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll
O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart
O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
O4 - HKCU\..\Run: [spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
O8 - Extra context menu item: Open Picture in &Microsoft PhotoDraw - res://C:\PROGRA~2\MICROS~4\Office\1033\phdintl.dll/phdContext.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset...lineScanner.cab
O16 - DPF: {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} (ScanFile.FileScan) - http://contentpurity...xp/ScanFile.CAB
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc.  - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Sleep memory optimizer (FFSOpzSvc) - Acer Incorporated - C:\Program Files\Sleep Memory Optimizer\FFSService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel® ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel® Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exe
O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: Acer Theft Shield Service (USecuAppSvc) - Unknown owner - c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe

--
End of file - 14919 bytes

Link to post
Share on other sites

Hi & :welcome:

My name is Jürgen and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully. :excl:

  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
P2P/Piracy Warning:
  • If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.
  • Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.
  • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.
Step 1

Please run a FRST scan. This will help us diagnose your problem.

frst.pngfrstscan.png

Please download Farbar Recovery Scan Tool and save it to your Desktop.

(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)

  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.
Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2014
Ran by Benji (administrator) on Benji-PC on 07-08-2014 21:01:57
Running from C:\Users\Benji\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Acer Incorporated) C:\Program Files\Sleep Memory Optimizer\FFSService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
() C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
() C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-15] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2822952 2012-02-24] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)
HKLM\...\Run: [secure Applicayion] => c:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe [257640 2012-03-07] ()
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [backupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-23] (Dritek System Inc.)
HKLM-x32\...\Run: [suiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5187088 2014-07-10] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-07-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [189520 2014-07-07] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\.DEFAULT\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-3222356215-3916699849-2517307691-1000\...\Run: [spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566984 2014-04-25] (Safer-Networking Ltd.)
HKU\S-1-5-21-3222356215-3916699849-2517307691-1000\...\Run: [sUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7757592 2014-07-31] (SUPERAntiSpyware)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
ShortcutTarget: Acer VCM.lnk -> C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
URLSearchHook: HKLM-x32 - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No File
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKCU - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No File
SearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - DefaultScope {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - No Name - {32B29DF0-2237-4370-9A29-37CEBB730E9B} -  No File
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} http://contentpurity.com/xp/ScanFile.CAB
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} -  No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 64.71.255.204 64.71.255.198

 

Link to post
Share on other sites

FireFox:
========
FF ProfilePath: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default
FF DefaultSearchEngine: Microsoft (Bing)
FF SearchEngineOrder.1: Microsoft (Bing)
FF SelectedSearchEngine: Microsoft (Bing)
FF Homepage: hxxp://www.msn.com/?pc=AV01
FF Keyword.URL: hxxp://www.bing.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF SearchPlugin: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\searchplugins\bing-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF Extension: United States English Spellchecker - C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-07-07]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2012-04-12]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-03]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF
FF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-07-06]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn
FF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-07-22]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR HomePage: hxxp://www.msn.com/?pc=AV01
CHR StartupUrls: "hxxp://www.msn.com/?pc=AV01"
CHR DefaultSearchKeyword: mcafee
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()
CHR Plugin: (McAfee SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.50.146.2_0\McChPlg.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Extension: (Google Drive) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-03]
CHR Extension: (YouTube) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-03]
CHR Extension: (Google Search) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-03]
CHR Extension: (SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2014-08-07]
CHR Extension: (avast! Online Security) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-07]
CHR Extension: (Norton Security Toolbar) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-07]
CHR Extension: (Google Wallet) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\Exts\Chrome.crx [2014-08-05]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-07-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-07-23] (Avira Operations GmbH & Co. KG)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3244048 2014-07-10] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-07-10] (AVG Technologies CZ, s.r.o.)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [141392 2014-07-07] (Avira Operations GmbH & Co. KG)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-02-17] (Diskeeper Corporation)
R2 FFSOpzSvc; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [141192 2011-09-17] (Acer Incorporated)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-29] ()
S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193536 2012-03-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-29] (Intel Corporation)
R2 McAfee SiteAdvisor Service; c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [156904 2014-07-28] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S4 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation)
R2 USecuAppSvc; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [236648 2012-03-07] ()
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]
S2 HPSLPSVC; C:\Users\Benji\AppData\Local\Temp\7zS226D\hpslpsvc64.dll [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [242968 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-06-17] (AVG Technologies CZ, s.r.o.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-23] (Avira Operations GmbH & Co. KG)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-07-23] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-07-23] (Avira Operations GmbH & Co. KG)
S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)
S1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-06-06] (Symantec Corporation)
S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-05] (Symantec Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-02-17] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [92976 2012-02-17] (Diskeeper Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140731.001\IDSvia64.sys [525016 2014-07-03] (Symantec Corporation)
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-03-28] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\ENG64.SYS [126040 2014-07-21] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\EX64.SYS [2099288 2014-07-21] (Symantec Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-06] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-07 21:01 - 2014-08-07 21:02 - 00034559 _____ () C:\Users\Benji\Desktop\FRST.txt
2014-08-07 21:01 - 2014-08-07 21:02 - 00000000 ____D () C:\FRST
2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe
2014-08-07 13:36 - 2014-08-07 13:36 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Avira
2014-08-07 13:32 - 2014-08-07 13:32 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-08-07 13:27 - 2014-07-23 13:29 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-08-07 13:27 - 2014-07-23 13:29 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-08-07 13:27 - 2014-07-23 13:29 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-08-07 13:19 - 2014-08-07 13:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-08-07 13:18 - 2014-08-07 13:31 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-07 13:18 - 2014-08-07 13:27 - 00000000 ____D () C:\ProgramData\Avira
2014-08-07 13:17 - 2014-08-07 13:18 - 04050840 _____ (Avira Operations GmbH & Co. KG) C:\Users\Benji\Desktop\avira_en_av___dlc.exe
2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe
2014-08-06 22:24 - 2014-08-07 18:21 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log
2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe
2014-08-06 20:56 - 2014-08-06 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-08-06 20:56 - 2014-08-06 20:56 - 00000969 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-08-06 20:49 - 2014-08-06 20:49 - 04755832 _____ (AVG Technologies) C:\Users\Benji\Desktop\avg_avct_stb_all_2014_4744_cnet.exe
2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 10:46 - 2014-07-30 16:07 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup
2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-08-06 10:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2010
2014-08-06 10:29 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2008
2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2014-08-06 10:29 - 2012-04-13 00:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}
2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-06 07:25 - 2014-08-06 07:25 - 06770064 _____ () C:\Users\Benji\Desktop\bitdefender_antivirus.exe
2014-08-06 06:23 - 2014-08-06 06:23 - 00002121 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-08-06 06:22 - 2014-08-06 06:23 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-08-06 06:22 - 2014-08-06 06:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-08-05 21:57 - 2014-08-06 06:23 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-05 21:53 - 2014-08-05 21:54 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe
2014-08-05 20:53 - 2014-08-05 21:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-08-05 20:49 - 2014-08-05 20:49 - 18549136 _____ (SUPERAntiSpyware) C:\Users\Benji\Desktop\SUPERAntiSpyware.exe
2014-08-05 07:51 - 2014-08-05 07:55 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-05 07:24 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-08-05 07:24 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-08-05 07:24 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-08-05 07:24 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-08-05 07:24 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-08-05 07:24 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-08-05 07:24 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-08-05 07:24 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-08-05 07:24 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-08-05 07:24 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-08-05 07:24 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-08-05 07:23 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-05 07:23 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-05 07:23 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-05 07:23 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-05 07:23 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-05 07:23 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-05 07:23 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-05 07:23 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-05 07:23 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-05 07:23 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-05 07:23 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-05 07:23 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-05 07:23 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-05 07:23 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-05 07:23 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-05 07:23 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-05 07:23 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-05 07:23 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-05 07:23 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-05 07:23 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-05 07:23 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-05 07:23 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-05 07:23 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-05 07:23 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-05 07:23 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-05 07:23 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-05 07:23 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-05 07:23 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-05 07:23 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-05 07:23 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-05 07:23 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-05 07:23 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-05 07:23 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-05 07:23 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-05 07:23 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-05 07:23 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-05 07:23 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-05 07:23 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-05 07:23 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-05 07:23 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-05 07:23 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-05 07:23 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-05 07:23 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-05 07:23 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-05 07:23 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-05 07:23 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-05 07:23 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-05 07:23 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-05 07:23 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-05 07:23 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-05 07:23 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-05 07:23 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-05 07:23 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-05 07:23 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-05 07:23 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-05 07:23 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-05 07:23 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-08-05 07:23 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-08-05 07:23 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-08-05 07:23 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-08-05 07:23 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-08-05 07:23 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-08-05 07:22 - 2014-08-05 07:22 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-05 07:22 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-08-05 07:22 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-08-05 07:22 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-08-05 07:22 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-08-05 07:22 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-08-05 07:22 - 2014-03-24 22:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-05 07:22 - 2014-03-24 22:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-05 07:21 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-08-05 07:21 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-08-05 07:21 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-05 07:21 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-08-05 07:21 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-08-05 07:21 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-08-05 07:20 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-08-05 07:20 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-08-05 07:20 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-08-05 07:20 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-08-05 07:20 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-08-05 07:20 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-08-05 07:20 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-08-05 07:20 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-08-05 07:20 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-08-05 07:20 - 2014-03-04 05:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-08-05 07:20 - 2013-09-24 22:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-08-05 07:20 - 2013-09-24 21:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-08-05 07:20 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-08-05 07:18 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-08-05 07:18 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-08-05 07:18 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-08-05 07:18 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-08-05 07:18 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-08-05 07:18 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-08-05 07:18 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-08-05 07:18 - 2012-11-28 18:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-08-05 07:17 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-08-05 07:17 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-08-05 07:17 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-08-05 07:17 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-08-05 07:17 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-08-05 07:17 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-08-05 07:17 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-08-05 07:17 - 2013-07-09 01:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-05 07:17 - 2013-07-09 00:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-05 07:17 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-08-05 07:17 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-08-05 07:17 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-08-05 07:17 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-08-05 07:17 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-08-05 07:17 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-08-05 07:17 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-08-05 07:17 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-08-05 07:16 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-08-05 07:16 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-08-05 07:16 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-08-05 07:16 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-08-05 07:16 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-08-05 07:16 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-08-05 07:16 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-08-05 07:16 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-08-05 07:16 - 2013-10-02 22:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-05 07:16 - 2013-10-02 22:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-05 07:16 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-08-05 07:16 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-08-05 07:16 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-08-05 07:16 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-08-05 07:16 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-08-05 07:16 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-08-05 07:16 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-08-05 07:15 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-08-05 07:15 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-08-05 07:15 - 2013-11-11 22:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-05 07:15 - 2013-11-11 22:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-05 07:15 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-08-05 07:15 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-08-05 07:15 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-08-05 07:15 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-08-05 07:15 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-08-05 07:15 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-08-05 07:15 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-08-05 07:15 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-08-05 07:15 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-08-05 07:15 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-08-05 07:15 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-08-05 07:15 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-08-05 07:15 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-08-05 07:15 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-08-05 07:15 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-08-05 07:15 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-08-05 07:15 - 2013-04-12 10:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-08-05 07:15 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys
2014-08-05 07:15 - 2012-06-01 01:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2014-08-05 07:15 - 2012-06-01 01:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2014-08-05 07:15 - 2012-06-01 01:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2014-08-05 07:15 - 2012-06-01 01:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2014-08-05 07:15 - 2012-06-01 01:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2014-08-05 07:15 - 2012-06-01 01:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2014-08-05 07:15 - 2012-06-01 00:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll
2014-08-05 07:15 - 2012-06-01 00:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll
2014-08-05 07:15 - 2012-06-01 00:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll
2014-08-05 07:15 - 2012-06-01 00:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll
2014-08-05 07:15 - 2012-06-01 00:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll
2014-08-05 07:15 - 2012-06-01 00:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe
2014-08-05 07:14 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-08-05 07:14 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-08-05 07:14 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-08-05 07:14 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-08-05 07:14 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-08-05 07:14 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-08-05 07:14 - 2013-02-27 02:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-05 07:14 - 2013-02-27 01:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-05 07:14 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-08-05 07:14 - 2013-02-27 00:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-05 07:13 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-08-05 07:13 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-08-05 07:13 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-08-05 07:13 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-08-05 07:12 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-08-05 07:12 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-08-05 07:12 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-08-05 07:12 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-08-05 07:12 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-08-05 07:12 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-08-05 07:12 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-08-05 07:12 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-08-05 07:12 - 2013-08-01 08:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-05 07:12 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-05 07:12 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-05 07:11 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-08-05 07:11 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-08-05 07:11 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-08-05 07:11 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-08-05 07:11 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-08-05 07:11 - 2013-04-09 19:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-08-05 07:11 - 2013-04-02 18:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-05 00:22 - 2014-08-05 00:23 - 150775104 _____ () C:\Users\Benji\Desktop\setup_11.0.3.7.x01_2014_08_05_06_25.exe
2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-05 00:16 - 2014-08-06 00:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-08-05 00:15 - 2014-08-05 00:15 - 08461968 _____ (McAfee, Inc.) C:\Users\Benji\Desktop\SecurityScan_Release.exe
2014-08-04 23:40 - 2014-08-05 06:24 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys
2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\AVG2014
2014-08-04 12:34 - 2014-08-06 20:56 - 00000000 ____D () C:\ProgramData\AVG2014
2014-08-04 12:34 - 2014-08-04 12:34 - 00000000 ___HD () C:\$AVG
2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-04 12:26 - 2014-08-07 20:09 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-04 12:26 - 2014-08-04 12:42 - 00000000 ____D () C:\Users\Benji\AppData\Local\Avg2014
2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData
2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt
2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe
2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt
2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk
2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk
2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe
2014-07-31 11:20 - 2014-07-31 21:54 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live
2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}
2014-07-18 10:16 - 2014-07-18 10:17 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe
2014-07-10 07:12 - 2014-08-05 00:08 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt
2014-07-08 10:04 - 2014-08-05 21:57 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-08 10:04 - 2014-08-05 21:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-08 10:04 - 2014-08-05 00:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-08 10:04 - 2014-07-08 10:04 - 00001128 _____ () C:\Users\Benji\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-08 10:04 - 2014-07-08 10:04 - 00001110 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-08 10:04 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-08 10:04 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-08 07:49 - 2014-07-08 07:49 - 00000110 _____ () C:\Users\Benji\AppData\Roaming\mbam.context.scan

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-07 21:02 - 2014-08-07 21:01 - 00034559 _____ () C:\Users\Benji\Desktop\FRST.txt
2014-08-07 21:02 - 2014-08-07 21:01 - 00000000 ____D () C:\FRST
2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe
2014-08-07 20:57 - 2012-07-26 01:43 - 02049117 _____ () C:\Windows\WindowsUpdate.log
2014-08-07 20:47 - 2013-01-03 16:35 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-07 20:09 - 2014-08-04 12:26 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-07 18:48 - 2012-07-26 01:51 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-08-07 18:47 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-07 18:47 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-07 18:37 - 2013-01-03 16:35 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-07 18:37 - 2012-07-26 01:51 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-08-07 18:37 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-07 18:37 - 2009-07-14 00:51 - 00107054 _____ () C:\Windows\setupact.log
2014-08-07 18:21 - 2014-08-06 22:24 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log
2014-08-07 18:01 - 2013-01-03 16:35 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-07 14:01 - 2013-01-09 18:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\CrashDumps
2014-08-07 13:55 - 2010-11-20 23:47 - 01095464 _____ () C:\Windows\PFRO.log
2014-08-07 13:46 - 2013-03-20 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-07 13:45 - 2013-01-05 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-08-07 13:36 - 2014-08-07 13:36 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Avira
2014-08-07 13:33 - 2014-04-05 09:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-07 13:32 - 2014-08-07 13:32 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-08-07 13:32 - 2014-08-07 13:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-08-07 13:31 - 2014-08-07 13:18 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-07 13:27 - 2014-08-07 13:18 - 00000000 ____D () C:\ProgramData\Avira
2014-08-07 13:18 - 2014-08-07 13:17 - 04050840 _____ (Avira Operations GmbH & Co. KG) C:\Users\Benji\Desktop\avira_en_av___dlc.exe
2014-08-06 22:40 - 2014-08-06 20:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-08-06 22:37 - 2013-01-11 20:07 - 23339520 ___SH () C:\Users\Benji\Desktop\Thumbs.db
2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe
2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe
2014-08-06 22:19 - 2009-07-14 01:13 - 00911372 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-06 20:56 - 2014-08-06 20:56 - 00000969 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-08-06 20:56 - 2014-08-04 12:34 - 00000000 ____D () C:\ProgramData\AVG2014
2014-08-06 20:49 - 2014-08-06 20:49 - 04755832 _____ (AVG Technologies) C:\Users\Benji\Desktop\avg_avct_stb_all_2014_4744_cnet.exe
2014-08-06 20:42 - 2013-01-11 17:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-06 20:39 - 2014-05-03 13:01 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 20:38 - 2014-05-03 13:00 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-08-06 20:38 - 2014-05-03 13:00 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-06 20:38 - 2013-03-16 23:10 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-06 20:38 - 2013-03-16 23:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-06 20:38 - 2013-01-03 16:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-06 20:26 - 2014-05-06 10:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-06 10:40 - 2014-05-06 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-08-06 10:26 - 2014-04-14 19:52 - 00039270 _____ () C:\Windows\iis7.log
2014-08-06 10:23 - 2009-07-14 00:45 - 05080184 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-06 10:09 - 2012-04-12 23:50 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv
2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-08-06 10:01 - 2013-01-03 17:01 - 00919700 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-08-06 10:01 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-08-06 09:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-03-05 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-08-06 09:07 - 2013-04-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-06 09:01 - 2014-04-14 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-08-06 08:25 - 2014-05-03 15:52 - 00000000 ____D () C:\Program Files (x86)\AbiWord
2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}
2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-06 07:25 - 2014-08-06 07:25 - 06770064 _____ () C:\Users\Benji\Desktop\bitdefender_antivirus.exe
2014-08-06 06:23 - 2014-08-06 06:23 - 00002121 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-08-06 06:23 - 2014-08-06 06:22 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-08-06 06:23 - 2014-08-05 21:57 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-06 06:22 - 2014-08-06 06:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-08-06 00:29 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-08-06 00:29 - 2013-01-03 16:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-06 00:29 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration
2014-08-06 00:28 - 2013-01-03 16:34 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-05 21:57 - 2014-07-08 10:04 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-05 21:54 - 2014-08-05 21:53 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe
2014-08-05 21:51 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-08-05 21:25 - 2014-07-08 10:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-08-05 20:49 - 2014-08-05 20:49 - 18549136 _____ (SUPERAntiSpyware) C:\Users\Benji\Desktop\SUPERAntiSpyware.exe
2014-08-05 20:32 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji
2014-08-05 13:43 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Skype
2014-08-05 13:43 - 2012-04-12 23:18 - 00000000 ____D () C:\ProgramData\Skype
2014-08-05 07:55 - 2014-08-05 07:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-05 07:22 - 2014-08-05 07:22 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-05 06:24 - 2014-08-04 23:40 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys
2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-05 00:23 - 2014-08-05 00:22 - 150775104 _____ () C:\Users\Benji\Desktop\setup_11.0.3.7.x01_2014_08_05_06_25.exe
2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-08-05 00:15 - 2014-08-05 00:15 - 08461968 _____ (McAfee, Inc.) C:\Users\Benji\Desktop\SecurityScan_Release.exe
2014-08-05 00:10 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-08-05 00:08 - 2014-07-10 07:12 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-08-05 00:08 - 2014-07-06 13:04 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-08-05 00:07 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\AppCompat
2014-08-05 00:06 - 2014-07-08 10:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-05 00:06 - 2014-07-06 13:06 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2014-08-05 00:06 - 2014-01-16 14:32 - 00000000 ____D () C:\ProgramData\Norton
2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files\Bonjour
2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-08-05 00:06 - 2013-03-12 15:20 - 00000000 ____D () C:\Program Files\WinRAR
2014-08-05 00:06 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Common Files\Diskeeper Corporation
2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files\Sleep Memory Optimizer
2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files (x86)\EgisTec Shredder
2014-08-05 00:06 - 2012-07-26 01:59 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files\Elantech
2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files (x86)\Atheros
2014-08-05 00:06 - 2012-07-26 01:55 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-08-05 00:06 - 2012-07-26 01:52 - 00000000 ____D () C:\Dolby PCEE4
2014-08-05 00:06 - 2012-04-12 23:12 - 00000000 ____D () C:\ProgramData\BackupManager
2014-08-05 00:05 - 2013-07-20 18:55 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner
2014-08-05 00:03 - 2013-01-06 13:18 - 00000000 ____D () C:\workwebsites
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-08-05 00:02 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\SysWOW64\WindowsPowerShell
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Web
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Vss
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\spp
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Speech
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-08-05 00:01 - 2012-04-12 23:11 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\nti
2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\InstallShield
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\IME
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spp
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spool
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Speech
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\SMI
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\IME
2014-08-05 00:00 - 2014-04-14 19:52 - 00000000 ____D () C:\Windows\system32\BestPractices
2014-08-05 00:00 - 2014-03-05 18:30 - 00000000 ____D () C:\Windows\symbols
2014-08-05 00:00 - 2012-07-26 02:27 - 00000000 ____D () C:\Windows\NAPP_Dism_Log
2014-08-05 00:00 - 2012-04-12 23:19 - 00000000 ____D () C:\Windows\oem
2014-08-05 00:00 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\Performance
2014-08-05 00:00 - 2009-07-14 00:45 - 00000000 ____D () C:\Windows\Setup
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\com
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Speech
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\servicing
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\security
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\schemas
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Resources
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PLA
2014-08-04 23:59 - 2012-04-12 23:12 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 __RSD () C:\Windows\Media
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\IME
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Help
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Globalization
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Branding
2014-08-04 23:59 - 2009-03-12 05:30 - 00000000 ____D () C:\Windows\LP
2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2014-05-15 15:25 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-08-04 23:58 - 2014-04-14 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A
2014-08-04 23:58 - 2014-04-14 22:49 - 00000000 ____D () C:\Program Files\Business Objects
2014-08-04 23:58 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files\Microsoft Device Emulator
2014-08-04 23:58 - 2014-04-14 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-08-04 23:58 - 2014-04-14 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2014-08-04 23:58 - 2014-04-14 08:47 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Virtualized Applications
2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2014-08-04 23:58 - 2014-04-05 09:58 - 00000000 ____D () C:\Program Files\GIMP 2
2014-08-04 23:58 - 2014-03-12 22:46 - 00000000 ____D () C:\Users\Benji\android
2014-08-04 23:58 - 2014-03-12 22:45 - 00000000 ____D () C:\Program Files\Java
2014-08-04 23:58 - 2014-03-12 20:57 - 00000000 ____D () C:\Users\Benji\Desktop\adt-bundle-windows-x86_64-20131030
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Users\Benji\Documents\Visual Studio 2010
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v7.1
2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\Program Files\Microsoft SDKs
2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Adobe
2014-08-04 23:58 - 2013-07-10 15:47 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bred
2014-08-04 23:58 - 2013-06-25 22:45 - 00000000 ____D () C:\Users\Benji\Desktop\BoogoDEMO2506
2014-08-04 23:58 - 2013-06-15 07:52 - 00000000 ____D () C:\Users\Benji\.gimp-2.8
2014-08-04 23:58 - 2013-04-12 16:40 - 00000000 ____D () C:\Program Files\Red Gate
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\PreEmptive Solutions
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\PreEmptive Solutions
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PreEmptive Solutions
2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Red Gate
2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\IsolatedStorage
2014-08-04 23:58 - 2013-03-27 18:36 - 00000000 ____D () C:\Users\Benji\Desktop\PuDongPuxi-DONE
2014-08-04 23:58 - 2013-03-20 21:37 - 00000000 ____D () C:\Users\Benji\AppData\Local\Globalscape
2014-08-04 23:58 - 2013-03-16 17:19 - 00000000 ____D () C:\Program Files\ptdemo
2014-08-04 23:58 - 2013-01-27 13:39 - 00000000 ____D () C:\ProgramData\Apple
2014-08-04 23:58 - 2013-01-24 11:12 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\NCH Software
2014-08-04 23:58 - 2013-01-23 17:48 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Digiarty
2014-08-04 23:58 - 2013-01-21 17:40 - 00000000 ____D () C:\ProgramData\NaturalSoft
2014-08-04 23:58 - 2013-01-14 10:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-04 23:58 - 2013-01-06 11:14 - 00000000 ___SD () C:\PT
2014-08-04 23:58 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Local\CyberLink
2014-08-04 23:58 - 2013-01-03 17:02 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SoftGrid Client
2014-08-04 23:58 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Mozilla
2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Mozilla
2014-08-04 23:58 - 2013-01-03 16:35 - 00000000 ____D () C:\Users\Benji\AppData\Local\Google
2014-08-04 23:58 - 2013-01-03 16:34 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-04 23:58 - 2013-01-03 16:13 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Adobe
2014-08-04 23:58 - 2013-01-03 16:05 - 00000000 ____D () C:\ProgramData\OEM_E471269A730E
2014-08-04 23:58 - 2013-01-03 16:04 - 00000000 ____D () C:\Program Files\Preload
2014-08-04 23:58 - 2013-01-03 16:01 - 00000000 ____D () C:\Users\Benji\AppData\Local\VirtualStore
2014-08-04 23:58 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Diskeeper Corporation
2014-08-04 23:58 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files\EgisTec IPS
2014-08-04 23:58 - 2012-07-26 02:04 - 00000000 ____D () C:\ProgramData\CLSK
2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\install_clap
2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\CyberLink
2014-08-04 23:58 - 2012-07-26 02:02 - 00000000 ____D () C:\Users\Public\OEM
2014-08-04 23:58 - 2012-07-26 01:58 - 00000000 ____D () C:\ProgramData\Atheros
2014-08-04 23:58 - 2012-07-26 01:53 - 00000000 ____D () C:\ProgramData\Temp
2014-08-04 23:58 - 2012-07-26 01:52 - 00000000 ____D () C:\Program Files\Realtek
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Intel
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\Program Files\Intel
2014-08-04 23:58 - 2012-07-26 01:48 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\ProgramData\Acer
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files\Acer
2014-08-04 23:58 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files\Windows Live
2014-08-04 23:58 - 2012-04-12 23:15 - 00000000 ____D () C:\ProgramData\WildTangent
2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-04-12 23:13 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-04 23:58 - 2012-04-12 23:10 - 00000000 ____D () C:\ProgramData\oem
2014-08-04 23:58 - 2012-04-12 23:09 - 00000000 ____D () C:\ProgramData\McAfee
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\MSBuild
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Microsoft Games
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Default
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Device Emulator
2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Business Objects
2014-08-04 23:57 - 2014-04-14 22:46 - 00000000 ____D () C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
2014-08-04 23:57 - 2014-04-14 22:38 - 00000000 ____D () C:\Program Files (x86)\CE Remote Tools
2014-08-04 23:57 - 2014-04-14 22:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Designer Tools
2014-08-04 23:57 - 2014-04-14 08:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-08-04 23:57 - 2014-03-05 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-08-04 23:57 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-08-04 23:57 - 2013-12-12 19:18 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-08-04 23:57 - 2013-07-10 15:47 - 00000000 ____D () C:\Program Files (x86)\Bred
2014-08-04 23:57 - 2013-04-05 20:59 - 00000000 ____D () C:\Program Files (x86)\PreEmptive Solutions
2014-08-04 23:57 - 2013-03-20 21:36 - 00000000 ____D () C:\Program Files (x86)\Globalscape
2014-08-04 23:57 - 2013-03-19 22:37 - 00000000 ____D () C:\Program Files (x86)\Terminator
2014-08-04 23:57 - 2013-03-19 21:28 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-08-04 23:57 - 2013-03-04 16:14 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-08-04 23:57 - 2013-01-19 18:24 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-08-04 23:57 - 2013-01-03 16:35 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-04 23:57 - 2012-07-26 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLocker
2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec IPS
2014-08-04 23:57 - 2012-07-26 02:12 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLockerSuite
2014-08-04 23:57 - 2012-07-26 02:06 - 00000000 ____D () C:\Program Files (x86)\Cyberlink
2014-08-04 23:57 - 2012-04-12 23:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-08-04 23:57 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-08-04 23:57 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games
2014-08-04 23:57 - 2012-04-12 23:12 - 00000000 ____D () C:\Program Files (x86)\newsXpresso
2014-08-04 23:57 - 2012-04-12 23:11 - 00000000 ____D () C:\Program Files (x86)\NTI
2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-08-04 23:57 - 2012-04-12 23:09 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-08-04 23:57 - 2012-04-12 23:08 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-08-04 23:57 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files (x86)\Windows NT
2014-08-04 23:56 - 2014-04-18 08:31 - 00000000 ___SD () C:\CP_COM - Copy
2014-08-04 23:56 - 2014-04-14 19:52 - 00000000 ____D () C:\inetpub
2014-08-04 23:56 - 2013-04-26 11:34 - 00000000 ____D () C:\JA26042013
2014-08-04 23:56 - 2013-04-02 17:11 - 00000000 ___SD () C:\JA020413
2014-08-04 23:56 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files (x86)\ASIX Electronics Corporation
2014-08-04 23:56 - 2012-04-12 23:40 - 00000000 __SHD () C:\OEM
2014-08-04 23:56 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-08-04 23:56 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\Acer Games
2014-08-04 23:56 - 2012-04-12 23:13 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-08-04 12:42 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\Avg2014
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\AVG2014
2014-08-04 12:34 - 2014-08-04 12:34 - 00000000 ___HD () C:\$AVG
2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData
2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt
2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe
2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt
2014-07-31 22:07 - 2014-06-17 14:21 - 00002659 _____ () C:\Users\Benji\Desktop\WS_FTP.LOG
2014-07-31 21:54 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live
2014-07-31 15:56 - 2013-10-13 04:40 - 00000000 ____D () C:\Program Files (x86)\Porn Terminator
2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk
2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk
2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe
2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}
2014-07-30 16:07 - 2014-08-06 10:46 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup
2014-07-23 13:42 - 2014-07-04 12:00 - 00000710 _____ () C:\Users\Benji\Desktop\x.php
2014-07-23 13:29 - 2014-08-07 13:27 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-07-23 13:29 - 2014-08-07 13:27 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-07-23 13:29 - 2014-08-07 13:27 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-07-18 10:17 - 2014-07-18 10:16 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe
2014-07-18 09:57 - 2014-04-29 21:23 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner Remove Porn Pro
2014-07-10 07:06 - 2014-07-06 13:06 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-07-10 07:06 - 2014-07-06 13:05 - 00002505 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt
2014-07-08 10:04 - 2014-07-08 10:04 - 00001128 _____ () C:\Users\Benji\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-08 10:04 - 2014-07-08 10:04 - 00001110 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-08 10:04 - 2013-01-14 10:49 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Malwarebytes
2014-07-08 08:04 - 2009-07-13 22:34 - 00450770 ____R () C:\Windows\system32\Drivers\etc\hosts.20140730-160713.backup
2014-07-08 07:49 - 2014-07-08 07:49 - 00000110 _____ () C:\Users\Benji\AppData\Roaming\mbam.context.scan

Some content of TEMP:
====================
C:\Users\Benji\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-28 10:33

==================== End Of Log ============================

Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-08-2014
Ran by Benji at 2014-08-07 21:04:20
Running from C:\Users\Benji\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: AVG AntiVirus 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Norton Internet Security (Disabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
FW: Norton Internet Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 clear.fi SDK - MVP 2 (x32 Version: 2.0.1505 - CyberLink Corp.) Hidden
 clear.fi SDK- Movie 2 (x32 Version: 2.0.1502 - CyberLink Corp.) Hidden
7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version:  - )
AbiWord 2.9.4 (HKLM-x32\...\AbiWord2) (Version: 2.9.4 - AbiSource Developers)
Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.100 - NTI Corporation)
Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}) (Version: 1.5.2728.00 - CyberLink Corp.)
Acer Crystal Eye Webcam (x32 Version: 1.5.2728.00 - CyberLink Corp.) Hidden
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3010 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Acer Instant Update Service (HKLM\...\{4E8D1AAE-509F-46DE-AAB4-CE9BCABA2D35}) (Version: 1.00.3001 - Acer Incorporated)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3506 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 20.12.0307.1154 - Acer Incorporated)
Acer Theft Shield (HKLM\...\{8ADB0CD2-4E5A-452F-BB3B-3A2984CAC749}) (Version: 1.00.3001 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3501 - Acer Incorporated)
Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3501 - Acer Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Flash Professional CC (HKLM-x32\...\{B56B95BF-7161-4166-8288-DB1BA9F6C9B8}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.03) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)
Advanced Find and Replace v7.8.1 (HKLM-x32\...\Advanced Find and Replace 7_is1) (Version: 7.8.1 - Abacre Limited)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.126 - Atheros)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2021 - AVAST Software)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4744 - AVG Technologies)
AVG 2014 (Version: 14.0.3986 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4744 - AVG Technologies) Hidden
Avira (HKLM-x32\...\{142be4a8-895b-4ed9-b1ff-11c76357e3df}) (Version: 1.1.17.31000 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.17.31000 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)
AX88772B Windows 7 Drivers (HKLM-x32\...\InstallShield_{54A168C9-2250-4058-80EB-1F4A4192548A}) (Version: 1.0.1.1 - ASIX Electronics Corporation)
AX88772B Windows 7 Drivers (x32 Version: 1.0.1.1 - ASIX Electronics Corporation) Hidden
Backup Manager V3 (x32 Version: 3.0.0.100 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Chronicles of Albian (x32 Version: 2.2.0.95 - WildTangent) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated)
Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Crystal Reports Basic for Visual Studio 2008 (HKLM-x32\...\{AA467959-A1D6-4F45-90CD-11DC57733F32}) (Version: 10.5.0.0 - Business Objects)
Crystal Reports Basic Runtime for Visual Studio 2008 (x64) (HKLM\...\{2BFA9B05-7418-4EDE-A6FC-620427BAAAA3}) (Version: 10.5.0.0 - Business Objects)
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
CyberLink MediaEspresso (x32 Version: 6.5.1720_38230 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Demo Crack (HKLM-x32\...\{C95E1501-EC37-4C01-8E12-7C2D671986D8}) (Version: 1.0.0 -  )
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Dotfuscator Professional Edition Evaluation 4.10 (HKLM-x32\...\{E227823E-E839-4BE9-A429-E72B3E966DEC}) (Version: 4.10.0.11731 - PreEmptive Solutions)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
ETDWare PS/2-X64 10.6.9.8_WHQL (HKLM\...\Elantech) (Version: 10.6.9.8 - ELAN Microelectronic Corp.)
ExpressCache (HKLM\...\{1E084588-8CC6-4D1B-B904-B1A09DA22A52}) (Version: 1.0.82 - Diskeeper Corporation)
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36279 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)
Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)
Intel® Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1024 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.23.943.1 - Intel Corporation) Hidden
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 5.1.15 - Acer Inc.)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
McAfee SiteAdvisor (HKLM\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.4.0.143 - McAfee, Inc.)
McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.125 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Compact Framework 2.0 SP2 (HKLM-x32\...\{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}) (Version: 2.0.7045 - Microsoft Corporation)
Microsoft .NET Compact Framework 3.5 (HKLM-x32\...\{291B3A3B-F808-45B8-8113-DF232FCB6C82}) (Version: 3.5.7283 - Microsoft Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Device Emulator (64 bit) version 3.0 - ENU (HKLM\...\{EF8B1A2E-9CCB-3AB2-91E3-4EEDAB1294E1}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Document Explorer 2008 (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)
Microsoft Office Visual Web Developer 2007 (x32 Version: 12.0.4518.1066 - Microsoft Corporation) Hidden
Microsoft Office Visual Web Developer MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft PhotoDraw 2000 V2 (HKLM-x32\...\{3C5EA394-1033-11D2-A2CB-00C04F72F31D}) (Version: 2.00.00.0820 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft PVK Import (Remove only) (HKLM-x32\...\PVK-Import) (Version:  - )
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (HKLM-x32\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 (x32 Version:  - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Setup Support Files (English) (HKLM-x32\...\{9D6D76A6-4328-49E8-97A7-531A74841DA5}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM-x32\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 for Devices ENU (HKLM-x32\...\{241F2BF7-69EB-42A4-9156-96B2426C7504}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM-x32\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C# 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Professional Edition - ENU (HKLM-x32\...\Microsoft Visual Studio 2008 Professional Edition - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Professional Edition - ENU (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger - ENU (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (HKLM-x32\...\{90A80D89-A0E4-33C1-B13D-B93CB3496867}.KB945140) (Version: 1 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)
Microsoft Windows SDK .NET Framework Tools (30514) (Version: 7.1.30514 - Microsoft) Hidden
Microsoft Windows SDK for Visual Studio .NET 4.0 Framework Tools (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{29C93182-34F6-3275-A18D-59326851CD57}) (Version: 3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{9aa5f39c-a8de-46b0-919a-0248f8bc8490}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu (HKLM\...\{DFB3AD2B-4EE2-3077-BF1D-3CA164BC5336}) (Version: 3.5.30729 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32 (HKLM\...\{F5C819A5-E068-4f7d-B91A-1BD18702AFFB}) (Version: 6.1.5295.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{62EED300-E841-4083-A1D6-60B906271804}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{A992BBAA-723D-4574-A07F-983BF8FAA3E1}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Windows 7 (7.1) (HKLM\...\SDKSetup_7.1.7600.0.30514) (Version: 7.1.7600.0.30514 - Microsoft Corporation)
Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft Windows SDK for Windows 7 Common Utilities (30514) (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft Windows SDK Net Fx Interop Headers And Libraries (30514) (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.19 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) Hidden
newsXpresso (HKLM-x32\...\InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}) (Version: 1.0.0.40 - esobi Inc.)
newsXpresso (x32 Version: 1.0.0.40 - esobi Inc.) Hidden
NirSoft IconsExtract (HKLM-x32\...\NirSoft IconsExtract) (Version:  - )
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.4.0.13 - Symantec Corporation)
Orca (HKLM-x32\...\{85F4CBCB-9BBC-4B50-A7D8-E1106771498D}) (Version: 3.1.3790.0000 - Microsoft Corporation)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
Porn Terminator (HKLM-x32\...\{63AFDE5F-B004-4F91-8069-B9AB59792904}) (Version: 3.0.0 -  )
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.1 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6597 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.39025 - Realtek Semiconductor Corp.)
Resize Your Picture (HKLM-x32\...\{44559BD3-71A9-4921-AF91-0140D3D07F62}) (Version: 4.0 - Bred)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.1500.0 - SAMSUNG Electronics Co., Ltd.)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Sleep Memory Optimizer (HKLM-x32\...\{34BE2594-1D20-4A2E-97A0-B9E2837520AE}) (Version: 1.00.3004 - Acer Incorporated)
Smart Timer (HKLM-x32\...\{89DB52FC-EA72-468F-A0C7-150AF8B7AB74}) (Version: 1.00.3004 - Acer Incorporated)
SmartAssembly 6 (HKLM\...\{E5D5860E-7287-473E-8932-3A979F43AE12}) (Version: 6.7.1.61 - Red Gate Software Ltd)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)
Sql Server Customer Experience Improvement Program (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1102 - SUPERAntiSpyware.com)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.26038 - TeamViewer)
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Visual Studio 2008 Professional Edition - ENU (KB972221) (HKLM-x32\...\{D7DAD1E4-45F4-3B2B-899A-EA728167EC4F}.KB972221) (Version: 1 - Microsoft Corporation)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VC Runtimes MSI (x32 Version: 9.0.21022 - Microsoft) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 2.2.0.97 - WildTangent) Hidden
Visual Studio .NET Prerequisites - English (HKLM\...\{D3E39E77-0EB4-36FB-B97A-8C8AB21B9A45}) (Version: 9.0.21022 - Microsoft Corporation)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated)
WildTangent Games App (Acer Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile 5.0 SDK R2 for Pocket PC (HKLM-x32\...\{6C9F6D23-E9AD-43C9-B43A-011562AAF876}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
Windows Mobile 5.0 SDK R2 for Smartphone (HKLM-x32\...\{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{3A999A50-AB25-4A20-90A9-08F71FCE320F}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)
CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{98087D89-B93F-4BCF-A998-AE4D9F607C14}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)
CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{B286F068-5B17-4AE8-989B-8F9A199C47BA}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)

==================== Restore Points  =========================

05-08-2014 17:42:49 Removed Skype™ 5.5
05-08-2014 17:44:02 Xamarin Universal Installer
05-08-2014 17:45:50 avast! antivirus system restore point
06-08-2014 12:45:53 Windows Update
06-08-2014 14:41:52 Windows Update
07-08-2014 00:35:36 avast! antivirus system restore point
07-08-2014 00:53:14 Installed AVG 2014
07-08-2014 00:54:42 Installed AVG 2014
07-08-2014 17:39:20 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2014-08-06 10:46 - 00450770 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    www.10sek.com
127.0.0.1    10sek.com
127.0.0.1    www.1-2005-search.com
127.0.0.1    1-2005-search.com
127.0.0.1    www.123fporn.info
127.0.0.1    123fporn.info
127.0.0.1    123haustiereundmehr.com
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {084E3E00-6291-4226-8097-0D9E9A6DB467} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2012-02-06] (Acer Incorporated)
Task: {0A3992EB-BAD7-43EB-8718-A751C69CAC84} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink)
Task: {0F143BA5-CFD8-4015-BE18-1A8E8B5098DD} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)
Task: {15C9DDF1-99DB-46A6-B25C-7EA949B2F223} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {16B7594C-C8F9-49FD-AA4B-070B24C7DDC1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-06] (AVAST Software)
Task: {447D8BD7-4480-4C49-82B0-60EFFC7388B8} - System32\Tasks\{2B6DEA2A-4BCE-44F2-96E1-E7D212F6D713} => Firefox.exe http://ui.skype.com/ui/0/6.1.0.129.272/en/abandoninstall?page=tsMain
Task: {68BFD4A5-A790-4B76-B9DF-1F79CABCDF98} - System32\Tasks\Smart Timer Task Scheduler => Smart_Timer.exe
Task: {72AA6030-131F-46A6-BCCF-DC3D25257F88} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {73C21A8B-7846-4E5A-B3B5-558BCB3988B4} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2011-03-28] (Egis Technology Inc.)
Task: {B5F52E9B-7BDF-4E61-95AA-5DC8A68F2ACA} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe [2014-06-26] (Symantec Corporation)
Task: {B7DD77B5-DC7A-4294-BE9B-AACC922A86A9} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2011-03-28] (Egis Technology Inc.)
Task: {C7B86A17-D88C-472C-A843-2F44282D6442} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)
Task: {C9F771D2-F715-4D4E-9B96-A329BDF8992B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)
Task: {E8D11D23-B2AC-42E5-8BB8-0D1CB0D197EB} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (whitelisted) =============

2009-01-21 19:45 - 2009-01-21 19:45 - 01401856 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll
2012-07-26 02:12 - 2012-03-26 21:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00257640 _____ () C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
2012-03-07 00:49 - 2012-03-07 00:49 - 00213608 _____ () C:\Program Files\Acer\Acer Theft Shield\CommPtl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () C:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () C:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () C:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00236648 _____ () c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () c:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () c:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () c:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll
2012-07-26 01:51 - 2012-03-29 02:36 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
2014-08-06 20:38 - 2014-08-06 20:38 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-08-07 18:02 - 2014-08-07 18:02 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080701\algo.dll
2012-01-05 17:22 - 2012-01-05 17:22 - 00465344 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-01-05 17:22 - 2012-01-05 17:22 - 01081368 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-01-05 17:22 - 2012-01-05 17:22 - 00125464 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2014-08-06 20:38 - 2014-08-06 20:38 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-06 10:28 - 2014-04-25 14:11 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-05-06 10:28 - 2014-04-25 14:11 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-05-06 10:28 - 2014-04-25 14:11 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-08-07 13:31 - 2014-07-07 13:53 - 00049744 _____ () C:\Users\Benji\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
2014-07-07 13:53 - 2014-07-07 13:53 - 00137296 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll
2014-07-07 13:52 - 2014-07-07 13:52 - 00065616 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2014-05-06 10:28 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-05-06 10:28 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2012-07-26 01:51 - 2012-03-29 02:18 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:661DFA1C
AlternateDataStreams: C:\Users\Benji\AppData\Local\Temp:ZcHVkelT4qnCfa8embJ0LpO9
AlternateDataStreams: C:\Users\Benji\AppData\Local\Temporary Internet Files:aW4DzdLrcpHHzCIzfdyLgut
AlternateDataStreams: C:\Users\Benji\AppData\Local\yHrx86IBEK:obCo7un7065qZARgKSl3VRpZLc

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
MSCONFIG\startupreg: ccFullVersionAlert => C:\Program Files (x86)\Content Cleaner\remindeMe.exe

==================== Faulty Device Manager Devices =============

Name: Symantec Network Security WFP Driver
Description: Symantec Network Security WFP Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SymNetS
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: BHDrvx64
Description: BHDrvx64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BHDrvx64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: NIS Settings Manager
Description: NIS Settings Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ccSet_NIS
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Symantec Iron Driver
Description: Symantec Iron Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SymIRON
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/07/2014 06:16:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program avscan.exe version 14.0.6.548 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1578

Start Time: 01cfb28cab8299a6

Termination Time: 23904

Application Path: C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe

Report Id: 726a7488-1e80-11e4-9a09-cbd246d93d0b

Error: (08/07/2014 02:01:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Avira.OE.Systray.exe, version: 1.1.17.31000, time stamp: 0x53ba89f5
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86
Exception code: 0xe0434352
Fault offset: 0x0000c42d
Faulting process id: 0x6ec
Faulting application start time: 0xAvira.OE.Systray.exe0
Faulting application path: Avira.OE.Systray.exe1
Faulting module path: Avira.OE.Systray.exe2
Report Id: Avira.OE.Systray.exe3

Error: (08/07/2014 02:01:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Avira.OE.Systray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Net.Sockets.SocketException
Stack:
   at System.Net.SafeCloseSocketAndEvent.CreateWSASocketWithEvent(System.Net.Sockets.AddressFamily, System.Net.Sockets.SocketType, System.Net.Sockets.ProtocolType, Boolean, Boolean)
   at System.Net.NetworkInformation.NetworkChange+AddressChangeListener.StartHelper(System.Net.NetworkInformation.NetworkAddressChangedEventHandler, Boolean, System.Net.NetworkInformation.StartIPOptions)
   at Avira.OE.WinCore.NetworkStatusListener..ctor()
   at Avira.OE.WinCore.InternetConnectionMonitor..ctor()
   at Avira.OE.Systray.SystrayIcon..ctor(Avira.OE.WinCore.Interface.IServiceStatusMonitor, Avira.OE.Communicator.Interface.ICommunicatorClientProxy, Avira.OE.MiniGui.IMiniGuiWindow)
   at Avira.OE.Systray.SystrayIcon..ctor()
   at Avira.OE.Systray.Program.Main(System.String[])

Error: (08/07/2014 01:22:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: BackupManagerTray.exe, version: 3.0.0.100, time stamp: 0x4f053c75
Faulting module name: MSVCR90.dll, version: 9.0.30729.6161, time stamp: 0x4dace5b9
Exception code: 0xc0000005
Fault offset: 0x00037209
Faulting process id: 0x1a98
Faulting application start time: 0xBackupManagerTray.exe0
Faulting application path: BackupManagerTray.exe1
Faulting module path: BackupManagerTray.exe2
Report Id: BackupManagerTray.exe3

Error: (08/07/2014 01:22:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: SDTray.exe, version: 2.3.39.129, time stamp: 0x535a51a2
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000
Faulting process id: 0x1860
Faulting application start time: 0xSDTray.exe0
Faulting application path: SDTray.exe1
Faulting module path: SDTray.exe2
Report Id: SDTray.exe3

Error: (08/06/2014 08:06:57 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.Web.Management.IisClient, Version=7.5.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil . Error code = 0x80070020

Error: (08/06/2014 08:01:42 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.MediaCenter.UI, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020

Error: (08/06/2014 07:54:16 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Data.Entity, Version=3.5.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil . Error code = 0x80070020

Error: (08/06/2014 07:52:07 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Xaml, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020

Error: (08/06/2014 07:49:50 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Design, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020


System errors:
=============
Error: (08/07/2014 08:06:02 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AntiVirSchedulerService service.

Error: (08/07/2014 06:42:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The HP Network Devices Support service terminated with the following error:
%%126

Error: (08/07/2014 06:41:08 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005

Error: (08/07/2014 06:40:17 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
BHDrvx64
ccSet_NIS
SymIRON
SymNetS

Error: (08/07/2014 06:38:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:
%%1053

Error: (08/07/2014 06:38:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.

Error: (08/07/2014 06:11:03 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

    New Signature Version:

    Previous Signature Version: 1.179.2400.0

    Update Source: %NT AUTHORITY59

    Update Stage: 4.5.0216.00

    Source Path: 4.5.0216.01

    Signature Type: %NT AUTHORITY602

    Update Type: %NT AUTHORITY604

    User: NT AUTHORITY\SYSTEM

    Current Engine Version: %NT AUTHORITY605

    Previous Engine Version: %NT AUTHORITY606

    Error code: %NT AUTHORITY607

    Error description: %NT AUTHORITY608

Error: (08/07/2014 06:04:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The HP Network Devices Support service terminated with the following error:
%%126

Error: (08/07/2014 06:03:30 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80004005

Error: (08/07/2014 06:02:26 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
BHDrvx64
ccSet_NIS
SymIRON
SymNetS


Microsoft Office Sessions:
=========================
Error: (08/07/2014 06:16:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: avscan.exe14.0.6.548157801cfb28cab8299a623904C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe726a7488-1e80-11e4-9a09-cbd246d93d0b

Error: (08/07/2014 02:01:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Avira.OE.Systray.exe1.1.17.3100053ba89f5KERNELBASE.dll6.1.7601.1840953159a86e04343520000c42d6ec01cfb269938cf157C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exeC:\Windows\syswow64\KERNELBASE.dlle4af9c55-1e5c-11e4-ba34-a5593dd55a6d

Error: (08/07/2014 02:01:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Avira.OE.Systray.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.Net.Sockets.SocketException
Stack:
   at System.Net.SafeCloseSocketAndEvent.CreateWSASocketWithEvent(System.Net.Sockets.AddressFamily, System.Net.Sockets.SocketType, System.Net.Sockets.ProtocolType, Boolean, Boolean)
   at System.Net.NetworkInformation.NetworkChange+AddressChangeListener.StartHelper(System.Net.NetworkInformation.NetworkAddressChangedEventHandler, Boolean, System.Net.NetworkInformation.StartIPOptions)
   at Avira.OE.WinCore.NetworkStatusListener..ctor()
   at Avira.OE.WinCore.InternetConnectionMonitor..ctor()
   at Avira.OE.Systray.SystrayIcon..ctor(Avira.OE.WinCore.Interface.IServiceStatusMonitor, Avira.OE.Communicator.Interface.ICommunicatorClientProxy, Avira.OE.MiniGui.IMiniGuiWindow)
   at Avira.OE.Systray.SystrayIcon..ctor()
   at Avira.OE.Systray.Program.Main(System.String[])

Error: (08/07/2014 01:22:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: BackupManagerTray.exe3.0.0.1004f053c75MSVCR90.dll9.0.30729.61614dace5b9c0000005000372091a9801cfb258d96a18baC:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll7a1fb772-1e57-11e4-9b21-86a618209a99

Error: (08/07/2014 01:22:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SDTray.exe2.3.39.129535a51a2unknown0.0.0.000000000c000000500000000186001cfb258de319dc4C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exeunknown69adba7d-1e57-11e4-9b21-86a618209a99

Error: (08/06/2014 08:06:57 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.Web.Management.IisClient, Version=7.5.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil . Error code = 0x80070020
Microsoft.Web.Management.IisClient, Version=7.5.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil

Error: (08/06/2014 08:01:42 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.MediaCenter.UI, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020
Microsoft.MediaCenter.UI, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35

Error: (08/06/2014 07:54:16 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Data.Entity, Version=3.5.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil . Error code = 0x80070020
System.Data.Entity, Version=3.5.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil

Error: (08/06/2014 07:52:07 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Xaml, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020
Microsoft.VisualStudio.Xaml, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

Error: (08/06/2014 07:49:50 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Design, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020
Microsoft.VisualStudio.Design, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a


==================== Memory info ===========================

Percentage of memory in use: 48%
Total physical RAM: 3932.36 MB
Available physical RAM: 2035.14 MB
Total Pagefile: 7862.9 MB
Available Pagefile: 5150.84 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:282.37 GB) (Free:189.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 8FBBF039)
Partition 1: (Not Active) - (Size=16 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=282 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 19 GB) (Disk ID: 67229B2C)
Partition 1: (Not Active) - (Size=4 GB) - (Type=84)
Partition 2: (Not Active) - (Size=15 GB) - (Type=73)

==================== End Of Log ============================

Link to post
Share on other sites

Hi,
 

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}AV: AVG AntiVirus 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}AS: Norton Internet Security (Disabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}AS: AVG AntiVirus 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}FW: Norton Internet Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

Multiple antivirus warning!


Microsoft, avast and Symantec recommend that you do not have more than one antivirus product installed and running on your computer at the same time.

The real-time protection of two antivirus programs may conflict with each other and cause the following:

* False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
* Conflicts: Your system may lock up due to both products attempting to access the same file at the same time.
* Performance: More that one antivirus will cause your PC to become slow and it may even crash or blue screen.
* Less protection: Two antivirus trying to scan the same file may interfere with the process and allow a malicious file onto the computer without notice to you.

Please choose one and uninstall the other before continuing.

 

Afterwards:

 

frst.pngfrstscan.png

Start FRST with administator privileges.

  • Make sure the following option is checked: addition.png
  • Press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
    Please copy and paste these logs in your next reply.

Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2014
Ran by Benji (administrator) on Benji-PC on 08-08-2014 08:58:40
Running from C:\Users\Benji\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Acer Incorporated) C:\Program Files\Sleep Memory Optimizer\FFSService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
() C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
() C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-15] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2822952 2012-02-24] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)
HKLM\...\Run: [secure Applicayion] => c:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe [257640 2012-03-07] ()
HKLM-x32\...\Run: [backupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-23] (Dritek System Inc.)
HKLM-x32\...\Run: [suiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\.DEFAULT\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-3222356215-3916699849-2517307691-1000\...\Run: [spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566984 2014-04-25] (Safer-Networking Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
ShortcutTarget: Acer VCM.lnk -> C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (No File)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
URLSearchHook: HKLM-x32 - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No File
URLSearchHook: HKCU - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No File
SearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - DefaultScope {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} ->  No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - No Name - {32B29DF0-2237-4370-9A29-37CEBB730E9B} -  No File
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} http://contentpurity.com/xp/ScanFile.CAB
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 64.71.255.204 64.71.255.198

FireFox:
========
FF ProfilePath: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default
FF DefaultSearchEngine: Microsoft (Bing)
FF SearchEngineOrder.1: Microsoft (Bing)
FF SelectedSearchEngine: Microsoft (Bing)
FF Homepage: hxxp://www.msn.com/?pc=AV01
FF Keyword.URL: hxxp://www.bing.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF SearchPlugin: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\searchplugins\bing-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF Extension: United States English Spellchecker - C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-07-07]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-03]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF
FF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-07-06]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn
FF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-07-22]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR HomePage: hxxp://www.msn.com/?pc=AV01
CHR StartupUrls: "hxxp://www.msn.com/?pc=AV01"
CHR DefaultSearchKeyword: mcafee
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()
CHR Plugin: (McAfee SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.50.146.2_0\McChPlg.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Extension: (Google Drive) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-03]
CHR Extension: (YouTube) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-03]
CHR Extension: (Google Search) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-03]
CHR Extension: (avast! Online Security) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-07]
CHR Extension: (Norton Security Toolbar) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-07]
CHR Extension: (Google Wallet) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\Exts\Chrome.crx [2014-08-05]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-02-17] (Diskeeper Corporation)
R2 FFSOpzSvc; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [141192 2011-09-17] (Acer Incorporated)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-29] ()
S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193536 2012-03-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-29] (Intel Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S4 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation)
R2 USecuAppSvc; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [236648 2012-03-07] ()
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]
S2 HPSLPSVC; C:\Users\Benji\AppData\Local\Temp\7zS226D\hpslpsvc64.dll [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()
S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)
S1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-06-06] (Symantec Corporation)
S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-05] (Symantec Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-02-17] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [92976 2012-02-17] (Diskeeper Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140731.001\IDSvia64.sys [525016 2014-07-03] (Symantec Corporation)
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-03-28] (Intel Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\ENG64.SYS [126040 2014-07-21] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\EX64.SYS [2099288 2014-07-21] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-06] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

 

Link to post
Share on other sites

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-08 08:58 - 2014-08-08 08:59 - 00027318 _____ () C:\Users\Benji\Desktop\FRST.txt
2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp
2014-08-07 21:01 - 2014-08-08 08:58 - 00000000 ____D () C:\FRST
2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe
2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\ProgramData\Avira
2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe
2014-08-06 22:24 - 2014-08-07 18:21 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log
2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe
2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 10:46 - 2014-07-30 16:07 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup
2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-08-06 10:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2010
2014-08-06 10:29 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2008
2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2014-08-06 10:29 - 2012-04-13 00:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}
2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-05 21:57 - 2014-08-08 08:58 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-05 21:53 - 2014-08-05 21:54 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe
2014-08-05 20:53 - 2014-08-08 08:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-05 07:51 - 2014-08-05 07:55 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-05 07:24 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-08-05 07:24 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-08-05 07:24 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-08-05 07:24 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-08-05 07:24 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-08-05 07:24 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-08-05 07:24 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-08-05 07:24 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-08-05 07:24 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-08-05 07:24 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-08-05 07:24 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-08-05 07:23 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-05 07:23 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-05 07:23 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-05 07:23 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-05 07:23 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-05 07:23 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-05 07:23 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-05 07:23 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-05 07:23 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-05 07:23 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-05 07:23 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-05 07:23 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-05 07:23 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-05 07:23 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-05 07:23 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-05 07:23 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-05 07:23 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-05 07:23 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-05 07:23 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-05 07:23 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-05 07:23 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-05 07:23 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-05 07:23 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-05 07:23 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-05 07:23 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-05 07:23 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-05 07:23 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-05 07:23 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-05 07:23 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-05 07:23 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-05 07:23 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-05 07:23 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-05 07:23 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-05 07:23 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-05 07:23 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-05 07:23 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-05 07:23 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-05 07:23 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-05 07:23 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-05 07:23 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-05 07:23 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-05 07:23 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-05 07:23 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-05 07:23 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-05 07:23 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-05 07:23 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-05 07:23 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-05 07:23 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-05 07:23 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-05 07:23 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-05 07:23 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-05 07:23 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-05 07:23 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-05 07:23 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-05 07:23 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-05 07:23 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-05 07:23 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-08-05 07:23 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-08-05 07:23 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-08-05 07:23 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-08-05 07:23 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-08-05 07:23 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-08-05 07:22 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-08-05 07:22 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-08-05 07:22 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-08-05 07:22 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-08-05 07:22 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-08-05 07:22 - 2014-03-24 22:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-05 07:22 - 2014-03-24 22:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-05 07:21 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-08-05 07:21 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-08-05 07:21 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-05 07:21 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-08-05 07:21 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-08-05 07:21 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-08-05 07:20 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-08-05 07:20 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-08-05 07:20 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-08-05 07:20 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-08-05 07:20 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-08-05 07:20 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-08-05 07:20 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-08-05 07:20 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-08-05 07:20 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-08-05 07:20 - 2014-03-04 05:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-08-05 07:20 - 2013-09-24 22:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-08-05 07:20 - 2013-09-24 21:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-08-05 07:20 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-08-05 07:18 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-08-05 07:18 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-08-05 07:18 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-08-05 07:18 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-08-05 07:18 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-08-05 07:18 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-08-05 07:18 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-08-05 07:18 - 2012-11-28 18:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-08-05 07:17 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-08-05 07:17 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-08-05 07:17 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-08-05 07:17 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-08-05 07:17 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-08-05 07:17 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-08-05 07:17 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-08-05 07:17 - 2013-07-09 01:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-05 07:17 - 2013-07-09 00:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-05 07:17 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-08-05 07:17 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-08-05 07:17 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-08-05 07:17 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-08-05 07:17 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-08-05 07:17 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-08-05 07:17 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-08-05 07:17 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-08-05 07:16 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-08-05 07:16 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-08-05 07:16 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-08-05 07:16 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-08-05 07:16 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-08-05 07:16 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-08-05 07:16 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-08-05 07:16 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-08-05 07:16 - 2013-10-02 22:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-05 07:16 - 2013-10-02 22:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-05 07:16 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-08-05 07:16 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-08-05 07:16 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-08-05 07:16 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-08-05 07:16 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-08-05 07:16 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-08-05 07:16 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-08-05 07:15 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-08-05 07:15 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-08-05 07:15 - 2013-11-11 22:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-05 07:15 - 2013-11-11 22:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-05 07:15 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-08-05 07:15 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-08-05 07:15 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-08-05 07:15 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-08-05 07:15 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-08-05 07:15 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-08-05 07:15 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-08-05 07:15 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-08-05 07:15 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-08-05 07:15 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-08-05 07:15 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-08-05 07:15 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-08-05 07:15 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-08-05 07:15 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-08-05 07:15 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-08-05 07:15 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-08-05 07:15 - 2013-04-12 10:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-08-05 07:15 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys
2014-08-05 07:15 - 2012-06-01 01:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2014-08-05 07:15 - 2012-06-01 01:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2014-08-05 07:15 - 2012-06-01 01:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2014-08-05 07:15 - 2012-06-01 01:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2014-08-05 07:15 - 2012-06-01 01:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2014-08-05 07:15 - 2012-06-01 01:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2014-08-05 07:15 - 2012-06-01 00:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll
2014-08-05 07:15 - 2012-06-01 00:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll
2014-08-05 07:15 - 2012-06-01 00:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll
2014-08-05 07:15 - 2012-06-01 00:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll
2014-08-05 07:15 - 2012-06-01 00:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll
2014-08-05 07:15 - 2012-06-01 00:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe
2014-08-05 07:14 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-08-05 07:14 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-08-05 07:14 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-08-05 07:14 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-08-05 07:14 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-08-05 07:14 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-08-05 07:14 - 2013-02-27 02:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-05 07:14 - 2013-02-27 01:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-05 07:14 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-08-05 07:14 - 2013-02-27 00:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-05 07:13 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-08-05 07:13 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-08-05 07:13 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-08-05 07:13 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-08-05 07:12 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-08-05 07:12 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-08-05 07:12 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-08-05 07:12 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-08-05 07:12 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-08-05 07:12 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-08-05 07:12 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-08-05 07:12 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-08-05 07:12 - 2013-08-01 08:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-05 07:12 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-05 07:12 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-05 07:11 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-08-05 07:11 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-08-05 07:11 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-08-05 07:11 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-08-05 07:11 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-08-05 07:11 - 2013-04-09 19:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-08-05 07:11 - 2013-04-02 18:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-05 00:16 - 2014-08-06 00:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-08-04 23:40 - 2014-08-05 06:24 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys
2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software
2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-04 12:26 - 2014-08-08 08:30 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData
2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt
2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe
2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt
2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk
2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk
2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe
2014-07-31 11:20 - 2014-07-31 21:54 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live
2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}
2014-07-18 10:16 - 2014-07-18 10:17 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe
2014-07-10 07:12 - 2014-08-05 00:08 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-08 08:59 - 2014-08-08 08:58 - 00027318 _____ () C:\Users\Benji\Desktop\FRST.txt
2014-08-08 08:58 - 2014-08-07 21:01 - 00000000 ____D () C:\FRST
2014-08-08 08:58 - 2014-08-05 21:57 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-08 08:41 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-08 08:41 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-08 08:40 - 2013-01-03 16:35 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-08 08:37 - 2012-07-26 01:43 - 01135336 _____ () C:\Windows\WindowsUpdate.log
2014-08-08 08:33 - 2013-01-03 16:35 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-08 08:32 - 2013-01-03 16:35 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-08 08:31 - 2012-07-26 01:51 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-08-08 08:31 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-08 08:31 - 2009-07-14 00:51 - 00107390 _____ () C:\Windows\setupact.log
2014-08-08 08:30 - 2014-08-04 12:26 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-08 08:30 - 2010-11-20 23:47 - 01109234 _____ () C:\Windows\PFRO.log
2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\ProgramData\McAfee
2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\ProgramData\Avira
2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-08 08:07 - 2014-04-05 09:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp
2014-08-08 08:03 - 2013-02-06 19:12 - 00000000 ____D () C:\Program Files\McAfee
2014-08-08 08:01 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe
2014-08-07 18:48 - 2012-07-26 01:51 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-08-07 18:21 - 2014-08-06 22:24 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log
2014-08-07 14:01 - 2013-01-09 18:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\CrashDumps
2014-08-07 13:46 - 2013-03-20 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-07 13:45 - 2013-01-05 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-08-06 22:37 - 2013-01-11 20:07 - 23339520 ___SH () C:\Users\Benji\Desktop\Thumbs.db
2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe
2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe
2014-08-06 22:19 - 2009-07-14 01:13 - 00911372 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-06 20:42 - 2013-01-11 17:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-06 20:39 - 2014-05-03 13:01 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 20:38 - 2014-05-03 13:00 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-08-06 20:38 - 2014-05-03 13:00 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-06 20:38 - 2013-03-16 23:10 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-06 20:38 - 2013-03-16 23:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-06 20:38 - 2013-01-03 16:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-06 20:26 - 2014-05-06 10:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-06 10:40 - 2014-05-06 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-08-06 10:26 - 2014-04-14 19:52 - 00039270 _____ () C:\Windows\iis7.log
2014-08-06 10:23 - 2009-07-14 00:45 - 05080184 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-06 10:09 - 2012-04-12 23:50 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv
2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-08-06 10:01 - 2013-01-03 17:01 - 00919700 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-08-06 10:01 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-08-06 09:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-03-05 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-08-06 09:07 - 2013-04-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-06 09:01 - 2014-04-14 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-08-06 08:25 - 2014-05-03 15:52 - 00000000 ____D () C:\Program Files (x86)\AbiWord
2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}
2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-06 00:29 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-08-06 00:29 - 2013-01-03 16:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-06 00:29 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration
2014-08-06 00:28 - 2013-01-03 16:34 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-05 21:54 - 2014-08-05 21:53 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe
2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-05 20:32 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji
2014-08-05 13:43 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Skype
2014-08-05 13:43 - 2012-04-12 23:18 - 00000000 ____D () C:\ProgramData\Skype
2014-08-05 07:55 - 2014-08-05 07:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-05 06:24 - 2014-08-04 23:40 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys
2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-08-05 00:10 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-08-05 00:08 - 2014-07-10 07:12 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-08-05 00:08 - 2014-07-06 13:04 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-08-05 00:07 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\AppCompat
2014-08-05 00:06 - 2014-07-06 13:06 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2014-08-05 00:06 - 2014-01-16 14:32 - 00000000 ____D () C:\ProgramData\Norton
2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files\Bonjour
2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-08-05 00:06 - 2013-03-12 15:20 - 00000000 ____D () C:\Program Files\WinRAR
2014-08-05 00:06 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Common Files\Diskeeper Corporation
2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files\Sleep Memory Optimizer
2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files (x86)\EgisTec Shredder
2014-08-05 00:06 - 2012-07-26 01:59 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files\Elantech
2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files (x86)\Atheros
2014-08-05 00:06 - 2012-07-26 01:55 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-08-05 00:06 - 2012-07-26 01:52 - 00000000 ____D () C:\Dolby PCEE4
2014-08-05 00:06 - 2012-04-12 23:12 - 00000000 ____D () C:\ProgramData\BackupManager
2014-08-05 00:05 - 2013-07-20 18:55 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner
2014-08-05 00:03 - 2013-01-06 13:18 - 00000000 ____D () C:\workwebsites
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-08-05 00:02 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\SysWOW64\WindowsPowerShell
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Web
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Vss
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\spp
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Speech
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-08-05 00:01 - 2012-04-12 23:11 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\nti
2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\InstallShield
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\IME
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spp
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spool
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Speech
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\SMI
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\IME
2014-08-05 00:00 - 2014-04-14 19:52 - 00000000 ____D () C:\Windows\system32\BestPractices
2014-08-05 00:00 - 2014-03-05 18:30 - 00000000 ____D () C:\Windows\symbols
2014-08-05 00:00 - 2012-07-26 02:27 - 00000000 ____D () C:\Windows\NAPP_Dism_Log
2014-08-05 00:00 - 2012-04-12 23:19 - 00000000 ____D () C:\Windows\oem
2014-08-05 00:00 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\Performance
2014-08-05 00:00 - 2009-07-14 00:45 - 00000000 ____D () C:\Windows\Setup
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\com
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Speech
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\servicing
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\security
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\schemas
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Resources
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PLA
2014-08-04 23:59 - 2012-04-12 23:12 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 __RSD () C:\Windows\Media
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\IME
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Help
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Globalization
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Branding
2014-08-04 23:59 - 2009-03-12 05:30 - 00000000 ____D () C:\Windows\LP
2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2014-05-15 15:25 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-08-04 23:58 - 2014-04-14 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A
2014-08-04 23:58 - 2014-04-14 22:49 - 00000000 ____D () C:\Program Files\Business Objects
2014-08-04 23:58 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files\Microsoft Device Emulator
2014-08-04 23:58 - 2014-04-14 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-08-04 23:58 - 2014-04-14 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2014-08-04 23:58 - 2014-04-14 08:47 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Virtualized Applications
2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2014-08-04 23:58 - 2014-04-05 09:58 - 00000000 ____D () C:\Program Files\GIMP 2
2014-08-04 23:58 - 2014-03-12 22:46 - 00000000 ____D () C:\Users\Benji\android
2014-08-04 23:58 - 2014-03-12 22:45 - 00000000 ____D () C:\Program Files\Java
2014-08-04 23:58 - 2014-03-12 20:57 - 00000000 ____D () C:\Users\Benji\Desktop\adt-bundle-windows-x86_64-20131030
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Users\Benji\Documents\Visual Studio 2010
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v7.1
2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\Program Files\Microsoft SDKs
2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Adobe
2014-08-04 23:58 - 2013-07-10 15:47 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bred
2014-08-04 23:58 - 2013-06-25 22:45 - 00000000 ____D () C:\Users\Benji\Desktop\BoogoDEMO2506
2014-08-04 23:58 - 2013-06-15 07:52 - 00000000 ____D () C:\Users\Benji\.gimp-2.8
2014-08-04 23:58 - 2013-04-12 16:40 - 00000000 ____D () C:\Program Files\Red Gate
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\PreEmptive Solutions
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\PreEmptive Solutions
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PreEmptive Solutions
2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Red Gate
2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\IsolatedStorage
2014-08-04 23:58 - 2013-03-27 18:36 - 00000000 ____D () C:\Users\Benji\Desktop\PuDongPuxi-DONE
2014-08-04 23:58 - 2013-03-20 21:37 - 00000000 ____D () C:\Users\Benji\AppData\Local\Globalscape
2014-08-04 23:58 - 2013-03-16 17:19 - 00000000 ____D () C:\Program Files\ptdemo
2014-08-04 23:58 - 2013-01-27 13:39 - 00000000 ____D () C:\ProgramData\Apple
2014-08-04 23:58 - 2013-01-24 11:12 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\NCH Software
2014-08-04 23:58 - 2013-01-23 17:48 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Digiarty
2014-08-04 23:58 - 2013-01-21 17:40 - 00000000 ____D () C:\ProgramData\NaturalSoft
2014-08-04 23:58 - 2013-01-14 10:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-04 23:58 - 2013-01-06 11:14 - 00000000 ___SD () C:\PT
2014-08-04 23:58 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Local\CyberLink
2014-08-04 23:58 - 2013-01-03 17:02 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SoftGrid Client
2014-08-04 23:58 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Mozilla
2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Mozilla
2014-08-04 23:58 - 2013-01-03 16:35 - 00000000 ____D () C:\Users\Benji\AppData\Local\Google
2014-08-04 23:58 - 2013-01-03 16:34 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-04 23:58 - 2013-01-03 16:13 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Adobe
2014-08-04 23:58 - 2013-01-03 16:05 - 00000000 ____D () C:\ProgramData\OEM_E471269A730E
2014-08-04 23:58 - 2013-01-03 16:04 - 00000000 ____D () C:\Program Files\Preload
2014-08-04 23:58 - 2013-01-03 16:01 - 00000000 ____D () C:\Users\Benji\AppData\Local\VirtualStore
2014-08-04 23:58 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Diskeeper Corporation
2014-08-04 23:58 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files\EgisTec IPS
2014-08-04 23:58 - 2012-07-26 02:04 - 00000000 ____D () C:\ProgramData\CLSK
2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\install_clap
2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\CyberLink
2014-08-04 23:58 - 2012-07-26 02:02 - 00000000 ____D () C:\Users\Public\OEM
2014-08-04 23:58 - 2012-07-26 01:58 - 00000000 ____D () C:\ProgramData\Atheros
2014-08-04 23:58 - 2012-07-26 01:53 - 00000000 ____D () C:\ProgramData\Temp
2014-08-04 23:58 - 2012-07-26 01:52 - 00000000 ____D () C:\Program Files\Realtek
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Intel
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\Program Files\Intel
2014-08-04 23:58 - 2012-07-26 01:48 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\ProgramData\Acer
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files\Acer
2014-08-04 23:58 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files\Windows Live
2014-08-04 23:58 - 2012-04-12 23:15 - 00000000 ____D () C:\ProgramData\WildTangent
2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-04-12 23:13 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-04 23:58 - 2012-04-12 23:10 - 00000000 ____D () C:\ProgramData\oem
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\MSBuild
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Microsoft Games
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Default
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Device Emulator
2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Business Objects
2014-08-04 23:57 - 2014-04-14 22:46 - 00000000 ____D () C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
2014-08-04 23:57 - 2014-04-14 22:38 - 00000000 ____D () C:\Program Files (x86)\CE Remote Tools
2014-08-04 23:57 - 2014-04-14 22:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Designer Tools
2014-08-04 23:57 - 2014-04-14 08:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-08-04 23:57 - 2014-03-05 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-08-04 23:57 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-08-04 23:57 - 2013-12-12 19:18 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-08-04 23:57 - 2013-07-10 15:47 - 00000000 ____D () C:\Program Files (x86)\Bred
2014-08-04 23:57 - 2013-04-05 20:59 - 00000000 ____D () C:\Program Files (x86)\PreEmptive Solutions
2014-08-04 23:57 - 2013-03-20 21:36 - 00000000 ____D () C:\Program Files (x86)\Globalscape
2014-08-04 23:57 - 2013-03-19 22:37 - 00000000 ____D () C:\Program Files (x86)\Terminator
2014-08-04 23:57 - 2013-03-19 21:28 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-08-04 23:57 - 2013-03-04 16:14 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-08-04 23:57 - 2013-01-19 18:24 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-08-04 23:57 - 2013-01-03 16:35 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-04 23:57 - 2012-07-26 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLocker
2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec IPS
2014-08-04 23:57 - 2012-07-26 02:12 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLockerSuite
2014-08-04 23:57 - 2012-07-26 02:06 - 00000000 ____D () C:\Program Files (x86)\Cyberlink
2014-08-04 23:57 - 2012-04-12 23:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-08-04 23:57 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-08-04 23:57 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games
2014-08-04 23:57 - 2012-04-12 23:12 - 00000000 ____D () C:\Program Files (x86)\newsXpresso
2014-08-04 23:57 - 2012-04-12 23:11 - 00000000 ____D () C:\Program Files (x86)\NTI
2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-08-04 23:57 - 2012-04-12 23:08 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-08-04 23:57 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files (x86)\Windows NT
2014-08-04 23:56 - 2014-04-18 08:31 - 00000000 ___SD () C:\CP_COM - Copy
2014-08-04 23:56 - 2014-04-14 19:52 - 00000000 ____D () C:\inetpub
2014-08-04 23:56 - 2013-04-26 11:34 - 00000000 ____D () C:\JA26042013
2014-08-04 23:56 - 2013-04-02 17:11 - 00000000 ___SD () C:\JA020413
2014-08-04 23:56 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files (x86)\ASIX Electronics Corporation
2014-08-04 23:56 - 2012-04-12 23:40 - 00000000 __SHD () C:\OEM
2014-08-04 23:56 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-08-04 23:56 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\Acer Games
2014-08-04 23:56 - 2012-04-12 23:13 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software
2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData
2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt
2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe
2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt
2014-07-31 22:07 - 2014-06-17 14:21 - 00002659 _____ () C:\Users\Benji\Desktop\WS_FTP.LOG
2014-07-31 21:54 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live
2014-07-31 15:56 - 2013-10-13 04:40 - 00000000 ____D () C:\Program Files (x86)\Porn Terminator
2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk
2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk
2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe
2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}
2014-07-30 16:07 - 2014-08-06 10:46 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup
2014-07-23 13:42 - 2014-07-04 12:00 - 00000710 _____ () C:\Users\Benji\Desktop\x.php
2014-07-18 10:17 - 2014-07-18 10:16 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe
2014-07-18 09:57 - 2014-04-29 21:23 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner Remove Porn Pro
2014-07-10 07:06 - 2014-07-06 13:06 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-07-10 07:06 - 2014-07-06 13:05 - 00002505 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk
2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt

Some content of TEMP:
====================
C:\Users\Benji\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-28 10:33

==================== End Of Log ============================

Link to post
Share on other sites

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-08-2014
Ran by Benji at 2014-08-08 09:00:13
Running from C:\Users\Benji\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Norton Internet Security (Disabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Norton Internet Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 clear.fi SDK - MVP 2 (x32 Version: 2.0.1505 - CyberLink Corp.) Hidden
 clear.fi SDK- Movie 2 (x32 Version: 2.0.1502 - CyberLink Corp.) Hidden
7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version:  - )
Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.100 - NTI Corporation)
Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}) (Version: 1.5.2728.00 - CyberLink Corp.)
Acer Crystal Eye Webcam (x32 Version: 1.5.2728.00 - CyberLink Corp.) Hidden
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3010 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Acer Instant Update Service (HKLM\...\{4E8D1AAE-509F-46DE-AAB4-CE9BCABA2D35}) (Version: 1.00.3001 - Acer Incorporated)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3506 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 20.12.0307.1154 - Acer Incorporated)
Acer Theft Shield (HKLM\...\{8ADB0CD2-4E5A-452F-BB3B-3A2984CAC749}) (Version: 1.00.3001 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3501 - Acer Incorporated)
Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3501 - Acer Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Flash Professional CC (HKLM-x32\...\{B56B95BF-7161-4166-8288-DB1BA9F6C9B8}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.03) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)
Advanced Find and Replace v7.8.1 (HKLM-x32\...\Advanced Find and Replace 7_is1) (Version: 7.8.1 - Abacre Limited)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.126 - Atheros)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2021 - AVAST Software)
AX88772B Windows 7 Drivers (HKLM-x32\...\InstallShield_{54A168C9-2250-4058-80EB-1F4A4192548A}) (Version: 1.0.1.1 - ASIX Electronics Corporation)
AX88772B Windows 7 Drivers (x32 Version: 1.0.1.1 - ASIX Electronics Corporation) Hidden
Backup Manager V3 (x32 Version: 3.0.0.100 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Chronicles of Albian (x32 Version: 2.2.0.95 - WildTangent) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated)
Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Crystal Reports Basic for Visual Studio 2008 (HKLM-x32\...\{AA467959-A1D6-4F45-90CD-11DC57733F32}) (Version: 10.5.0.0 - Business Objects)
Crystal Reports Basic Runtime for Visual Studio 2008 (x64) (HKLM\...\{2BFA9B05-7418-4EDE-A6FC-620427BAAAA3}) (Version: 10.5.0.0 - Business Objects)
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
CyberLink MediaEspresso (x32 Version: 6.5.1720_38230 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Demo Crack (HKLM-x32\...\{C95E1501-EC37-4C01-8E12-7C2D671986D8}) (Version: 1.0.0 -  )
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Dotfuscator Professional Edition Evaluation 4.10 (HKLM-x32\...\{E227823E-E839-4BE9-A429-E72B3E966DEC}) (Version: 4.10.0.11731 - PreEmptive Solutions)
ETDWare PS/2-X64 10.6.9.8_WHQL (HKLM\...\Elantech) (Version: 10.6.9.8 - ELAN Microelectronic Corp.)
ExpressCache (HKLM\...\{1E084588-8CC6-4D1B-B904-B1A09DA22A52}) (Version: 1.0.82 - Diskeeper Corporation)
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36279 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)
Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)
Intel® Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1024 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.23.943.1 - Intel Corporation) Hidden
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 5.1.15 - Acer Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Compact Framework 2.0 SP2 (HKLM-x32\...\{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}) (Version: 2.0.7045 - Microsoft Corporation)
Microsoft .NET Compact Framework 3.5 (HKLM-x32\...\{291B3A3B-F808-45B8-8113-DF232FCB6C82}) (Version: 3.5.7283 - Microsoft Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Device Emulator (64 bit) version 3.0 - ENU (HKLM\...\{EF8B1A2E-9CCB-3AB2-91E3-4EEDAB1294E1}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Document Explorer 2008 (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)
Microsoft Office Visual Web Developer 2007 (x32 Version: 12.0.4518.1066 - Microsoft Corporation) Hidden
Microsoft Office Visual Web Developer MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft PhotoDraw 2000 V2 (HKLM-x32\...\{3C5EA394-1033-11D2-A2CB-00C04F72F31D}) (Version: 2.00.00.0820 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft PVK Import (Remove only) (HKLM-x32\...\PVK-Import) (Version:  - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (HKLM-x32\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 (x32 Version:  - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Setup Support Files (English) (HKLM-x32\...\{9D6D76A6-4328-49E8-97A7-531A74841DA5}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM-x32\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 for Devices ENU (HKLM-x32\...\{241F2BF7-69EB-42A4-9156-96B2426C7504}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM-x32\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C# 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Professional Edition - ENU (HKLM-x32\...\Microsoft Visual Studio 2008 Professional Edition - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Professional Edition - ENU (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger - ENU (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (HKLM-x32\...\{90A80D89-A0E4-33C1-B13D-B93CB3496867}.KB945140) (Version: 1 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)
Microsoft Windows SDK .NET Framework Tools (30514) (Version: 7.1.30514 - Microsoft) Hidden
Microsoft Windows SDK for Visual Studio .NET 4.0 Framework Tools (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{29C93182-34F6-3275-A18D-59326851CD57}) (Version: 3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{9aa5f39c-a8de-46b0-919a-0248f8bc8490}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu (HKLM\...\{DFB3AD2B-4EE2-3077-BF1D-3CA164BC5336}) (Version: 3.5.30729 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32 (HKLM\...\{F5C819A5-E068-4f7d-B91A-1BD18702AFFB}) (Version: 6.1.5295.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{62EED300-E841-4083-A1D6-60B906271804}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{A992BBAA-723D-4574-A07F-983BF8FAA3E1}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Windows 7 (7.1) (HKLM\...\SDKSetup_7.1.7600.0.30514) (Version: 7.1.7600.0.30514 - Microsoft Corporation)
Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft Windows SDK for Windows 7 Common Utilities (30514) (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft Windows SDK Net Fx Interop Headers And Libraries (30514) (Version: 7.1.30514 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.19 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) Hidden
newsXpresso (HKLM-x32\...\InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}) (Version: 1.0.0.40 - esobi Inc.)
newsXpresso (x32 Version: 1.0.0.40 - esobi Inc.) Hidden
NirSoft IconsExtract (HKLM-x32\...\NirSoft IconsExtract) (Version:  - )
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.4.0.13 - Symantec Corporation)
Orca (HKLM-x32\...\{85F4CBCB-9BBC-4B50-A7D8-E1106771498D}) (Version: 3.1.3790.0000 - Microsoft Corporation)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
Porn Terminator (HKLM-x32\...\{63AFDE5F-B004-4F91-8069-B9AB59792904}) (Version: 3.0.0 -  )
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.1 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6597 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.39025 - Realtek Semiconductor Corp.)
Resize Your Picture (HKLM-x32\...\{44559BD3-71A9-4921-AF91-0140D3D07F62}) (Version: 4.0 - Bred)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.1500.0 - SAMSUNG Electronics Co., Ltd.)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Sleep Memory Optimizer (HKLM-x32\...\{34BE2594-1D20-4A2E-97A0-B9E2837520AE}) (Version: 1.00.3004 - Acer Incorporated)
Smart Timer (HKLM-x32\...\{89DB52FC-EA72-468F-A0C7-150AF8B7AB74}) (Version: 1.00.3004 - Acer Incorporated)
SmartAssembly 6 (HKLM\...\{E5D5860E-7287-473E-8932-3A979F43AE12}) (Version: 6.7.1.61 - Red Gate Software Ltd)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)
Sql Server Customer Experience Improvement Program (x32 Version: 10.0.1600.22 - Microsoft Corporation) Hidden
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.26038 - TeamViewer)
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Visual Studio 2008 Professional Edition - ENU (KB972221) (HKLM-x32\...\{D7DAD1E4-45F4-3B2B-899A-EA728167EC4F}.KB972221) (Version: 1 - Microsoft Corporation)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
VC Runtimes MSI (x32 Version: 9.0.21022 - Microsoft) Hidden
Virtual Villagers 5 - New Believers (x32 Version: 2.2.0.97 - WildTangent) Hidden
Visual Studio .NET Prerequisites - English (HKLM\...\{D3E39E77-0EB4-36FB-B97A-8C8AB21B9A45}) (Version: 9.0.21022 - Microsoft Corporation)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.21022 - Microsoft Corporation) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated)
WildTangent Games App (Acer Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile 5.0 SDK R2 for Pocket PC (HKLM-x32\...\{6C9F6D23-E9AD-43C9-B43A-011562AAF876}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
Windows Mobile 5.0 SDK R2 for Smartphone (HKLM-x32\...\{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{3A999A50-AB25-4A20-90A9-08F71FCE320F}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)
CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{98087D89-B93F-4BCF-A998-AE4D9F607C14}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)
CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{B286F068-5B17-4AE8-989B-8F9A199C47BA}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)

==================== Restore Points  =========================

06-08-2014 12:45:53 Windows Update
06-08-2014 14:41:52 Windows Update
07-08-2014 00:35:36 avast! antivirus system restore point
07-08-2014 00:53:14 Installed AVG 2014
07-08-2014 00:54:42 Installed AVG 2014
07-08-2014 17:39:20 Windows Update
08-08-2014 12:07:55 Removed AVG 2014
08-08-2014 12:21:32 Removed AVG 2014
08-08-2014 12:27:45 Removed AVG 2014

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2014-08-06 10:46 - 00450770 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    www.10sek.com
127.0.0.1    10sek.com
127.0.0.1    www.1-2005-search.com
127.0.0.1    1-2005-search.com
127.0.0.1    www.123fporn.info
127.0.0.1    123fporn.info
127.0.0.1    123haustiereundmehr.com
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {084E3E00-6291-4226-8097-0D9E9A6DB467} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2012-02-06] (Acer Incorporated)
Task: {0A3992EB-BAD7-43EB-8718-A751C69CAC84} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink)
Task: {0F143BA5-CFD8-4015-BE18-1A8E8B5098DD} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)
Task: {15C9DDF1-99DB-46A6-B25C-7EA949B2F223} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {16B7594C-C8F9-49FD-AA4B-070B24C7DDC1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-06] (AVAST Software)
Task: {447D8BD7-4480-4C49-82B0-60EFFC7388B8} - System32\Tasks\{2B6DEA2A-4BCE-44F2-96E1-E7D212F6D713} => Firefox.exe http://ui.skype.com/ui/0/6.1.0.129.272/en/abandoninstall?page=tsMain
Task: {68BFD4A5-A790-4B76-B9DF-1F79CABCDF98} - System32\Tasks\Smart Timer Task Scheduler => Smart_Timer.exe
Task: {72AA6030-131F-46A6-BCCF-DC3D25257F88} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {73C21A8B-7846-4E5A-B3B5-558BCB3988B4} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2011-03-28] (Egis Technology Inc.)
Task: {B5F52E9B-7BDF-4E61-95AA-5DC8A68F2ACA} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe [2014-06-26] (Symantec Corporation)
Task: {B7DD77B5-DC7A-4294-BE9B-AACC922A86A9} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2011-03-28] (Egis Technology Inc.)
Task: {C7B86A17-D88C-472C-A843-2F44282D6442} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)
Task: {C9F771D2-F715-4D4E-9B96-A329BDF8992B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)
Task: {E8D11D23-B2AC-42E5-8BB8-0D1CB0D197EB} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (whitelisted) =============

2009-01-21 19:45 - 2009-01-21 19:45 - 01401856 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll
2012-07-26 02:12 - 2012-03-26 21:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00257640 _____ () C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
2012-03-07 00:49 - 2012-03-07 00:49 - 00213608 _____ () C:\Program Files\Acer\Acer Theft Shield\CommPtl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () C:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () C:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () C:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00236648 _____ () c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () c:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () c:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll
2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () c:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll
2012-07-26 01:51 - 2012-03-29 02:36 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
2014-08-06 20:38 - 2014-08-06 20:38 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-08-08 07:55 - 2014-08-08 07:55 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080800\algo.dll
2012-01-05 17:22 - 2012-01-05 17:22 - 00465344 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-01-05 17:22 - 2012-01-05 17:22 - 01081368 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-01-05 17:22 - 2012-01-05 17:22 - 00125464 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2014-08-06 20:38 - 2014-08-06 20:38 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-06 10:28 - 2014-04-25 14:11 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-05-06 10:28 - 2014-04-25 14:11 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-05-06 10:28 - 2014-04-25 14:11 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-05-06 10:28 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-05-06 10:28 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2012-07-26 01:51 - 2012-03-29 02:18 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:661DFA1C
AlternateDataStreams: C:\Users\Benji\AppData\Local\Temp:ZcHVkelT4qnCfa8embJ0LpO9
AlternateDataStreams: C:\Users\Benji\AppData\Local\Temporary Internet Files:aW4DzdLrcpHHzCIzfdyLgut
AlternateDataStreams: C:\Users\Benji\AppData\Local\yHrx86IBEK:obCo7un7065qZARgKSl3VRpZLc

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
MSCONFIG\startupreg: ccFullVersionAlert => C:\Program Files (x86)\Content Cleaner\remindeMe.exe

==================== Faulty Device Manager Devices =============

Name: Symantec Iron Driver
Description: Symantec Iron Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SymIRON
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Symantec Network Security WFP Driver
Description: Symantec Network Security WFP Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SymNetS
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: BHDrvx64
Description: BHDrvx64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: BHDrvx64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: NIS Settings Manager
Description: NIS Settings Manager
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ccSet_NIS
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/08/2014 08:14:10 AM) (Source: MsiInstaller) (EventID: 10005) (User: Benji-PC)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 27054. CA_Error27054: SetupAction(0xC0070642): Installation failed.

Error: (08/08/2014 08:08:31 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary SASKUTIL.

System Error:
The system cannot find the file specified.
.

Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31543199

Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31543199

Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31542185

Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31542185

Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8471

Error: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8471


System errors:
=============
Error: (08/08/2014 08:35:50 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The HP Network Devices Support service terminated with the following error:
%%126

Error: (08/08/2014 08:33:44 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
BHDrvx64
ccSet_NIS
SymIRON
SymNetS

Error: (08/08/2014 08:32:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:
%%1053

Error: (08/08/2014 08:32:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.

Error: (08/08/2014 08:22:15 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The HP Network Devices Support service terminated with the following error:
%%126

Error: (08/08/2014 08:20:13 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
BHDrvx64
ccSet_NIS
SymIRON
SymNetS

Error: (08/08/2014 08:19:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:
%%1053

Error: (08/08/2014 08:19:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.

Error: (08/08/2014 08:17:58 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error:
%%1058

Error: (08/08/2014 08:14:38 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error:
%%1058


Microsoft Office Sessions:
=========================
Error: (08/08/2014 08:14:10 AM) (Source: MsiInstaller) (EventID: 10005) (User: Benji-PC)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 27054. CA_Error27054: SetupAction(0xC0070642): Installation failed.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (08/08/2014 08:08:31 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary SASKUTIL.

System Error:
The system cannot find the file specified.

Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31543199

Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31543199

Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31542185

Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31542185

Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8471

Error: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8471


==================== Memory info ===========================

Percentage of memory in use: 41%
Total physical RAM: 3932.36 MB
Available physical RAM: 2284.14 MB
Total Pagefile: 7862.9 MB
Available Pagefile: 5968.81 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:282.37 GB) (Free:191.83 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 8FBBF039)
Partition 1: (Not Active) - (Size=16 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=282 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 19 GB) (Disk ID: 67229B2C)
Partition 1: (Not Active) - (Size=4 GB) - (Type=84)
Partition 2: (Not Active) - (Size=15 GB) - (Type=73)

==================== End Of Log ============================

Link to post
Share on other sites

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2014
Ran by Benji (administrator) on Benji-PC on 08-08-2014 17:07:52
Running from C:\Users\Benji\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(Acer Incorporated) C:\Program Files\Sleep Memory Optimizer\FFSService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
() C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe
(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
() C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe
() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-15] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2822952 2012-02-24] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)
HKLM\...\Run: [secure Applicayion] => c:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe [257640 2012-03-07] ()
HKLM-x32\...\Run: [backupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-23] (Dritek System Inc.)
HKLM-x32\...\Run: [suiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
ShortcutTarget: Acer VCM.lnk -> C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (No File)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
URLSearchHook: HKLM-x32 - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No File
URLSearchHook: HKCU - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No File
SearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - DefaultScope {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKCU - {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} ->  No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - No Name - {32B29DF0-2237-4370-9A29-37CEBB730E9B} -  No File
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} http://contentpurity.com/xp/ScanFile.CAB
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 64.71.255.204 64.71.255.198

FireFox:
========
FF ProfilePath: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default
FF DefaultSearchEngine: Microsoft (Bing)
FF SearchEngineOrder.1: Microsoft (Bing)
FF SelectedSearchEngine: Microsoft (Bing)
FF Homepage: hxxp://www.msn.com/?pc=AV01
FF Keyword.URL: hxxp://www.bing.com/search
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF SearchPlugin: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\searchplugins\bing-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF Extension: United States English Spellchecker - C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-07-07]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-03]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF
FF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-07-06]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn
FF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-07-22]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

Chrome:
=======
CHR HomePage: hxxp://www.msn.com/?pc=AV01
CHR StartupUrls: "hxxp://www.msn.com/?pc=AV01"
CHR DefaultSearchKeyword: mcafee
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()
CHR Plugin: (McAfee SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.50.146.2_0\McChPlg.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Extension: (Google Drive) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-03]
CHR Extension: (YouTube) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-03]
CHR Extension: (Google Search) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-03]
CHR Extension: (avast! Online Security) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-07]
CHR Extension: (Norton Security Toolbar) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-07]
CHR Extension: (Google Wallet) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (Gmail) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\Exts\Chrome.crx [2014-08-05]
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-02-17] (Diskeeper Corporation)
R2 FFSOpzSvc; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [141192 2011-09-17] (Acer Incorporated)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-29] ()
S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193536 2012-03-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-29] (Intel Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
S4 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation)
R2 USecuAppSvc; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [236648 2012-03-07] ()
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]
S2 HPSLPSVC; C:\Users\Benji\AppData\Local\Temp\7zS226D\hpslpsvc64.dll [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()
S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)
S1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-06-06] (Symantec Corporation)
S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-05] (Symantec Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-02-17] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [92976 2012-02-17] (Diskeeper Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140731.001\IDSvia64.sys [525016 2014-07-03] (Symantec Corporation)
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-03-28] (Intel Corporation)
S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\ENG64.SYS [126040 2014-07-21] (Symantec Corporation)
S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\EX64.SYS [2099288 2014-07-21] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-06] (Symantec Corporation)
S1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

 

Link to post
Share on other sites

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-08 15:13 - 2014-08-08 15:14 - 00000085 _____ () C:\Windows\wininit.ini
2014-08-08 15:13 - 2014-08-08 15:13 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-08-08 08:58 - 2014-08-08 17:08 - 00026075 _____ () C:\Users\Benji\Desktop\FRST.txt
2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp
2014-08-07 21:01 - 2014-08-08 17:07 - 00000000 ____D () C:\FRST
2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe
2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\ProgramData\Avira
2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe
2014-08-06 22:24 - 2014-08-07 18:21 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log
2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 10:46 - 2014-07-30 16:07 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup
2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-08-06 10:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2010
2014-08-06 10:29 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2008
2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2014-08-06 10:29 - 2012-04-13 00:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}
2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-05 21:57 - 2014-08-08 08:58 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-05 20:53 - 2014-08-08 08:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-05 07:51 - 2014-08-05 07:55 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-05 07:24 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-08-05 07:24 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-08-05 07:24 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-08-05 07:24 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-08-05 07:24 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-08-05 07:24 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-08-05 07:24 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-08-05 07:24 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-08-05 07:24 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-08-05 07:24 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-08-05 07:24 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-08-05 07:24 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-08-05 07:23 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-05 07:23 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-05 07:23 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-05 07:23 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-05 07:23 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-05 07:23 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-05 07:23 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-05 07:23 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-05 07:23 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-05 07:23 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-05 07:23 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-05 07:23 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-05 07:23 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-05 07:23 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-05 07:23 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-05 07:23 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-05 07:23 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-05 07:23 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-05 07:23 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-05 07:23 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-05 07:23 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-05 07:23 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-05 07:23 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-05 07:23 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-05 07:23 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-05 07:23 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-05 07:23 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-05 07:23 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-05 07:23 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-05 07:23 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-05 07:23 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-05 07:23 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-05 07:23 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-05 07:23 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-05 07:23 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-05 07:23 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-05 07:23 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-05 07:23 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-05 07:23 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-05 07:23 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-05 07:23 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-05 07:23 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-05 07:23 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-05 07:23 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-05 07:23 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-05 07:23 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-05 07:23 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-05 07:23 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-05 07:23 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-05 07:23 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-05 07:23 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-05 07:23 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-05 07:23 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-05 07:23 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-05 07:23 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-05 07:23 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-05 07:23 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-08-05 07:23 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-08-05 07:23 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-08-05 07:23 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-08-05 07:23 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-08-05 07:23 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-08-05 07:22 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-08-05 07:22 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-08-05 07:22 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-08-05 07:22 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-08-05 07:22 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-08-05 07:22 - 2014-03-24 22:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-05 07:22 - 2014-03-24 22:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-05 07:21 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-08-05 07:21 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-08-05 07:21 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-05 07:21 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-08-05 07:21 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-08-05 07:21 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-08-05 07:20 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-08-05 07:20 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-08-05 07:20 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-08-05 07:20 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-08-05 07:20 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-08-05 07:20 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-08-05 07:20 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-08-05 07:20 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-08-05 07:20 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-08-05 07:20 - 2014-03-04 05:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-08-05 07:20 - 2014-03-04 05:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-08-05 07:20 - 2014-03-04 05:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-08-05 07:20 - 2013-09-24 22:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-08-05 07:20 - 2013-09-24 21:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-08-05 07:20 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-08-05 07:18 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-08-05 07:18 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-08-05 07:18 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-08-05 07:18 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-08-05 07:18 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-08-05 07:18 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-08-05 07:18 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-08-05 07:18 - 2012-11-28 18:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-08-05 07:17 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-08-05 07:17 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-08-05 07:17 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-08-05 07:17 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-08-05 07:17 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-08-05 07:17 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-08-05 07:17 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-08-05 07:17 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-08-05 07:17 - 2013-07-09 01:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-05 07:17 - 2013-07-09 00:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-05 07:17 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-08-05 07:17 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-08-05 07:17 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-08-05 07:17 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-08-05 07:17 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-08-05 07:17 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-08-05 07:17 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-08-05 07:17 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-08-05 07:16 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-08-05 07:16 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-08-05 07:16 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-08-05 07:16 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-08-05 07:16 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-08-05 07:16 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-08-05 07:16 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-08-05 07:16 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-08-05 07:16 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-08-05 07:16 - 2013-10-02 22:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-05 07:16 - 2013-10-02 22:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-05 07:16 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-08-05 07:16 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-08-05 07:16 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-08-05 07:16 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-08-05 07:16 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-08-05 07:16 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-08-05 07:16 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-08-05 07:16 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-08-05 07:15 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-08-05 07:15 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-08-05 07:15 - 2013-11-11 22:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-05 07:15 - 2013-11-11 22:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-05 07:15 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-08-05 07:15 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-08-05 07:15 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-08-05 07:15 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-08-05 07:15 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-08-05 07:15 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-08-05 07:15 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-08-05 07:15 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-08-05 07:15 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-08-05 07:15 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-08-05 07:15 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-08-05 07:15 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-08-05 07:15 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-08-05 07:15 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-08-05 07:15 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-08-05 07:15 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-08-05 07:15 - 2013-04-12 10:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys
2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-08-05 07:15 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys
2014-08-05 07:15 - 2012-06-01 01:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll
2014-08-05 07:15 - 2012-06-01 01:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll
2014-08-05 07:15 - 2012-06-01 01:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll
2014-08-05 07:15 - 2012-06-01 01:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll
2014-08-05 07:15 - 2012-06-01 01:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll
2014-08-05 07:15 - 2012-06-01 01:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe
2014-08-05 07:15 - 2012-06-01 00:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll
2014-08-05 07:15 - 2012-06-01 00:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll
2014-08-05 07:15 - 2012-06-01 00:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll
2014-08-05 07:15 - 2012-06-01 00:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll
2014-08-05 07:15 - 2012-06-01 00:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll
2014-08-05 07:15 - 2012-06-01 00:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe
2014-08-05 07:14 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-08-05 07:14 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-08-05 07:14 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-08-05 07:14 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-08-05 07:14 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-08-05 07:14 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-08-05 07:14 - 2013-02-27 02:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-05 07:14 - 2013-02-27 01:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-05 07:14 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-08-05 07:14 - 2013-02-27 00:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-05 07:13 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-08-05 07:13 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-08-05 07:13 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-08-05 07:13 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-08-05 07:12 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-08-05 07:12 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-08-05 07:12 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-08-05 07:12 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-08-05 07:12 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-08-05 07:12 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-08-05 07:12 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-08-05 07:12 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-08-05 07:12 - 2013-08-01 08:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-05 07:12 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-05 07:12 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-05 07:11 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-08-05 07:11 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-08-05 07:11 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-08-05 07:11 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-08-05 07:11 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-08-05 07:11 - 2013-04-09 19:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-08-05 07:11 - 2013-04-02 18:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-05 00:16 - 2014-08-06 00:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-08-04 23:40 - 2014-08-05 06:24 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys
2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software
2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-04 12:26 - 2014-08-08 08:30 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData
2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt
2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe
2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt
2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk
2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk
2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe
2014-07-31 11:20 - 2014-07-31 21:54 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live
2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}
2014-07-18 10:16 - 2014-07-18 10:17 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe
2014-07-10 07:12 - 2014-08-05 00:08 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-08 17:08 - 2014-08-08 08:58 - 00026075 _____ () C:\Users\Benji\Desktop\FRST.txt
2014-08-08 17:07 - 2014-08-07 21:01 - 00000000 ____D () C:\FRST
2014-08-08 17:05 - 2012-07-26 01:43 - 01211222 _____ () C:\Windows\WindowsUpdate.log
2014-08-08 17:01 - 2013-01-03 16:35 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-08 17:01 - 2012-07-26 01:51 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-08-08 17:01 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-08 17:01 - 2009-07-14 00:51 - 00107670 _____ () C:\Windows\setupact.log
2014-08-08 16:08 - 2009-07-14 00:45 - 00024416 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-08 16:08 - 2009-07-14 00:45 - 00024416 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-08 15:17 - 2014-05-06 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-08 15:17 - 2010-11-20 23:47 - 01112328 _____ () C:\Windows\PFRO.log
2014-08-08 15:14 - 2014-08-08 15:13 - 00000085 _____ () C:\Windows\wininit.ini
2014-08-08 15:13 - 2014-08-08 15:13 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-08-08 10:40 - 2013-01-03 16:35 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-08 09:49 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-08-08 08:58 - 2014-08-05 21:57 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-08 08:33 - 2013-01-03 16:35 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-08 08:30 - 2014-08-04 12:26 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\ProgramData\McAfee
2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\ProgramData\Avira
2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-08 08:07 - 2014-04-05 09:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp
2014-08-08 08:03 - 2013-02-06 19:12 - 00000000 ____D () C:\Program Files\McAfee
2014-08-08 08:01 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe
2014-08-07 18:48 - 2012-07-26 01:51 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-08-07 18:21 - 2014-08-06 22:24 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log
2014-08-07 14:01 - 2013-01-09 18:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\CrashDumps
2014-08-07 13:46 - 2013-03-20 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-07 13:45 - 2013-01-05 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-08-06 22:37 - 2013-01-11 20:07 - 23339520 ___SH () C:\Users\Benji\Desktop\Thumbs.db
2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe
2014-08-06 22:19 - 2009-07-14 01:13 - 00911372 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-06 20:42 - 2013-01-11 17:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-06 20:39 - 2014-05-03 13:01 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-06 20:38 - 2014-05-03 13:00 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-08-06 20:38 - 2014-05-03 13:00 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-06 20:38 - 2013-03-16 23:10 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-06 20:38 - 2013-03-16 23:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-06 20:38 - 2013-01-03 16:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-06 20:38 - 2013-01-03 16:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-06 20:26 - 2014-05-06 10:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini
2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool
2014-08-06 10:26 - 2014-04-14 19:52 - 00039270 _____ () C:\Windows\iis7.log
2014-08-06 10:23 - 2009-07-14 00:45 - 05080184 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-06 10:09 - 2012-04-12 23:50 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv
2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-08-06 10:01 - 2013-01-03 17:01 - 00919700 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-08-06 10:01 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2014-08-06 09:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2010
2014-08-06 09:29 - 2014-03-05 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
2014-08-06 09:07 - 2013-04-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-06 09:01 - 2014-04-14 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 2008
2014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 2008
2014-08-06 08:25 - 2014-05-03 15:52 - 00000000 ____D () C:\Program Files (x86)\AbiWord
2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}
2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-06 00:29 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-08-06 00:29 - 2013-01-03 16:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-06 00:29 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration
2014-08-06 00:28 - 2013-01-03 16:34 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com
2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-05 20:32 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji
2014-08-05 13:43 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Skype
2014-08-05 13:43 - 2012-04-12 23:18 - 00000000 ____D () C:\ProgramData\Skype
2014-08-05 07:55 - 2014-08-05 07:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-05 06:24 - 2014-08-04 23:40 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys
2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-08-05 00:10 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-08-05 00:08 - 2014-07-10 07:12 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security
2014-08-05 00:08 - 2014-07-06 13:04 - 00000000 ____D () C:\Windows\system32\Drivers\NISx64
2014-08-05 00:07 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\AppCompat
2014-08-05 00:06 - 2014-07-06 13:06 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security
2014-08-05 00:06 - 2014-01-16 14:32 - 00000000 ____D () C:\ProgramData\Norton
2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files\Bonjour
2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-08-05 00:06 - 2013-03-12 15:20 - 00000000 ____D () C:\Program Files\WinRAR
2014-08-05 00:06 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Common Files\Diskeeper Corporation
2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files\Sleep Memory Optimizer
2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files (x86)\EgisTec Shredder
2014-08-05 00:06 - 2012-07-26 01:59 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files\Elantech
2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files (x86)\Atheros
2014-08-05 00:06 - 2012-07-26 01:55 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-08-05 00:06 - 2012-07-26 01:52 - 00000000 ____D () C:\Dolby PCEE4
2014-08-05 00:06 - 2012-04-12 23:12 - 00000000 ____D () C:\ProgramData\BackupManager
2014-08-05 00:05 - 2013-07-20 18:55 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner
2014-08-05 00:03 - 2013-01-06 13:18 - 00000000 ____D () C:\workwebsites
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-08-05 00:02 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\SysWOW64\WindowsPowerShell
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Web
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Vss
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\spp
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Speech
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-08-05 00:01 - 2012-04-12 23:11 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\nti
2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\InstallShield
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\IME
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spp
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spool
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Speech
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\SMI
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\IME
2014-08-05 00:00 - 2014-04-14 19:52 - 00000000 ____D () C:\Windows\system32\BestPractices
2014-08-05 00:00 - 2014-03-05 18:30 - 00000000 ____D () C:\Windows\symbols
2014-08-05 00:00 - 2012-07-26 02:27 - 00000000 ____D () C:\Windows\NAPP_Dism_Log
2014-08-05 00:00 - 2012-04-12 23:19 - 00000000 ____D () C:\Windows\oem
2014-08-05 00:00 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\Performance
2014-08-05 00:00 - 2009-07-14 00:45 - 00000000 ____D () C:\Windows\Setup
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\com
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Speech
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\servicing
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\security
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\schemas
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Resources
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PLA
2014-08-04 23:59 - 2012-04-12 23:12 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 __RSD () C:\Windows\Media
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\IME
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Help
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Globalization
2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Branding
2014-08-04 23:59 - 2009-03-12 05:30 - 00000000 ____D () C:\Windows\LP
2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2014-05-15 15:25 - 00000000 ____D () C:\Program Files\SAMSUNG
2014-08-04 23:58 - 2014-04-14 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A
2014-08-04 23:58 - 2014-04-14 22:49 - 00000000 ____D () C:\Program Files\Business Objects
2014-08-04 23:58 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files\Microsoft Device Emulator
2014-08-04 23:58 - 2014-04-14 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2014-08-04 23:58 - 2014-04-14 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
2014-08-04 23:58 - 2014-04-14 08:47 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.0
2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Virtualized Applications
2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
2014-08-04 23:58 - 2014-04-05 09:58 - 00000000 ____D () C:\Program Files\GIMP 2
2014-08-04 23:58 - 2014-03-12 22:46 - 00000000 ____D () C:\Users\Benji\android
2014-08-04 23:58 - 2014-03-12 22:45 - 00000000 ____D () C:\Program Files\Java
2014-08-04 23:58 - 2014-03-12 20:57 - 00000000 ____D () C:\Users\Benji\Desktop\adt-bundle-windows-x86_64-20131030
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Users\Benji\Documents\Visual Studio 2010
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.0
2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer
2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v7.1
2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\Program Files\Microsoft SDKs
2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Adobe
2014-08-04 23:58 - 2013-07-10 15:47 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bred
2014-08-04 23:58 - 2013-06-25 22:45 - 00000000 ____D () C:\Users\Benji\Desktop\BoogoDEMO2506
2014-08-04 23:58 - 2013-06-15 07:52 - 00000000 ____D () C:\Users\Benji\.gimp-2.8
2014-08-04 23:58 - 2013-04-12 16:40 - 00000000 ____D () C:\Program Files\Red Gate
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\PreEmptive Solutions
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\PreEmptive Solutions
2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PreEmptive Solutions
2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Red Gate
2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\IsolatedStorage
2014-08-04 23:58 - 2013-03-27 18:36 - 00000000 ____D () C:\Users\Benji\Desktop\PuDongPuxi-DONE
2014-08-04 23:58 - 2013-03-20 21:37 - 00000000 ____D () C:\Users\Benji\AppData\Local\Globalscape
2014-08-04 23:58 - 2013-03-16 17:19 - 00000000 ____D () C:\Program Files\ptdemo
2014-08-04 23:58 - 2013-01-27 13:39 - 00000000 ____D () C:\ProgramData\Apple
2014-08-04 23:58 - 2013-01-24 11:12 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\NCH Software
2014-08-04 23:58 - 2013-01-23 17:48 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Digiarty
2014-08-04 23:58 - 2013-01-21 17:40 - 00000000 ____D () C:\ProgramData\NaturalSoft
2014-08-04 23:58 - 2013-01-14 10:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-04 23:58 - 2013-01-06 11:14 - 00000000 ___SD () C:\PT
2014-08-04 23:58 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Local\CyberLink
2014-08-04 23:58 - 2013-01-03 17:02 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SoftGrid Client
2014-08-04 23:58 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Mozilla
2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Mozilla
2014-08-04 23:58 - 2013-01-03 16:35 - 00000000 ____D () C:\Users\Benji\AppData\Local\Google
2014-08-04 23:58 - 2013-01-03 16:34 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-08-04 23:58 - 2013-01-03 16:13 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Adobe
2014-08-04 23:58 - 2013-01-03 16:05 - 00000000 ____D () C:\ProgramData\OEM_E471269A730E
2014-08-04 23:58 - 2013-01-03 16:04 - 00000000 ____D () C:\Program Files\Preload
2014-08-04 23:58 - 2013-01-03 16:01 - 00000000 ____D () C:\Users\Benji\AppData\Local\VirtualStore
2014-08-04 23:58 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Diskeeper Corporation
2014-08-04 23:58 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files\EgisTec IPS
2014-08-04 23:58 - 2012-07-26 02:04 - 00000000 ____D () C:\ProgramData\CLSK
2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\install_clap
2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\CyberLink
2014-08-04 23:58 - 2012-07-26 02:02 - 00000000 ____D () C:\Users\Public\OEM
2014-08-04 23:58 - 2012-07-26 01:58 - 00000000 ____D () C:\ProgramData\Atheros
2014-08-04 23:58 - 2012-07-26 01:53 - 00000000 ____D () C:\ProgramData\Temp
2014-08-04 23:58 - 2012-07-26 01:52 - 00000000 ____D () C:\Program Files\Realtek
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Intel
2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\Program Files\Intel
2014-08-04 23:58 - 2012-07-26 01:48 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\ProgramData\Acer
2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files\Acer
2014-08-04 23:58 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files\Windows Live
2014-08-04 23:58 - 2012-04-12 23:15 - 00000000 ____D () C:\ProgramData\WildTangent
2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-08-04 23:58 - 2012-04-12 23:13 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-04 23:58 - 2012-04-12 23:10 - 00000000 ____D () C:\ProgramData\oem
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\MSBuild
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Microsoft Games
2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Default
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Device Emulator
2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Business Objects
2014-08-04 23:57 - 2014-04-14 22:46 - 00000000 ____D () C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
2014-08-04 23:57 - 2014-04-14 22:38 - 00000000 ____D () C:\Program Files (x86)\CE Remote Tools
2014-08-04 23:57 - 2014-04-14 22:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Designer Tools
2014-08-04 23:57 - 2014-04-14 08:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.0
2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2014-08-04 23:57 - 2014-03-05 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.0
2014-08-04 23:57 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs
2014-08-04 23:57 - 2013-12-12 19:18 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-08-04 23:57 - 2013-07-10 15:47 - 00000000 ____D () C:\Program Files (x86)\Bred
2014-08-04 23:57 - 2013-04-05 20:59 - 00000000 ____D () C:\Program Files (x86)\PreEmptive Solutions
2014-08-04 23:57 - 2013-03-20 21:36 - 00000000 ____D () C:\Program Files (x86)\Globalscape
2014-08-04 23:57 - 2013-03-19 22:37 - 00000000 ____D () C:\Program Files (x86)\Terminator
2014-08-04 23:57 - 2013-03-19 21:28 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-08-04 23:57 - 2013-03-04 16:14 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-08-04 23:57 - 2013-01-19 18:24 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-08-04 23:57 - 2013-01-03 16:35 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-04 23:57 - 2012-07-26 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLocker
2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec IPS
2014-08-04 23:57 - 2012-07-26 02:12 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLockerSuite
2014-08-04 23:57 - 2012-07-26 02:06 - 00000000 ____D () C:\Program Files (x86)\Cyberlink
2014-08-04 23:57 - 2012-04-12 23:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-08-04 23:57 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-08-04 23:57 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games
2014-08-04 23:57 - 2012-04-12 23:12 - 00000000 ____D () C:\Program Files (x86)\newsXpresso
2014-08-04 23:57 - 2012-04-12 23:11 - 00000000 ____D () C:\Program Files (x86)\NTI
2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-08-04 23:57 - 2012-04-12 23:08 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-08-04 23:57 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files (x86)\Windows NT
2014-08-04 23:56 - 2014-04-18 08:31 - 00000000 ___SD () C:\CP_COM - Copy
2014-08-04 23:56 - 2014-04-14 19:52 - 00000000 ____D () C:\inetpub
2014-08-04 23:56 - 2013-04-26 11:34 - 00000000 ____D () C:\JA26042013
2014-08-04 23:56 - 2013-04-02 17:11 - 00000000 ___SD () C:\JA020413
2014-08-04 23:56 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files (x86)\ASIX Electronics Corporation
2014-08-04 23:56 - 2012-04-12 23:40 - 00000000 __SHD () C:\OEM
2014-08-04 23:56 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-08-04 23:56 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\Acer Games
2014-08-04 23:56 - 2012-04-12 23:13 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files
2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software
2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData
2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt
2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe
2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt
2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt
2014-07-31 22:07 - 2014-06-17 14:21 - 00002659 _____ () C:\Users\Benji\Desktop\WS_FTP.LOG
2014-07-31 21:54 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live
2014-07-31 15:56 - 2013-10-13 04:40 - 00000000 ____D () C:\Program Files (x86)\Porn Terminator
2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk
2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk
2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe
2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}
2014-07-30 16:07 - 2014-08-06 10:46 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup
2014-07-23 13:42 - 2014-07-04 12:00 - 00000710 _____ () C:\Users\Benji\Desktop\x.php
2014-07-18 10:17 - 2014-07-18 10:16 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe
2014-07-18 09:57 - 2014-04-29 21:23 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner Remove Porn Pro
2014-07-10 07:06 - 2014-07-06 13:06 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt

Some content of TEMP:
====================
C:\Users\Benji\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-08 09:39

==================== End Of Log ============================

Link to post
Share on other sites