pleasehelpstuck Posted August 7, 2014 ID:863815 Share Posted August 7, 2014 Hi All, My computer is infected with a virus but not a single anti-virus solution is able to to detect it. I scanned in safe mode. Nothing. The virus keeps deleting text, typed repeated "=". sometimes prevents me from opening windows such as windows update. Was able to upldate after a lots .of work. Here is the hijackthis log. Please help: Logfile of Trend Micro HijackThis v2.0.5Scan saved at 6:21:54 PM, on 07/08/2014Platform: Windows 7 SP1 (WinNT 6.00.3505)MSIE: Internet Explorer v11.0 (11.00.9600.17207)FIREFOX: 31.0 (x86 en-US)Boot mode: NormalRunning processes:C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exeC:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exeC:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exeC:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exeC:\Program Files (x86)\Launch Manager\LManager.exeC:\Program Files\AVAST Software\Avast\AvastUI.exeC:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exeC:\Program Files (x86)\AVG\AVG2014\avgui.exeC:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exeC:\Windows\SysWOW64\ctfmon.exeC:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exeC:\Users\Benji\Desktop\HijackThis.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/...=AVASDF&PC=AV01R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htmR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dllR3 - URLSearchHook: (no name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - (no file)F2 - REG:system.ini: UserInit=userinit.exe,O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dllO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllO2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dllO2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLLO2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dllO2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dllO2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dllO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dllO3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dllO4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -kO4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostartO4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exeO4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /noguiO4 - HKLM\..\Run: [sDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLYO4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /minO4 - HKLM\..\Run: [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exeO4 - HKCU\..\Run: [spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autocleanO4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeO4 - HKUS\S-1-5-18\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')O4 - Global Startup: Acer VCM.lnk = ?O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exeO8 - Extra context menu item: Open Picture in &Microsoft PhotoDraw - res://C:\PROGRA~2\MICROS~4\Office\1033\phdintl.dll/phdContext.htmO9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dllO9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dllO9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\OFFICE11\REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dllO10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dllO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphicsO16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset...lineScanner.cabO16 - DPF: {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} (ScanFile.FileScan) - http://contentpurity...xp/ScanFile.CABO18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dllO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dllO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dllO18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dllO20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXEO23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeO23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exeO23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exeO23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exeO23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exeO23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exeO23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exeO23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exeO23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exeO23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exeO23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exeO23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exeO23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exeO23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)O23 - Service: Sleep memory optimizer (FFSOpzSvc) - Acer Incorporated - C:\Program Files\Sleep Memory Optimizer\FFSService.exeO23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exeO23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exeO23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exeO23 - Service: Intel® ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exeO23 - Service: Intel® Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\Windows\SysWOW64\irstrtsv.exeO23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exeO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exeO23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exeO23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exeO23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exeO23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exeO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exeO23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exeO23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exeO23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exeO23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exeO23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exeO23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exeO23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exeO23 - Service: Acer Theft Shield Service (USecuAppSvc) - Unknown owner - c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exeO23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe--End of file - 14919 bytes Link to post Share on other sites More sharing options...
deeprybka Posted August 7, 2014 ID:863821 Share Posted August 7, 2014 Hi & My name is Jürgen and I will be assisting you with your Malware related problems. Before we move on, please read the following points carefully. My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.Perform everything in the correct order. Sometimes one step requires the previous one.If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.P2P/Piracy Warning:If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here.Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now and read the policy on Piracy.Step 1 Please run a FRST scan. This will help us diagnose your problem. Please download Farbar Recovery Scan Tool and save it to your Desktop. (If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)Start FRST with administator privileges.Make sure the option Addition.txt is checked and press the Scan button.When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.Please copy and paste these logs in your next reply. Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:863883 Share Posted August 8, 2014 Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2014Ran by Benji (administrator) on Benji-PC on 07-08-2014 21:01:57Running from C:\Users\Benji\DesktopPlatform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 11Boot Mode: NormalThe only official download link for FRST:Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe(Microsoft Corporation) C:\Windows\System32\wlanext.exe(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe(Acer Incorporated) C:\Program Files\Sleep Memory Optimizer\FFSService.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe(Microsoft Corporation) C:\Windows\System32\rundll32.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe() C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe(CyberLink) C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe() C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe(Intel Corporation) C:\Windows\System32\igfxext.exe(Intel Corporation) C:\Windows\System32\igfxsrvc.exe(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe==================== Registry (Whitelisted) ==================(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-15] (Realtek Semiconductor)HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2822952 2012-02-24] (ELAN Microelectronics Corp.)HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)HKLM\...\Run: [secure Applicayion] => c:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe [257640 2012-03-07] ()HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)HKLM-x32\...\Run: [backupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-23] (Dritek System Inc.)HKLM-x32\...\Run: [suiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5187088 2014-07-10] (AVG Technologies CZ, s.r.o.)HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-07-23] (Avira Operations GmbH & Co. KG)HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [189520 2014-07-07] (Avira Operations GmbH & Co. KG)Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]HKU\.DEFAULT\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-19\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-20\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-21-3222356215-3916699849-2517307691-1000\...\Run: [spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566984 2014-04-25] (Safer-Networking Ltd.)HKU\S-1-5-21-3222356215-3916699849-2517307691-1000\...\Run: [sUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7757592 2014-07-31] (SUPERAntiSpyware)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnkShortcutTarget: Acer VCM.lnk -> C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnkShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)BootExecute: autocheck autochk * sdnclean64.exe==================== Internet (Whitelisted) ====================(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01URLSearchHook: HKLM-x32 - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No FileURLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)URLSearchHook: HKCU - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No FileSearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKCU - DefaultScope {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKCU - {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO-x32: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No FileToolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)Toolbar: HKCU - No Name - {32B29DF0-2237-4370-9A29-37CEBB730E9B} - No FileDPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cabDPF: HKLM-x32 {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} http://contentpurity.com/xp/ScanFile.CABHandler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - No FileHandler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No FileHosts: There are more than one entry in Hosts. See Hosts section of Addition.txtTcpip\Parameters: [DhcpNameServer] 64.71.255.204 64.71.255.198 Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:863885 Share Posted August 8, 2014 FireFox:========FF ProfilePath: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.defaultFF DefaultSearchEngine: Microsoft (Bing)FF SearchEngineOrder.1: Microsoft (Bing)FF SelectedSearchEngine: Microsoft (Bing)FF Homepage: hxxp://www.msn.com/?pc=AV01FF Keyword.URL: hxxp://www.bing.com/searchFF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin: @microsoft.com/GENUINE -> disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)FF Plugin-x32: @microsoft.com/GENUINE -> disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)FF SearchPlugin: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\searchplugins\bing-avast.xmlFF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xmlFF Extension: United States English Spellchecker - C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-07-07]FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisorFF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2012-04-12]FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FFFF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-03]FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFFFF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-07-06]FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgnFF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-07-22]FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpiFF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]Chrome:=======CHR HomePage: hxxp://www.msn.com/?pc=AV01CHR StartupUrls: "hxxp://www.msn.com/?pc=AV01"CHR DefaultSearchKeyword: mcafeeCHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ()CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewerCHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()CHR Plugin: (McAfee SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.50.146.2_0\McChPlg.dll No FileCHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No FileCHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No FileCHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No FileCHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No FileCHR Extension: (Google Drive) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-03]CHR Extension: (YouTube) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-03]CHR Extension: (Google Search) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-03]CHR Extension: (SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2014-08-07]CHR Extension: (avast! Online Security) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-07]CHR Extension: (Norton Security Toolbar) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-07]CHR Extension: (Google Wallet) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]CHR Extension: (Gmail) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-03]CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\Exts\Chrome.crx [2014-08-05]CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION==================== Services (Whitelisted) =================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-07-23] (Avira Operations GmbH & Co. KG)R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-07-23] (Avira Operations GmbH & Co. KG)R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3244048 2014-07-10] (AVG Technologies CZ, s.r.o.)R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-07-10] (AVG Technologies CZ, s.r.o.)R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [141392 2014-07-07] (Avira Operations GmbH & Co. KG)R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-02-17] (Diskeeper Corporation)R2 FFSOpzSvc; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [141192 2011-09-17] (Acer Incorporated)R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-29] ()S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193536 2012-03-27] (Intel Corporation)R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-29] (Intel Corporation)R2 McAfee SiteAdvisor Service; c:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [156904 2014-07-28] (McAfee, Inc.)S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation)S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)S4 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation)R2 USecuAppSvc; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [236648 2012-03-07] ()R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]S2 HPSLPSVC; C:\Users\Benji\AppData\Local\Temp\7zS226D\hpslpsvc64.dll [X]==================== Drivers (Whitelisted) ====================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-06] (AVAST Software)R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [242968 2014-06-17] (AVG Technologies CZ, s.r.o.)R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-06-17] (AVG Technologies CZ, s.r.o.)R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-23] (Avira Operations GmbH & Co. KG)R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-06-17] (AVG Technologies CZ, s.r.o.)R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-07-23] (Avira Operations GmbH & Co. KG)R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-07-23] (Avira Operations GmbH & Co. KG)S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)S1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-06-06] (Symantec Corporation)S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-05] (Symantec Corporation)R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-02-17] (Diskeeper Corporation)R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [92976 2012-02-17] (Diskeeper Corporation)R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140731.001\IDSvia64.sys [525016 2014-07-03] (Symantec Corporation)R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-03-28] (Intel Corporation)R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\ENG64.SYS [126040 2014-07-21] (Symantec Corporation)S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\EX64.SYS [2099288 2014-07-21] (Symantec Corporation)R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-06] (Symantec Corporation)S1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)==================== NetSvcs (Whitelisted) ===================(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)==================== One Month Created Files and Folders ========(If an entry is included in the fixlist, the file\folder will be moved.)2014-08-07 21:01 - 2014-08-07 21:02 - 00034559 _____ () C:\Users\Benji\Desktop\FRST.txt2014-08-07 21:01 - 2014-08-07 21:02 - 00000000 ____D () C:\FRST2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe2014-08-07 13:36 - 2014-08-07 13:36 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Avira2014-08-07 13:32 - 2014-08-07 13:32 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk2014-08-07 13:27 - 2014-07-23 13:29 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys2014-08-07 13:27 - 2014-07-23 13:29 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys2014-08-07 13:27 - 2014-07-23 13:29 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys2014-08-07 13:19 - 2014-08-07 13:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira2014-08-07 13:18 - 2014-08-07 13:31 - 00000000 ____D () C:\Program Files (x86)\Avira2014-08-07 13:18 - 2014-08-07 13:27 - 00000000 ____D () C:\ProgramData\Avira2014-08-07 13:17 - 2014-08-07 13:18 - 04050840 _____ (Avira Operations GmbH & Co. KG) C:\Users\Benji\Desktop\avira_en_av___dlc.exe2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe2014-08-06 22:24 - 2014-08-07 18:21 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe2014-08-06 20:56 - 2014-08-06 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG2014-08-06 20:56 - 2014-08-06 20:56 - 00000969 _____ () C:\Users\Public\Desktop\AVG 2014.lnk2014-08-06 20:49 - 2014-08-06 20:49 - 04755832 _____ (AVG Technologies) C:\Users\Benji\Desktop\avg_avct_stb_all_2014_4744_cnet.exe2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr2014-08-06 10:46 - 2014-07-30 16:07 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool2014-08-06 10:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20102014-08-06 10:29 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20082014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia2014-08-06 10:29 - 2012-04-13 00:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20102014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20082014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2014-08-06 07:25 - 2014-08-06 07:25 - 06770064 _____ () C:\Users\Benji\Desktop\bitdefender_antivirus.exe2014-08-06 06:23 - 2014-08-06 06:23 - 00002121 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk2014-08-06 06:22 - 2014-08-06 06:23 - 00000000 ____D () C:\Program Files\Microsoft Security Client2014-08-06 06:22 - 2014-08-06 06:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client2014-08-05 21:57 - 2014-08-06 06:23 - 00001945 _____ () C:\Windows\epplauncher.mif2014-08-05 21:53 - 2014-08-05 21:54 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe2014-08-05 20:53 - 2014-08-05 21:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware2014-08-05 20:49 - 2014-08-05 20:49 - 18549136 _____ (SUPERAntiSpyware) C:\Users\Benji\Desktop\SUPERAntiSpyware.exe2014-08-05 07:51 - 2014-08-05 07:55 - 00000000 ____D () C:\Windows\system32\MRT2014-08-05 07:24 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe2014-08-05 07:24 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll2014-08-05 07:24 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll2014-08-05 07:24 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe2014-08-05 07:24 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll2014-08-05 07:24 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe2014-08-05 07:24 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe2014-08-05 07:24 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll2014-08-05 07:24 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll2014-08-05 07:24 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll2014-08-05 07:24 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe2014-08-05 07:23 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll2014-08-05 07:23 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll2014-08-05 07:23 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2014-08-05 07:23 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2014-08-05 07:23 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-08-05 07:23 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2014-08-05 07:23 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2014-08-05 07:23 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2014-08-05 07:23 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll2014-08-05 07:23 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-08-05 07:23 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2014-08-05 07:23 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2014-08-05 07:23 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2014-08-05 07:23 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2014-08-05 07:23 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-08-05 07:23 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-08-05 07:23 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2014-08-05 07:23 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2014-08-05 07:23 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll2014-08-05 07:23 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll2014-08-05 07:23 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2014-08-05 07:23 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2014-08-05 07:23 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-08-05 07:23 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2014-08-05 07:23 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll2014-08-05 07:23 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2014-08-05 07:23 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2014-08-05 07:23 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2014-08-05 07:23 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-08-05 07:23 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll2014-08-05 07:23 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2014-08-05 07:23 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2014-08-05 07:23 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2014-08-05 07:23 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2014-08-05 07:23 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2014-08-05 07:23 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2014-08-05 07:23 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2014-08-05 07:23 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2014-08-05 07:23 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-08-05 07:23 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll2014-08-05 07:23 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll2014-08-05 07:23 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2014-08-05 07:23 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2014-08-05 07:23 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2014-08-05 07:23 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll2014-08-05 07:23 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-08-05 07:23 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2014-08-05 07:23 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2014-08-05 07:23 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2014-08-05 07:23 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2014-08-05 07:23 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2014-08-05 07:23 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2014-08-05 07:23 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2014-08-05 07:23 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2014-08-05 07:23 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2014-08-05 07:23 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2014-08-05 07:23 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll2014-08-05 07:23 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll2014-08-05 07:23 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll2014-08-05 07:23 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll2014-08-05 07:23 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll2014-08-05 07:23 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll2014-08-05 07:22 - 2014-08-05 07:22 - 00000000 ____D () C:\Program Files (x86)\ESET2014-08-05 07:22 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll2014-08-05 07:22 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll2014-08-05 07:22 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys2014-08-05 07:22 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll2014-08-05 07:22 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll2014-08-05 07:22 - 2014-03-24 22:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll2014-08-05 07:22 - 2014-03-24 22:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll2014-08-05 07:21 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe2014-08-05 07:21 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe2014-08-05 07:21 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2014-08-05 07:21 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys2014-08-05 07:21 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS2014-08-05 07:21 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys2014-08-05 07:20 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll2014-08-05 07:20 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll2014-08-05 07:20 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll2014-08-05 07:20 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys2014-08-05 07:20 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys2014-08-05 07:20 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll2014-08-05 07:20 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe2014-08-05 07:20 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll2014-08-05 07:20 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll2014-08-05 07:20 - 2014-03-04 05:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll2014-08-05 07:20 - 2013-09-24 22:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll2014-08-05 07:20 - 2013-09-24 21:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll2014-08-05 07:20 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys2014-08-05 07:18 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys2014-08-05 07:18 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys2014-08-05 07:18 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll2014-08-05 07:18 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll2014-08-05 07:18 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys2014-08-05 07:18 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys2014-08-05 07:18 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll2014-08-05 07:18 - 2012-11-28 18:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf2014-08-05 07:17 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll2014-08-05 07:17 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll2014-08-05 07:17 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys2014-08-05 07:17 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll2014-08-05 07:17 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll2014-08-05 07:17 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll2014-08-05 07:17 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll2014-08-05 07:17 - 2013-07-09 01:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll2014-08-05 07:17 - 2013-07-09 00:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll2014-08-05 07:17 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys2014-08-05 07:17 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys2014-08-05 07:17 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll2014-08-05 07:17 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll2014-08-05 07:17 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll2014-08-05 07:17 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll2014-08-05 07:17 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll2014-08-05 07:17 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll2014-08-05 07:16 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll2014-08-05 07:16 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll2014-08-05 07:16 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll2014-08-05 07:16 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe2014-08-05 07:16 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll2014-08-05 07:16 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe2014-08-05 07:16 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe2014-08-05 07:16 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys2014-08-05 07:16 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys2014-08-05 07:16 - 2013-10-02 22:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll2014-08-05 07:16 - 2013-10-02 22:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll2014-08-05 07:16 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe2014-08-05 07:16 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll2014-08-05 07:16 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll2014-08-05 07:16 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll2014-08-05 07:16 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll2014-08-05 07:16 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll2014-08-05 07:16 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys2014-08-05 07:15 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll2014-08-05 07:15 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll2014-08-05 07:15 - 2013-11-11 22:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll2014-08-05 07:15 - 2013-11-11 22:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll2014-08-05 07:15 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll2014-08-05 07:15 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll2014-08-05 07:15 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll2014-08-05 07:15 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll2014-08-05 07:15 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll2014-08-05 07:15 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll2014-08-05 07:15 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll2014-08-05 07:15 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll2014-08-05 07:15 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll2014-08-05 07:15 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll2014-08-05 07:15 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll2014-08-05 07:15 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe2014-08-05 07:15 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe2014-08-05 07:15 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll2014-08-05 07:15 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll2014-08-05 07:15 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll2014-08-05 07:15 - 2013-04-12 10:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys2014-08-05 07:15 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys2014-08-05 07:15 - 2012-06-01 01:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll2014-08-05 07:15 - 2012-06-01 01:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll2014-08-05 07:15 - 2012-06-01 01:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll2014-08-05 07:15 - 2012-06-01 01:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll2014-08-05 07:15 - 2012-06-01 01:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll2014-08-05 07:15 - 2012-06-01 01:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe2014-08-05 07:15 - 2012-06-01 00:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll2014-08-05 07:15 - 2012-06-01 00:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll2014-08-05 07:15 - 2012-06-01 00:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll2014-08-05 07:15 - 2012-06-01 00:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll2014-08-05 07:15 - 2012-06-01 00:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll2014-08-05 07:15 - 2012-06-01 00:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe2014-08-05 07:14 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll2014-08-05 07:14 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll2014-08-05 07:14 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll2014-08-05 07:14 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll2014-08-05 07:14 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll2014-08-05 07:14 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll2014-08-05 07:14 - 2013-02-27 02:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe2014-08-05 07:14 - 2013-02-27 01:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll2014-08-05 07:14 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll2014-08-05 07:14 - 2013-02-27 00:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll2014-08-05 07:13 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll2014-08-05 07:13 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll2014-08-05 07:13 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL2014-08-05 07:13 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL2014-08-05 07:12 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx2014-08-05 07:12 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll2014-08-05 07:12 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx2014-08-05 07:12 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll2014-08-05 07:12 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe2014-08-05 07:12 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe2014-08-05 07:12 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe2014-08-05 07:12 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe2014-08-05 07:12 - 2013-08-01 08:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys2014-08-05 07:12 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys2014-08-05 07:12 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll2014-08-05 07:11 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll2014-08-05 07:11 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL2014-08-05 07:11 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL2014-08-05 07:11 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll2014-08-05 07:11 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL2014-08-05 07:11 - 2013-04-09 19:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll2014-08-05 07:11 - 2013-04-02 18:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab2014-08-05 00:22 - 2014-08-05 00:23 - 150775104 _____ () C:\Users\Benji\Desktop\setup_11.0.3.7.x01_2014_08_05_06_25.exe2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast2014-08-05 00:16 - 2014-08-06 00:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\Program Files\McAfee Security Scan2014-08-05 00:15 - 2014-08-05 00:15 - 08461968 _____ (McAfee, Inc.) C:\Users\Benji\Desktop\SecurityScan_Release.exe2014-08-04 23:40 - 2014-08-05 06:24 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\AVG20142014-08-04 12:34 - 2014-08-06 20:56 - 00000000 ____D () C:\ProgramData\AVG20142014-08-04 12:34 - 2014-08-04 12:34 - 00000000 ___HD () C:\$AVG2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG2014-08-04 12:26 - 2014-08-07 20:09 - 00000000 ____D () C:\ProgramData\MFAData2014-08-04 12:26 - 2014-08-04 12:42 - 00000000 ____D () C:\Users\Benji\AppData\Local\Avg20142014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe2014-07-31 11:20 - 2014-07-31 21:54 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}2014-07-18 10:16 - 2014-07-18 10:17 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe2014-07-10 07:12 - 2014-08-05 00:08 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt2014-07-08 10:04 - 2014-08-05 21:57 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-07-08 10:04 - 2014-08-05 21:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-07-08 10:04 - 2014-08-05 00:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-07-08 10:04 - 2014-07-08 10:04 - 00001128 _____ () C:\Users\Benji\Desktop\Malwarebytes Anti-Malware.lnk2014-07-08 10:04 - 2014-07-08 10:04 - 00001110 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2014-07-08 10:04 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2014-07-08 10:04 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys2014-07-08 07:49 - 2014-07-08 07:49 - 00000110 _____ () C:\Users\Benji\AppData\Roaming\mbam.context.scan==================== One Month Modified Files and Folders =======(If an entry is included in the fixlist, the file\folder will be moved.)2014-08-07 21:02 - 2014-08-07 21:01 - 00034559 _____ () C:\Users\Benji\Desktop\FRST.txt2014-08-07 21:02 - 2014-08-07 21:01 - 00000000 ____D () C:\FRST2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe2014-08-07 20:57 - 2012-07-26 01:43 - 02049117 _____ () C:\Windows\WindowsUpdate.log2014-08-07 20:47 - 2013-01-03 16:35 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-08-07 20:09 - 2014-08-04 12:26 - 00000000 ____D () C:\ProgramData\MFAData2014-08-07 18:48 - 2012-07-26 01:51 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job2014-08-07 18:47 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02014-08-07 18:47 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02014-08-07 18:37 - 2013-01-03 16:35 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-08-07 18:37 - 2012-07-26 01:51 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job2014-08-07 18:37 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-08-07 18:37 - 2009-07-14 00:51 - 00107054 _____ () C:\Windows\setupact.log2014-08-07 18:21 - 2014-08-06 22:24 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log2014-08-07 18:01 - 2013-01-03 16:35 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update2014-08-07 14:01 - 2013-01-09 18:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\CrashDumps2014-08-07 13:55 - 2010-11-20 23:47 - 01095464 _____ () C:\Windows\PFRO.log2014-08-07 13:46 - 2013-03-20 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help2014-08-07 13:45 - 2013-01-05 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office2014-08-07 13:36 - 2014-08-07 13:36 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Avira2014-08-07 13:33 - 2014-04-05 09:28 - 00000000 ____D () C:\ProgramData\Package Cache2014-08-07 13:32 - 2014-08-07 13:32 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk2014-08-07 13:32 - 2014-08-07 13:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira2014-08-07 13:31 - 2014-08-07 13:18 - 00000000 ____D () C:\Program Files (x86)\Avira2014-08-07 13:27 - 2014-08-07 13:18 - 00000000 ____D () C:\ProgramData\Avira2014-08-07 13:18 - 2014-08-07 13:17 - 04050840 _____ (Avira Operations GmbH & Co. KG) C:\Users\Benji\Desktop\avira_en_av___dlc.exe2014-08-06 22:40 - 2014-08-06 20:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG2014-08-06 22:37 - 2013-01-11 20:07 - 23339520 ___SH () C:\Users\Benji\Desktop\Thumbs.db2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe2014-08-06 22:19 - 2009-07-14 01:13 - 00911372 _____ () C:\Windows\system32\PerfStringBackup.INI2014-08-06 20:56 - 2014-08-06 20:56 - 00000969 _____ () C:\Users\Public\Desktop\AVG 2014.lnk2014-08-06 20:56 - 2014-08-04 12:34 - 00000000 ____D () C:\ProgramData\AVG20142014-08-06 20:49 - 2014-08-06 20:49 - 04755832 _____ (AVG Technologies) C:\Users\Benji\Desktop\avg_avct_stb_all_2014_4744_cnet.exe2014-08-06 20:42 - 2013-01-11 17:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2014-08-06 20:39 - 2014-05-03 13:01 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr2014-08-06 20:38 - 2014-05-03 13:00 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys2014-08-06 20:38 - 2014-05-03 13:00 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys2014-08-06 20:38 - 2013-03-16 23:10 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys2014-08-06 20:38 - 2013-03-16 23:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys2014-08-06 20:38 - 2013-01-03 16:35 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe2014-08-06 20:38 - 2013-01-03 16:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys2014-08-06 20:26 - 2014-05-06 10:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2014-08-06 10:40 - 2014-05-06 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 22014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool2014-08-06 10:26 - 2014-04-14 19:52 - 00039270 _____ () C:\Windows\iis7.log2014-08-06 10:23 - 2009-07-14 00:45 - 05080184 _____ () C:\Windows\system32\FNTCACHE.DAT2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files\Microsoft Silverlight2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight2014-08-06 10:09 - 2012-04-12 23:50 - 00000000 ____D () C:\Program Files\Windows Journal2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\inetsrv2014-08-06 10:01 - 2013-01-03 17:01 - 00919700 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI2014-08-06 10:01 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client2014-08-06 09:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20102014-08-06 09:29 - 2014-03-05 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express2014-08-06 09:07 - 2013-04-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight2014-08-06 09:01 - 2014-04-14 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 20082014-08-06 08:51 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20082014-08-06 08:25 - 2014-05-03 15:52 - 00000000 ____D () C:\Program Files (x86)\AbiWord2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2014-08-06 07:25 - 2014-08-06 07:25 - 06770064 _____ () C:\Users\Benji\Desktop\bitdefender_antivirus.exe2014-08-06 06:23 - 2014-08-06 06:23 - 00002121 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk2014-08-06 06:23 - 2014-08-06 06:22 - 00000000 ____D () C:\Program Files\Microsoft Security Client2014-08-06 06:23 - 2014-08-05 21:57 - 00001945 _____ () C:\Windows\epplauncher.mif2014-08-06 06:22 - 2014-08-06 06:22 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client2014-08-06 00:29 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\McAfee Security Scan2014-08-06 00:29 - 2013-01-03 16:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy2014-08-06 00:29 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration2014-08-06 00:28 - 2013-01-03 16:34 - 00000000 ____D () C:\Program Files\AVAST Software2014-08-05 21:57 - 2014-07-08 10:04 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-08-05 21:54 - 2014-08-05 21:53 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe2014-08-05 21:51 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware2014-08-05 21:25 - 2014-07-08 10:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware2014-08-05 20:49 - 2014-08-05 20:49 - 18549136 _____ (SUPERAntiSpyware) C:\Users\Benji\Desktop\SUPERAntiSpyware.exe2014-08-05 20:32 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji2014-08-05 13:43 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Skype2014-08-05 13:43 - 2012-04-12 23:18 - 00000000 ____D () C:\ProgramData\Skype2014-08-05 07:55 - 2014-08-05 07:51 - 00000000 ____D () C:\Windows\system32\MRT2014-08-05 07:22 - 2014-08-05 07:22 - 00000000 ____D () C:\Program Files (x86)\ESET2014-08-05 06:24 - 2014-08-04 23:40 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab2014-08-05 00:23 - 2014-08-05 00:22 - 150775104 _____ () C:\Users\Benji\Desktop\setup_11.0.3.7.x01_2014_08_05_06_25.exe2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\Program Files\McAfee Security Scan2014-08-05 00:15 - 2014-08-05 00:15 - 08461968 _____ (McAfee, Inc.) C:\Users\Benji\Desktop\SecurityScan_Release.exe2014-08-05 00:10 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer2014-08-05 00:08 - 2014-07-10 07:12 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security2014-08-05 00:08 - 2014-07-06 13:04 - 00000000 ____D () C:\Windows\system32\Drivers\NISx642014-08-05 00:07 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\AppCompat2014-08-05 00:06 - 2014-07-08 10:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-08-05 00:06 - 2014-07-06 13:06 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security2014-08-05 00:06 - 2014-01-16 14:32 - 00000000 ____D () C:\ProgramData\Norton2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files\Bonjour2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files (x86)\Bonjour2014-08-05 00:06 - 2013-03-12 15:20 - 00000000 ____D () C:\Program Files\WinRAR2014-08-05 00:06 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Common Files\Diskeeper Corporation2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files\Sleep Memory Optimizer2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files (x86)\EgisTec Shredder2014-08-05 00:06 - 2012-07-26 01:59 - 00000000 ____D () C:\Program Files (x86)\Launch Manager2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files\Elantech2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files (x86)\Atheros2014-08-05 00:06 - 2012-07-26 01:55 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite2014-08-05 00:06 - 2012-07-26 01:52 - 00000000 ____D () C:\Dolby PCEE42014-08-05 00:06 - 2012-04-12 23:12 - 00000000 ____D () C:\ProgramData\BackupManager2014-08-05 00:05 - 2013-07-20 18:55 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner2014-08-05 00:03 - 2013-01-06 13:18 - 00000000 ____D () C:\workwebsites2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts2014-08-05 00:02 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\SysWOW64\WindowsPowerShell2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Web2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Vss2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\spp2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Speech2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz2014-08-05 00:01 - 2012-04-12 23:11 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\nti2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\SysWOW64\Macromed2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\system32\Macromed2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\winrm2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\WCN2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\slmgr2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\InstallShield2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\IME2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\com2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\sysprep2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spp2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spool2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Speech2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\SMI2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\oobe2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\MUI2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\migwiz2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\IME2014-08-05 00:00 - 2014-04-14 19:52 - 00000000 ____D () C:\Windows\system32\BestPractices2014-08-05 00:00 - 2014-03-05 18:30 - 00000000 ____D () C:\Windows\symbols2014-08-05 00:00 - 2012-07-26 02:27 - 00000000 ____D () C:\Windows\NAPP_Dism_Log2014-08-05 00:00 - 2012-04-12 23:19 - 00000000 ____D () C:\Windows\oem2014-08-05 00:00 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\Performance2014-08-05 00:00 - 2009-07-14 00:45 - 00000000 ____D () C:\Windows\Setup2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\com2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Speech2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\servicing2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\security2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\schemas2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Resources2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PLA2014-08-04 23:59 - 2012-04-12 23:12 - 00000000 ____D () C:\Windows\Downloaded Installations2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 __RSD () C:\Windows\Media2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\IME2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Help2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Globalization2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Branding2014-08-04 23:59 - 2009-03-12 05:30 - 00000000 ____D () C:\Windows\LP2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia2014-08-04 23:58 - 2014-05-15 15:25 - 00000000 ____D () C:\Program Files\SAMSUNG2014-08-04 23:58 - 2014-04-14 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A2014-08-04 23:58 - 2014-04-14 22:49 - 00000000 ____D () C:\Program Files\Business Objects2014-08-04 23:58 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files\Microsoft Device Emulator2014-08-04 23:58 - 2014-04-14 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server2014-08-04 23:58 - 2014-04-14 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 20082014-08-04 23:58 - 2014-04-14 08:47 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.02014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Virtualized Applications2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)2014-08-04 23:58 - 2014-04-05 09:58 - 00000000 ____D () C:\Program Files\GIMP 22014-08-04 23:58 - 2014-03-12 22:46 - 00000000 ____D () C:\Users\Benji\android2014-08-04 23:58 - 2014-03-12 22:45 - 00000000 ____D () C:\Program Files\Java2014-08-04 23:58 - 2014-03-12 20:57 - 00000000 ____D () C:\Users\Benji\Desktop\adt-bundle-windows-x86_64-201310302014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Users\Benji\Documents\Visual Studio 20102014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.02014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v7.12014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\Program Files\Microsoft SDKs2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Adobe2014-08-04 23:58 - 2013-07-10 15:47 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bred2014-08-04 23:58 - 2013-06-25 22:45 - 00000000 ____D () C:\Users\Benji\Desktop\BoogoDEMO25062014-08-04 23:58 - 2013-06-15 07:52 - 00000000 ____D () C:\Users\Benji\.gimp-2.82014-08-04 23:58 - 2013-04-12 16:40 - 00000000 ____D () C:\Program Files\Red Gate2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\PreEmptive Solutions2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\PreEmptive Solutions2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PreEmptive Solutions2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Red Gate2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\IsolatedStorage2014-08-04 23:58 - 2013-03-27 18:36 - 00000000 ____D () C:\Users\Benji\Desktop\PuDongPuxi-DONE2014-08-04 23:58 - 2013-03-20 21:37 - 00000000 ____D () C:\Users\Benji\AppData\Local\Globalscape2014-08-04 23:58 - 2013-03-16 17:19 - 00000000 ____D () C:\Program Files\ptdemo2014-08-04 23:58 - 2013-01-27 13:39 - 00000000 ____D () C:\ProgramData\Apple2014-08-04 23:58 - 2013-01-24 11:12 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\NCH Software2014-08-04 23:58 - 2013-01-23 17:48 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Digiarty2014-08-04 23:58 - 2013-01-21 17:40 - 00000000 ____D () C:\ProgramData\NaturalSoft2014-08-04 23:58 - 2013-01-14 10:49 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-08-04 23:58 - 2013-01-06 11:14 - 00000000 ___SD () C:\PT2014-08-04 23:58 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Local\CyberLink2014-08-04 23:58 - 2013-01-03 17:02 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SoftGrid Client2014-08-04 23:58 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files\Microsoft Office2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Mozilla2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Mozilla2014-08-04 23:58 - 2013-01-03 16:35 - 00000000 ____D () C:\Users\Benji\AppData\Local\Google2014-08-04 23:58 - 2013-01-03 16:34 - 00000000 ____D () C:\ProgramData\AVAST Software2014-08-04 23:58 - 2013-01-03 16:13 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Adobe2014-08-04 23:58 - 2013-01-03 16:05 - 00000000 ____D () C:\ProgramData\OEM_E471269A730E2014-08-04 23:58 - 2013-01-03 16:04 - 00000000 ____D () C:\Program Files\Preload2014-08-04 23:58 - 2013-01-03 16:01 - 00000000 ____D () C:\Users\Benji\AppData\Local\VirtualStore2014-08-04 23:58 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Diskeeper Corporation2014-08-04 23:58 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files\EgisTec IPS2014-08-04 23:58 - 2012-07-26 02:04 - 00000000 ____D () C:\ProgramData\CLSK2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\install_clap2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\CyberLink2014-08-04 23:58 - 2012-07-26 02:02 - 00000000 ____D () C:\Users\Public\OEM2014-08-04 23:58 - 2012-07-26 01:58 - 00000000 ____D () C:\ProgramData\Atheros2014-08-04 23:58 - 2012-07-26 01:53 - 00000000 ____D () C:\ProgramData\Temp2014-08-04 23:58 - 2012-07-26 01:52 - 00000000 ____D () C:\Program Files\Realtek2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Intel2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\Program Files\Intel2014-08-04 23:58 - 2012-07-26 01:48 - 00000000 ____D () C:\Program Files\Common Files\Intel2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\ProgramData\Acer2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files\Acer2014-08-04 23:58 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files\Windows Live2014-08-04 23:58 - 2012-04-12 23:15 - 00000000 ____D () C:\ProgramData\WildTangent2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-04-12 23:13 - 00000000 ____D () C:\ProgramData\Adobe2014-08-04 23:58 - 2012-04-12 23:10 - 00000000 ____D () C:\ProgramData\oem2014-08-04 23:58 - 2012-04-12 23:09 - 00000000 ____D () C:\ProgramData\McAfee2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Reference Assemblies2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\MSBuild2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Microsoft Games2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\DVD Maker2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Default2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Windows NT2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Device Emulator2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Business Objects2014-08-04 23:57 - 2014-04-14 22:46 - 00000000 ____D () C:\Program Files (x86)\Windows Mobile 5.0 SDK R22014-08-04 23:57 - 2014-04-14 22:38 - 00000000 ____D () C:\Program Files (x86)\CE Remote Tools2014-08-04 23:57 - 2014-04-14 22:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Designer Tools2014-08-04 23:57 - 2014-04-14 08:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.02014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server2014-08-04 23:57 - 2014-03-05 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.02014-08-04 23:57 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs2014-08-04 23:57 - 2013-12-12 19:18 - 00000000 ____D () C:\Program Files (x86)\MSECache2014-08-04 23:57 - 2013-07-10 15:47 - 00000000 ____D () C:\Program Files (x86)\Bred2014-08-04 23:57 - 2013-04-05 20:59 - 00000000 ____D () C:\Program Files (x86)\PreEmptive Solutions2014-08-04 23:57 - 2013-03-20 21:36 - 00000000 ____D () C:\Program Files (x86)\Globalscape2014-08-04 23:57 - 2013-03-19 22:37 - 00000000 ____D () C:\Program Files (x86)\Terminator2014-08-04 23:57 - 2013-03-19 21:28 - 00000000 ____D () C:\Program Files (x86)\NirSoft2014-08-04 23:57 - 2013-03-04 16:14 - 00000000 ____D () C:\Program Files (x86)\TeamViewer2014-08-04 23:57 - 2013-01-19 18:24 - 00000000 ____D () C:\Program Files (x86)\NCH Software2014-08-04 23:57 - 2013-01-03 16:35 - 00000000 ____D () C:\Program Files (x86)\Google2014-08-04 23:57 - 2012-07-26 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLocker2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec IPS2014-08-04 23:57 - 2012-07-26 02:12 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLockerSuite2014-08-04 23:57 - 2012-07-26 02:06 - 00000000 ____D () C:\Program Files (x86)\Cyberlink2014-08-04 23:57 - 2012-04-12 23:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition2014-08-04 23:57 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files (x86)\Windows Live2014-08-04 23:57 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games2014-08-04 23:57 - 2012-04-12 23:12 - 00000000 ____D () C:\Program Files (x86)\newsXpresso2014-08-04 23:57 - 2012-04-12 23:11 - 00000000 ____D () C:\Program Files (x86)\NTI2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ____D () C:\Program Files (x86)\Realtek2014-08-04 23:57 - 2012-04-12 23:09 - 00000000 ____D () C:\Program Files (x86)\McAfee2014-08-04 23:57 - 2012-04-12 23:08 - 00000000 ____D () C:\Program Files (x86)\Intel2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild2014-08-04 23:57 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files (x86)\Windows NT2014-08-04 23:56 - 2014-04-18 08:31 - 00000000 ___SD () C:\CP_COM - Copy2014-08-04 23:56 - 2014-04-14 19:52 - 00000000 ____D () C:\inetpub2014-08-04 23:56 - 2013-04-26 11:34 - 00000000 ____D () C:\JA260420132014-08-04 23:56 - 2013-04-02 17:11 - 00000000 ___SD () C:\JA0204132014-08-04 23:56 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files (x86)\ASIX Electronics Corporation2014-08-04 23:56 - 2012-04-12 23:40 - 00000000 __SHD () C:\OEM2014-08-04 23:56 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files (x86)\Acer2014-08-04 23:56 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\Acer Games2014-08-04 23:56 - 2012-04-12 23:13 - 00000000 ____D () C:\Program Files (x86)\Adobe2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files2014-08-04 12:42 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\Avg20142014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\AVG20142014-08-04 12:34 - 2014-08-04 12:34 - 00000000 ___HD () C:\$AVG2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt2014-07-31 22:07 - 2014-06-17 14:21 - 00002659 _____ () C:\Users\Benji\Desktop\WS_FTP.LOG2014-07-31 21:54 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live2014-07-31 15:56 - 2013-10-13 04:40 - 00000000 ____D () C:\Program Files (x86)\Porn Terminator2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}2014-07-30 16:07 - 2014-08-06 10:46 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup2014-07-23 13:42 - 2014-07-04 12:00 - 00000710 _____ () C:\Users\Benji\Desktop\x.php2014-07-23 13:29 - 2014-08-07 13:27 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys2014-07-23 13:29 - 2014-08-07 13:27 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys2014-07-23 13:29 - 2014-08-07 13:27 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys2014-07-18 10:17 - 2014-07-18 10:16 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe2014-07-18 09:57 - 2014-04-29 21:23 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner Remove Porn Pro2014-07-10 07:06 - 2014-07-06 13:06 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration2014-07-10 07:06 - 2014-07-06 13:05 - 00002505 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt2014-07-08 10:04 - 2014-07-08 10:04 - 00001128 _____ () C:\Users\Benji\Desktop\Malwarebytes Anti-Malware.lnk2014-07-08 10:04 - 2014-07-08 10:04 - 00001110 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2014-07-08 10:04 - 2013-01-14 10:49 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Malwarebytes2014-07-08 08:04 - 2009-07-13 22:34 - 00450770 ____R () C:\Windows\system32\Drivers\etc\hosts.20140730-160713.backup2014-07-08 07:49 - 2014-07-08 07:49 - 00000110 _____ () C:\Users\Benji\AppData\Roaming\mbam.context.scanSome content of TEMP:====================C:\Users\Benji\AppData\Local\Temp\avgnt.exe==================== Bamital & volsnap Check =================(There is no automatic fix for files that do not pass verification.)C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signedLastRegBack: 2014-07-28 10:33==================== End Of Log ============================ Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:863886 Share Posted August 8, 2014 Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-08-2014Ran by Benji at 2014-08-07 21:04:20Running from C:\Users\Benji\DesktopBoot Mode: Normal============================================================================== Security Center ========================(If an entry is included in the fixlist, it will be removed.)AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}AV: AVG AntiVirus 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}AS: Norton Internet Security (Disabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}AS: AVG AntiVirus 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}FW: Norton Internet Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}==================== Installed Programs ======================(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) clear.fi SDK - MVP 2 (x32 Version: 2.0.1505 - CyberLink Corp.) Hidden clear.fi SDK- Movie 2 (x32 Version: 2.0.1502 - CyberLink Corp.) Hidden7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - )AbiWord 2.9.4 (HKLM-x32\...\AbiWord2) (Version: 2.9.4 - AbiSource Developers)Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.100 - NTI Corporation)Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}) (Version: 1.5.2728.00 - CyberLink Corp.)Acer Crystal Eye Webcam (x32 Version: 1.5.2728.00 - CyberLink Corp.) HiddenAcer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3010 - Acer Incorporated)Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)Acer Instant Update Service (HKLM\...\{4E8D1AAE-509F-46DE-AAB4-CE9BCABA2D35}) (Version: 1.00.3001 - Acer Incorporated)Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3506 - Acer Incorporated)Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 20.12.0307.1154 - Acer Incorporated)Acer Theft Shield (HKLM\...\{8ADB0CD2-4E5A-452F-BB3B-3A2984CAC749}) (Version: 1.00.3001 - Acer Incorporated)Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3501 - Acer Incorporated)Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3501 - Acer Incorporated)Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) HiddenAdobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) HiddenAdobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.1 - Adobe Systems Incorporated)Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)Adobe Flash Professional CC (HKLM-x32\...\{B56B95BF-7161-4166-8288-DB1BA9F6C9B8}) (Version: 13.0 - Adobe Systems Incorporated)Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) HiddenAdobe Reader XI (11.0.03) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)Advanced Find and Replace v7.8.1 (HKLM-x32\...\Advanced Find and Replace 7_is1) (Version: 7.8.1 - Abacre Limited)Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) HiddenAtheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.126 - Atheros)avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2021 - AVAST Software)AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4744 - AVG Technologies)AVG 2014 (Version: 14.0.3986 - AVG Technologies) HiddenAVG 2014 (Version: 14.0.4744 - AVG Technologies) HiddenAvira (HKLM-x32\...\{142be4a8-895b-4ed9-b1ff-11c76357e3df}) (Version: 1.1.17.31000 - Avira Operations GmbH & Co. KG)Avira (x32 Version: 1.1.17.31000 - Avira Operations GmbH & Co. KG) HiddenAvira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)AX88772B Windows 7 Drivers (HKLM-x32\...\InstallShield_{54A168C9-2250-4058-80EB-1F4A4192548A}) (Version: 1.0.1.1 - ASIX Electronics Corporation)AX88772B Windows 7 Drivers (x32 Version: 1.0.1.1 - ASIX Electronics Corporation) HiddenBackup Manager V3 (x32 Version: 3.0.0.100 - NTI Corporation) HiddenBejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) HiddenBonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)Chronicles of Albian (x32 Version: 2.2.0.95 - WildTangent) HiddenChuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hiddenclear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated)clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated)Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) HiddenCrystal Reports Basic for Visual Studio 2008 (HKLM-x32\...\{AA467959-A1D6-4F45-90CD-11DC57733F32}) (Version: 10.5.0.0 - Business Objects)Crystal Reports Basic Runtime for Visual Studio 2008 (x64) (HKLM\...\{2BFA9B05-7418-4EDE-A6FC-620427BAAAA3}) (Version: 10.5.0.0 - Business Objects)CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)CyberLink MediaEspresso (x32 Version: 6.5.1720_38230 - CyberLink Corp.) HiddenD3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) HiddenDemo Crack (HKLM-x32\...\{C95E1501-EC37-4C01-8E12-7C2D671986D8}) (Version: 1.0.0 - )Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) HiddenDotfuscator Professional Edition Evaluation 4.10 (HKLM-x32\...\{E227823E-E839-4BE9-A429-E72B3E966DEC}) (Version: 4.10.0.11731 - PreEmptive Solutions)ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )ETDWare PS/2-X64 10.6.9.8_WHQL (HKLM\...\Elantech) (Version: 10.6.9.8 - ELAN Microelectronic Corp.)ExpressCache (HKLM\...\{1E084588-8CC6-4D1B-B904-B1A09DA22A52}) (Version: 1.0.82 - Diskeeper Corporation)FATE (x32 Version: 2.2.0.97 - WildTangent) HiddenFinal Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) HiddenGalería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenGalerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenGIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) HiddenGovernor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) HiddenIdentity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36279 - Intel Corporation)Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)Intel® Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1024 - Intel Corporation)Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)Intel® Trusted Connect Service Client (Version: 1.23.943.1 - Intel Corporation) HiddenJava 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) HiddenJewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) HiddenJunk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenLaunch Manager (HKLM-x32\...\LManager) (Version: 5.1.15 - Acer Inc.)Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)McAfee SiteAdvisor (HKLM\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.4.0.143 - McAfee, Inc.)McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.125 - McAfee, Inc.)Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) HiddenMicrosoft .NET Compact Framework 2.0 SP2 (HKLM-x32\...\{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}) (Version: 2.0.7045 - Microsoft Corporation)Microsoft .NET Compact Framework 3.5 (HKLM-x32\...\{291B3A3B-F808-45B8-8113-DF232FCB6C82}) (Version: 3.5.7283 - Microsoft Corporation)Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) HiddenMicrosoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) HiddenMicrosoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) HiddenMicrosoft Device Emulator (64 bit) version 3.0 - ENU (HKLM\...\{EF8B1A2E-9CCB-3AB2-91E3-4EEDAB1294E1}) (Version: 9.0.21022 - Microsoft Corporation)Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version: - Microsoft Corporation)Microsoft Document Explorer 2008 (x32 Version: 9.0.21022 - Microsoft Corporation) HiddenMicrosoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) HiddenMicrosoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) HiddenMicrosoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) HiddenMicrosoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) HiddenMicrosoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) HiddenMicrosoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) HiddenMicrosoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)Microsoft Office Visual Web Developer 2007 (x32 Version: 12.0.4518.1066 - Microsoft Corporation) HiddenMicrosoft Office Visual Web Developer MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) HiddenMicrosoft PhotoDraw 2000 V2 (HKLM-x32\...\{3C5EA394-1033-11D2-A2CB-00C04F72F31D}) (Version: 2.00.00.0820 - Microsoft Corporation)Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)Microsoft PVK Import (Remove only) (HKLM-x32\...\PVK-Import) (Version: - )Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) HiddenMicrosoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)Microsoft SQL Server 2008 (HKLM-x32\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)Microsoft SQL Server 2008 (x32 Version: - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft SQL Server 2008 Common Files (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Database Engine Services (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Database Engine Shared (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)Microsoft SQL Server 2008 RsFx Driver (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Setup Support Files (English) (HKLM-x32\...\{9D6D76A6-4328-49E8-97A7-531A74841DA5}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM-x32\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 for Devices ENU (HKLM-x32\...\{241F2BF7-69EB-42A4-9156-96B2426C7504}) (Version: 3.5.5386.0 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM-x32\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - Microsoft Corporation)Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft Visual C# 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C# 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual C# 2010 Express - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Professional Edition - ENU (HKLM-x32\...\Microsoft Visual Studio 2008 Professional Edition - ENU) (Version: - Microsoft Corporation)Microsoft Visual Studio 2008 Professional Edition - ENU (x32 Version: 9.0.21022 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Remote Debugger - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger - ENU) (Version: - Microsoft Corporation)Microsoft Visual Studio 2008 Remote Debugger - ENU (Version: 9.0.21022 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (Version: 9.0.30729 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (HKLM-x32\...\{90A80D89-A0E4-33C1-B13D-B93CB3496867}.KB945140) (Version: 1 - Microsoft Corporation)Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)Microsoft Windows SDK .NET Framework Tools (30514) (Version: 7.1.30514 - Microsoft) HiddenMicrosoft Windows SDK for Visual Studio .NET 4.0 Framework Tools (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{29C93182-34F6-3275-A18D-59326851CD57}) (Version: 3.5.21022 - Microsoft)Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{9aa5f39c-a8de-46b0-919a-0248f8bc8490}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu (HKLM\...\{DFB3AD2B-4EE2-3077-BF1D-3CA164BC5336}) (Version: 3.5.30729 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32 (HKLM\...\{F5C819A5-E068-4f7d-B91A-1BD18702AFFB}) (Version: 6.1.5295.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{62EED300-E841-4083-A1D6-60B906271804}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{A992BBAA-723D-4574-A07F-983BF8FAA3E1}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Windows 7 (7.1) (HKLM\...\SDKSetup_7.1.7600.0.30514) (Version: 7.1.7600.0.30514 - Microsoft Corporation)Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft Windows SDK for Windows 7 Common Utilities (30514) (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft Windows SDK Net Fx Interop Headers And Libraries (30514) (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) HiddenMozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) HiddenMSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) HiddenMyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) HiddenMyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) HiddenMyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.19 - Egis Technology Inc.)MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) HiddennewsXpresso (HKLM-x32\...\InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}) (Version: 1.0.0.40 - esobi Inc.)newsXpresso (x32 Version: 1.0.0.40 - esobi Inc.) HiddenNirSoft IconsExtract (HKLM-x32\...\NirSoft IconsExtract) (Version: - )Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.4.0.13 - Symantec Corporation)Orca (HKLM-x32\...\{85F4CBCB-9BBC-4B50-A7D8-E1106771498D}) (Version: 3.1.3790.0000 - Microsoft Corporation)Penguins! (x32 Version: 2.2.0.98 - WildTangent) HiddenPlants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) HiddenPolar Bowler (x32 Version: 2.2.0.97 - WildTangent) HiddenPolar Golfer (x32 Version: 2.2.0.98 - WildTangent) HiddenPorn Terminator (HKLM-x32\...\{63AFDE5F-B004-4F91-8069-B9AB59792904}) (Version: 3.0.0 - )Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.1 - Qualcomm Atheros)Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6597 - Realtek Semiconductor Corp.)Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.39025 - Realtek Semiconductor Corp.)Resize Your Picture (HKLM-x32\...\{44559BD3-71A9-4921-AF91-0140D3D07F62}) (Version: 4.0 - Bred)SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.1500.0 - SAMSUNG Electronics Co., Ltd.)Shredder (Version: 2.0.8.9 - Egis Technology Inc.) HiddenShredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) HiddenSleep Memory Optimizer (HKLM-x32\...\{34BE2594-1D20-4A2E-97A0-B9E2837520AE}) (Version: 1.00.3004 - Acer Incorporated)Smart Timer (HKLM-x32\...\{89DB52FC-EA72-468F-A0C7-150AF8B7AB74}) (Version: 1.00.3004 - Acer Incorporated)SmartAssembly 6 (HKLM\...\{E5D5860E-7287-473E-8932-3A979F43AE12}) (Version: 6.7.1.61 - Red Gate Software Ltd)Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)Sql Server Customer Experience Improvement Program (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenSUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1102 - SUPERAntiSpyware.com)TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.26038 - TeamViewer)Torchlight (x32 Version: 2.2.0.98 - WildTangent) HiddenUpdate for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)Update for Microsoft Visual Studio 2008 Professional Edition - ENU (KB972221) (HKLM-x32\...\{D7DAD1E4-45F4-3B2B-899A-EA728167EC4F}.KB972221) (Version: 1 - Microsoft Corporation)Update Installer for WildTangent Games App (x32 Version: - WildTangent) HiddenVC Runtimes MSI (x32 Version: 9.0.21022 - Microsoft) HiddenVirtual Villagers 5 - New Believers (x32 Version: 2.2.0.97 - WildTangent) HiddenVisual Studio .NET Prerequisites - English (HKLM\...\{D3E39E77-0EB4-36FB-B97A-8C8AB21B9A45}) (Version: 9.0.21022 - Microsoft Corporation)Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.21022 - Microsoft Corporation) HiddenWelcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated)WildTangent Games App (Acer Games) (x32 Version: 4.0.5.32 - WildTangent) HiddenWindows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) HiddenWindows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) HiddenWindows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) HiddenWindows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) HiddenWindows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) HiddenWindows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Mobile 5.0 SDK R2 for Pocket PC (HKLM-x32\...\{6C9F6D23-E9AD-43C9-B43A-011562AAF876}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)Windows Mobile 5.0 SDK R2 for Smartphone (HKLM-x32\...\{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden==================== Custom CLSID (selected items): ==========================(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{3A999A50-AB25-4A20-90A9-08F71FCE320F}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{98087D89-B93F-4BCF-A998-AE4D9F607C14}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{B286F068-5B17-4AE8-989B-8F9A199C47BA}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)==================== Restore Points =========================05-08-2014 17:42:49 Removed Skype™ 5.505-08-2014 17:44:02 Xamarin Universal Installer05-08-2014 17:45:50 avast! antivirus system restore point06-08-2014 12:45:53 Windows Update06-08-2014 14:41:52 Windows Update07-08-2014 00:35:36 avast! antivirus system restore point07-08-2014 00:53:14 Installed AVG 201407-08-2014 00:54:42 Installed AVG 201407-08-2014 17:39:20 Windows Update==================== Hosts content: ==========================(If needed Hosts: directive could be included in the fixlist to reset Hosts.)2009-07-13 22:34 - 2014-08-06 10:46 - 00450770 ____R C:\Windows\system32\Drivers\etc\hosts127.0.0.1 www.007guard.com127.0.0.1 007guard.com127.0.0.1 008i.com127.0.0.1 www.008k.com127.0.0.1 008k.com127.0.0.1 www.00hq.com127.0.0.1 00hq.com127.0.0.1 010402.com127.0.0.1 www.032439.com127.0.0.1 032439.com127.0.0.1 www.0scan.com127.0.0.1 0scan.com127.0.0.1 www.1000gratisproben.com127.0.0.1 1000gratisproben.com127.0.0.1 1001namen.com127.0.0.1 www.1001namen.com127.0.0.1 100888290cs.com127.0.0.1 www.100888290cs.com127.0.0.1 www.100sexlinks.com127.0.0.1 100sexlinks.com127.0.0.1 www.10sek.com127.0.0.1 10sek.com127.0.0.1 www.1-2005-search.com127.0.0.1 1-2005-search.com127.0.0.1 www.123fporn.info127.0.0.1 123fporn.info127.0.0.1 123haustiereundmehr.com127.0.0.1 www.123haustiereundmehr.com127.0.0.1 123moviedownload.comThere are 1000 more lines.==================== Scheduled Tasks (whitelisted) =============(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)Task: {084E3E00-6291-4226-8097-0D9E9A6DB467} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2012-02-06] (Acer Incorporated)Task: {0A3992EB-BAD7-43EB-8718-A751C69CAC84} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink)Task: {0F143BA5-CFD8-4015-BE18-1A8E8B5098DD} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)Task: {15C9DDF1-99DB-46A6-B25C-7EA949B2F223} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)Task: {16B7594C-C8F9-49FD-AA4B-070B24C7DDC1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-06] (AVAST Software)Task: {447D8BD7-4480-4C49-82B0-60EFFC7388B8} - System32\Tasks\{2B6DEA2A-4BCE-44F2-96E1-E7D212F6D713} => Firefox.exe http://ui.skype.com/ui/0/6.1.0.129.272/en/abandoninstall?page=tsMainTask: {68BFD4A5-A790-4B76-B9DF-1F79CABCDF98} - System32\Tasks\Smart Timer Task Scheduler => Smart_Timer.exeTask: {72AA6030-131F-46A6-BCCF-DC3D25257F88} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)Task: {73C21A8B-7846-4E5A-B3B5-558BCB3988B4} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2011-03-28] (Egis Technology Inc.)Task: {B5F52E9B-7BDF-4E61-95AA-5DC8A68F2ACA} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe [2014-06-26] (Symantec Corporation)Task: {B7DD77B5-DC7A-4294-BE9B-AACC922A86A9} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2011-03-28] (Egis Technology Inc.)Task: {C7B86A17-D88C-472C-A843-2F44282D6442} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)Task: {C9F771D2-F715-4D4E-9B96-A329BDF8992B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)Task: {E8D11D23-B2AC-42E5-8BB8-0D1CB0D197EB} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exeTask: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exeTask: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeTask: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe==================== Loaded Modules (whitelisted) =============2009-01-21 19:45 - 2009-01-21 19:45 - 01401856 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll2012-07-26 02:12 - 2012-03-26 21:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00257640 _____ () C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe2012-03-07 00:49 - 2012-03-07 00:49 - 00213608 _____ () C:\Program Files\Acer\Acer Theft Shield\CommPtl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () C:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () C:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () C:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00236648 _____ () c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () c:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () c:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () c:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll2012-07-26 01:51 - 2012-03-29 02:36 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe2014-08-06 20:38 - 2014-08-06 20:38 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll2014-08-07 18:02 - 2014-08-07 18:02 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080701\algo.dll2012-01-05 17:22 - 2012-01-05 17:22 - 00465344 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll2012-01-05 17:22 - 2012-01-05 17:22 - 01081368 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll2012-01-05 17:22 - 2012-01-05 17:22 - 00125464 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll2014-08-06 20:38 - 2014-08-06 20:38 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll2014-05-06 10:28 - 2014-04-25 14:11 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl2014-05-06 10:28 - 2014-04-25 14:11 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl2014-05-06 10:28 - 2014-04-25 14:11 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl2014-08-07 13:31 - 2014-07-07 13:53 - 00049744 _____ () C:\Users\Benji\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll2014-07-07 13:53 - 2014-07-07 13:53 - 00137296 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll2014-07-07 13:52 - 2014-07-07 13:52 - 00065616 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.AvConnectorNative.dll2014-05-06 10:28 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll2014-05-06 10:28 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll2012-07-26 01:51 - 2012-03-29 02:18 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll==================== Alternate Data Streams (whitelisted) =========(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)AlternateDataStreams: C:\ProgramData\Temp:661DFA1CAlternateDataStreams: C:\Users\Benji\AppData\Local\Temp:ZcHVkelT4qnCfa8embJ0LpO9AlternateDataStreams: C:\Users\Benji\AppData\Local\Temporary Internet Files:aW4DzdLrcpHHzCIzfdyLgutAlternateDataStreams: C:\Users\Benji\AppData\Local\yHrx86IBEK:obCo7un7065qZARgKSl3VRpZLc==================== Safe Mode (whitelisted) ===================(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)==================== EXE Association (whitelisted) =============(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)==================== MSCONFIG/TASK MANAGER disabled items =========(Currently there is no automatic fix for this section.)MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"MSCONFIG\startupreg: ccFullVersionAlert => C:\Program Files (x86)\Content Cleaner\remindeMe.exe==================== Faulty Device Manager Devices =============Name: Symantec Network Security WFP DriverDescription: Symantec Network Security WFP DriverClass Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: SymNetSProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.Name: BHDrvx64Description: BHDrvx64Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: BHDrvx64Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.Name: NIS Settings ManagerDescription: NIS Settings ManagerClass Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: ccSet_NISProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.Name: Symantec Iron DriverDescription: Symantec Iron DriverClass Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: SymIRONProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.==================== Event log errors: =========================Application errors:==================Error: (08/07/2014 06:16:48 PM) (Source: Application Hang) (EventID: 1002) (User: )Description: The program avscan.exe version 14.0.6.548 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.Process ID: 1578Start Time: 01cfb28cab8299a6Termination Time: 23904Application Path: C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exeReport Id: 726a7488-1e80-11e4-9a09-cbd246d93d0bError: (08/07/2014 02:01:46 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: Avira.OE.Systray.exe, version: 1.1.17.31000, time stamp: 0x53ba89f5Faulting module name: KERNELBASE.dll, version: 6.1.7601.18409, time stamp: 0x53159a86Exception code: 0xe0434352Fault offset: 0x0000c42dFaulting process id: 0x6ecFaulting application start time: 0xAvira.OE.Systray.exe0Faulting application path: Avira.OE.Systray.exe1Faulting module path: Avira.OE.Systray.exe2Report Id: Avira.OE.Systray.exe3Error: (08/07/2014 02:01:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )Description: Application: Avira.OE.Systray.exeFramework Version: v4.0.30319Description: The process was terminated due to an unhandled exception.Exception Info: System.Net.Sockets.SocketExceptionStack: at System.Net.SafeCloseSocketAndEvent.CreateWSASocketWithEvent(System.Net.Sockets.AddressFamily, System.Net.Sockets.SocketType, System.Net.Sockets.ProtocolType, Boolean, Boolean) at System.Net.NetworkInformation.NetworkChange+AddressChangeListener.StartHelper(System.Net.NetworkInformation.NetworkAddressChangedEventHandler, Boolean, System.Net.NetworkInformation.StartIPOptions) at Avira.OE.WinCore.NetworkStatusListener..ctor() at Avira.OE.WinCore.InternetConnectionMonitor..ctor() at Avira.OE.Systray.SystrayIcon..ctor(Avira.OE.WinCore.Interface.IServiceStatusMonitor, Avira.OE.Communicator.Interface.ICommunicatorClientProxy, Avira.OE.MiniGui.IMiniGuiWindow) at Avira.OE.Systray.SystrayIcon..ctor() at Avira.OE.Systray.Program.Main(System.String[])Error: (08/07/2014 01:22:59 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: BackupManagerTray.exe, version: 3.0.0.100, time stamp: 0x4f053c75Faulting module name: MSVCR90.dll, version: 9.0.30729.6161, time stamp: 0x4dace5b9Exception code: 0xc0000005Fault offset: 0x00037209Faulting process id: 0x1a98Faulting application start time: 0xBackupManagerTray.exe0Faulting application path: BackupManagerTray.exe1Faulting module path: BackupManagerTray.exe2Report Id: BackupManagerTray.exe3Error: (08/07/2014 01:22:32 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: SDTray.exe, version: 2.3.39.129, time stamp: 0x535a51a2Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000Exception code: 0xc0000005Fault offset: 0x00000000Faulting process id: 0x1860Faulting application start time: 0xSDTray.exe0Faulting application path: SDTray.exe1Faulting module path: SDTray.exe2Report Id: SDTray.exe3Error: (08/06/2014 08:06:57 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.Web.Management.IisClient, Version=7.5.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil . Error code = 0x80070020Error: (08/06/2014 08:01:42 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.MediaCenter.UI, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020Error: (08/06/2014 07:54:16 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Data.Entity, Version=3.5.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil . Error code = 0x80070020Error: (08/06/2014 07:52:07 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Xaml, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020Error: (08/06/2014 07:49:50 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Design, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020System errors:=============Error: (08/07/2014 08:06:02 PM) (Source: Service Control Manager) (EventID: 7011) (User: )Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AntiVirSchedulerService service.Error: (08/07/2014 06:42:21 PM) (Source: Service Control Manager) (EventID: 7023) (User: )Description: The HP Network Devices Support service terminated with the following error:%%126Error: (08/07/2014 06:41:08 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )Description: WMPNetworkSvc0x80004005Error: (08/07/2014 06:40:17 PM) (Source: Service Control Manager) (EventID: 7026) (User: )Description: The following boot-start or system-start driver(s) failed to load:BHDrvx64ccSet_NISSymIRONSymNetSError: (08/07/2014 06:38:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:%%1053Error: (08/07/2014 06:38:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.Error: (08/07/2014 06:11:03 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )Description: %NT AUTHORITY60 has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.179.2400.0 Update Source: %NT AUTHORITY59 Update Stage: 4.5.0216.00 Source Path: 4.5.0216.01 Signature Type: %NT AUTHORITY602 Update Type: %NT AUTHORITY604 User: NT AUTHORITY\SYSTEM Current Engine Version: %NT AUTHORITY605 Previous Engine Version: %NT AUTHORITY606 Error code: %NT AUTHORITY607 Error description: %NT AUTHORITY608Error: (08/07/2014 06:04:57 PM) (Source: Service Control Manager) (EventID: 7023) (User: )Description: The HP Network Devices Support service terminated with the following error:%%126Error: (08/07/2014 06:03:30 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )Description: WMPNetworkSvc0x80004005Error: (08/07/2014 06:02:26 PM) (Source: Service Control Manager) (EventID: 7026) (User: )Description: The following boot-start or system-start driver(s) failed to load:BHDrvx64ccSet_NISSymIRONSymNetSMicrosoft Office Sessions:=========================Error: (08/07/2014 06:16:48 PM) (Source: Application Hang) (EventID: 1002) (User: )Description: avscan.exe14.0.6.548157801cfb28cab8299a623904C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe726a7488-1e80-11e4-9a09-cbd246d93d0bError: (08/07/2014 02:01:46 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Avira.OE.Systray.exe1.1.17.3100053ba89f5KERNELBASE.dll6.1.7601.1840953159a86e04343520000c42d6ec01cfb269938cf157C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exeC:\Windows\syswow64\KERNELBASE.dlle4af9c55-1e5c-11e4-ba34-a5593dd55a6dError: (08/07/2014 02:01:30 PM) (Source: .NET Runtime) (EventID: 1026) (User: )Description: Application: Avira.OE.Systray.exeFramework Version: v4.0.30319Description: The process was terminated due to an unhandled exception.Exception Info: System.Net.Sockets.SocketExceptionStack: at System.Net.SafeCloseSocketAndEvent.CreateWSASocketWithEvent(System.Net.Sockets.AddressFamily, System.Net.Sockets.SocketType, System.Net.Sockets.ProtocolType, Boolean, Boolean) at System.Net.NetworkInformation.NetworkChange+AddressChangeListener.StartHelper(System.Net.NetworkInformation.NetworkAddressChangedEventHandler, Boolean, System.Net.NetworkInformation.StartIPOptions) at Avira.OE.WinCore.NetworkStatusListener..ctor() at Avira.OE.WinCore.InternetConnectionMonitor..ctor() at Avira.OE.Systray.SystrayIcon..ctor(Avira.OE.WinCore.Interface.IServiceStatusMonitor, Avira.OE.Communicator.Interface.ICommunicatorClientProxy, Avira.OE.MiniGui.IMiniGuiWindow) at Avira.OE.Systray.SystrayIcon..ctor() at Avira.OE.Systray.Program.Main(System.String[])Error: (08/07/2014 01:22:59 PM) (Source: Application Error) (EventID: 1000) (User: )Description: BackupManagerTray.exe3.0.0.1004f053c75MSVCR90.dll9.0.30729.61614dace5b9c0000005000372091a9801cfb258d96a18baC:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exeC:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll7a1fb772-1e57-11e4-9b21-86a618209a99Error: (08/07/2014 01:22:32 PM) (Source: Application Error) (EventID: 1000) (User: )Description: SDTray.exe2.3.39.129535a51a2unknown0.0.0.000000000c000000500000000186001cfb258de319dc4C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exeunknown69adba7d-1e57-11e4-9b21-86a618209a99Error: (08/06/2014 08:06:57 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.Web.Management.IisClient, Version=7.5.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msil . Error code = 0x80070020Microsoft.Web.Management.IisClient, Version=7.5.0.0, Culture=Neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=msilError: (08/06/2014 08:01:42 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: Microsoft.MediaCenter.UI, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020Microsoft.MediaCenter.UI, Version=6.1.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35Error: (08/06/2014 07:54:16 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Data.Entity, Version=3.5.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil . Error code = 0x80070020System.Data.Entity, Version=3.5.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msilError: (08/06/2014 07:52:07 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Xaml, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020Microsoft.VisualStudio.Xaml, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3aError: (08/06/2014 07:49:50 PM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: Microsoft.VisualStudio.Design, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80070020Microsoft.VisualStudio.Design, Version=9.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a==================== Memory info ===========================Percentage of memory in use: 48%Total physical RAM: 3932.36 MBAvailable physical RAM: 2035.14 MBTotal Pagefile: 7862.9 MBAvailable Pagefile: 5150.84 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.84 MB==================== Drives ================================Drive c: (ACER) (Fixed) (Total:282.37 GB) (Free:189.07 GB) NTFS==================== MBR & Partition Table ==========================================================================Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 8FBBF039)Partition 1: (Not Active) - (Size=16 GB) - (Type=27)Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)Partition 3: (Not Active) - (Size=282 GB) - (Type=07 NTFS)========================================================Disk: 1 (MBR Code: Windows 7 or 8) (Size: 19 GB) (Disk ID: 67229B2C)Partition 1: (Not Active) - (Size=4 GB) - (Type=84)Partition 2: (Not Active) - (Size=15 GB) - (Type=73)==================== End Of Log ============================ Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:863887 Share Posted August 8, 2014 Thanks in advance. Link to post Share on other sites More sharing options...
deeprybka Posted August 8, 2014 ID:864035 Share Posted August 8, 2014 Hi, AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}AV: AVG AntiVirus 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}AS: Norton Internet Security (Disabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}AS: AVG AntiVirus 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}FW: Norton Internet Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}Multiple antivirus warning!Microsoft, avast and Symantec recommend that you do not have more than one antivirus product installed and running on your computer at the same time.The real-time protection of two antivirus programs may conflict with each other and cause the following:* False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.* Conflicts: Your system may lock up due to both products attempting to access the same file at the same time.* Performance: More that one antivirus will cause your PC to become slow and it may even crash or blue screen.* Less protection: Two antivirus trying to scan the same file may interfere with the process and allow a malicious file onto the computer without notice to you.Please choose one and uninstall the other before continuing. Afterwards: Start FRST with administator privileges.Make sure the following option is checked: Press the Scan button. When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.Please copy and paste these logs in your next reply. Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:864097 Share Posted August 8, 2014 Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2014Ran by Benji (administrator) on Benji-PC on 08-08-2014 08:58:40Running from C:\Users\Benji\DesktopPlatform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 11Boot Mode: NormalThe only official download link for FRST:Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe(Microsoft Corporation) C:\Windows\System32\wlanext.exe(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe(Acer Incorporated) C:\Program Files\Sleep Memory Optimizer\FFSService.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe() C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe(CyberLink) C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe() C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE(Intel Corporation) C:\Windows\System32\igfxext.exe(Intel Corporation) C:\Windows\System32\igfxsrvc.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe(Microsoft Corporation) C:\Windows\System32\msiexec.exe==================== Registry (Whitelisted) ==================(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-15] (Realtek Semiconductor)HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2822952 2012-02-24] (ELAN Microelectronics Corp.)HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)HKLM\...\Run: [secure Applicayion] => c:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe [257640 2012-03-07] ()HKLM-x32\...\Run: [backupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-23] (Dritek System Inc.)HKLM-x32\...\Run: [suiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]HKU\.DEFAULT\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-19\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-20\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-21-3222356215-3916699849-2517307691-1000\...\Run: [spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566984 2014-04-25] (Safer-Networking Ltd.)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnkShortcutTarget: Acer VCM.lnk -> C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnkShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (No File)ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)BootExecute: autocheck autochk * sdnclean64.exe==================== Internet (Whitelisted) ====================(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01URLSearchHook: HKLM-x32 - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No FileURLSearchHook: HKCU - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No FileSearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKCU - DefaultScope {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKCU - {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No FileBHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No FileToolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)Toolbar: HKCU - No Name - {32B29DF0-2237-4370-9A29-37CEBB730E9B} - No FileDPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cabDPF: HKLM-x32 {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} http://contentpurity.com/xp/ScanFile.CABHandler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - No FileHandler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No FileHosts: There are more than one entry in Hosts. See Hosts section of Addition.txtTcpip\Parameters: [DhcpNameServer] 64.71.255.204 64.71.255.198FireFox:========FF ProfilePath: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.defaultFF DefaultSearchEngine: Microsoft (Bing)FF SearchEngineOrder.1: Microsoft (Bing)FF SelectedSearchEngine: Microsoft (Bing)FF Homepage: hxxp://www.msn.com/?pc=AV01FF Keyword.URL: hxxp://www.bing.com/searchFF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin: @microsoft.com/GENUINE -> disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)FF Plugin-x32: @microsoft.com/GENUINE -> disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)FF SearchPlugin: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\searchplugins\bing-avast.xmlFF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xmlFF Extension: United States English Spellchecker - C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-07-07]FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FFFF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-03]FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFFFF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-07-06]FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgnFF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-07-22]FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpiFF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]Chrome:=======CHR HomePage: hxxp://www.msn.com/?pc=AV01CHR StartupUrls: "hxxp://www.msn.com/?pc=AV01"CHR DefaultSearchKeyword: mcafeeCHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ()CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewerCHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()CHR Plugin: (McAfee SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.50.146.2_0\McChPlg.dll No FileCHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No FileCHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No FileCHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No FileCHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No FileCHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No FileCHR Extension: (Google Drive) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-03]CHR Extension: (YouTube) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-03]CHR Extension: (Google Search) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-03]CHR Extension: (avast! Online Security) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-07]CHR Extension: (Norton Security Toolbar) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-07]CHR Extension: (Google Wallet) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]CHR Extension: (Gmail) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-03]CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\Exts\Chrome.crx [2014-08-05]CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION==================== Services (Whitelisted) =================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-02-17] (Diskeeper Corporation)R2 FFSOpzSvc; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [141192 2011-09-17] (Acer Incorporated)R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-29] ()S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193536 2012-03-27] (Intel Corporation)R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-29] (Intel Corporation)R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation)S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)S4 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation)R2 USecuAppSvc; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [236648 2012-03-07] ()R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]S2 HPSLPSVC; C:\Users\Benji\AppData\Local\Temp\7zS226D\hpslpsvc64.dll [X]==================== Drivers (Whitelisted) ====================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-06] (AVAST Software)R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)S1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-06-06] (Symantec Corporation)S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-05] (Symantec Corporation)R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-02-17] (Diskeeper Corporation)R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [92976 2012-02-17] (Diskeeper Corporation)R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140731.001\IDSvia64.sys [525016 2014-07-03] (Symantec Corporation)R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-03-28] (Intel Corporation)S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\ENG64.SYS [126040 2014-07-21] (Symantec Corporation)S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\EX64.SYS [2099288 2014-07-21] (Symantec Corporation)S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-06] (Symantec Corporation)S1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)==================== NetSvcs (Whitelisted) ===================(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:864098 Share Posted August 8, 2014 ==================== One Month Created Files and Folders ========(If an entry is included in the fixlist, the file\folder will be moved.)2014-08-08 08:58 - 2014-08-08 08:59 - 00027318 _____ () C:\Users\Benji\Desktop\FRST.txt2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp2014-08-07 21:01 - 2014-08-08 08:58 - 00000000 ____D () C:\FRST2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\ProgramData\Avira2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\Program Files (x86)\Avira2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe2014-08-06 22:24 - 2014-08-07 18:21 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr2014-08-06 10:46 - 2014-07-30 16:07 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool2014-08-06 10:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20102014-08-06 10:29 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20082014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia2014-08-06 10:29 - 2012-04-13 00:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20102014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20082014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2014-08-05 21:57 - 2014-08-08 08:58 - 00001945 _____ () C:\Windows\epplauncher.mif2014-08-05 21:53 - 2014-08-05 21:54 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe2014-08-05 20:53 - 2014-08-08 08:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com2014-08-05 07:51 - 2014-08-05 07:55 - 00000000 ____D () C:\Windows\system32\MRT2014-08-05 07:24 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe2014-08-05 07:24 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll2014-08-05 07:24 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll2014-08-05 07:24 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe2014-08-05 07:24 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll2014-08-05 07:24 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe2014-08-05 07:24 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe2014-08-05 07:24 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll2014-08-05 07:24 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll2014-08-05 07:24 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll2014-08-05 07:24 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe2014-08-05 07:23 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll2014-08-05 07:23 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll2014-08-05 07:23 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2014-08-05 07:23 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2014-08-05 07:23 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-08-05 07:23 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2014-08-05 07:23 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2014-08-05 07:23 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2014-08-05 07:23 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll2014-08-05 07:23 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-08-05 07:23 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2014-08-05 07:23 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2014-08-05 07:23 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2014-08-05 07:23 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2014-08-05 07:23 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-08-05 07:23 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-08-05 07:23 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2014-08-05 07:23 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2014-08-05 07:23 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll2014-08-05 07:23 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll2014-08-05 07:23 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2014-08-05 07:23 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2014-08-05 07:23 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-08-05 07:23 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2014-08-05 07:23 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll2014-08-05 07:23 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2014-08-05 07:23 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2014-08-05 07:23 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2014-08-05 07:23 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-08-05 07:23 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll2014-08-05 07:23 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2014-08-05 07:23 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2014-08-05 07:23 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2014-08-05 07:23 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2014-08-05 07:23 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2014-08-05 07:23 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2014-08-05 07:23 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2014-08-05 07:23 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2014-08-05 07:23 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-08-05 07:23 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll2014-08-05 07:23 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll2014-08-05 07:23 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2014-08-05 07:23 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2014-08-05 07:23 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2014-08-05 07:23 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll2014-08-05 07:23 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-08-05 07:23 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2014-08-05 07:23 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2014-08-05 07:23 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2014-08-05 07:23 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2014-08-05 07:23 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2014-08-05 07:23 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2014-08-05 07:23 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2014-08-05 07:23 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2014-08-05 07:23 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2014-08-05 07:23 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2014-08-05 07:23 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll2014-08-05 07:23 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll2014-08-05 07:23 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll2014-08-05 07:23 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll2014-08-05 07:23 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll2014-08-05 07:23 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll2014-08-05 07:22 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll2014-08-05 07:22 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll2014-08-05 07:22 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys2014-08-05 07:22 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll2014-08-05 07:22 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll2014-08-05 07:22 - 2014-03-24 22:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll2014-08-05 07:22 - 2014-03-24 22:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll2014-08-05 07:21 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe2014-08-05 07:21 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe2014-08-05 07:21 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2014-08-05 07:21 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys2014-08-05 07:21 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS2014-08-05 07:21 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys2014-08-05 07:20 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll2014-08-05 07:20 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll2014-08-05 07:20 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll2014-08-05 07:20 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys2014-08-05 07:20 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys2014-08-05 07:20 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll2014-08-05 07:20 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe2014-08-05 07:20 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll2014-08-05 07:20 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll2014-08-05 07:20 - 2014-03-04 05:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll2014-08-05 07:20 - 2013-09-24 22:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll2014-08-05 07:20 - 2013-09-24 21:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll2014-08-05 07:20 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys2014-08-05 07:18 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys2014-08-05 07:18 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys2014-08-05 07:18 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll2014-08-05 07:18 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll2014-08-05 07:18 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys2014-08-05 07:18 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys2014-08-05 07:18 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll2014-08-05 07:18 - 2012-11-28 18:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf2014-08-05 07:17 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll2014-08-05 07:17 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll2014-08-05 07:17 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys2014-08-05 07:17 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll2014-08-05 07:17 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll2014-08-05 07:17 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll2014-08-05 07:17 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll2014-08-05 07:17 - 2013-07-09 01:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll2014-08-05 07:17 - 2013-07-09 00:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll2014-08-05 07:17 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys2014-08-05 07:17 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys2014-08-05 07:17 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll2014-08-05 07:17 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll2014-08-05 07:17 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll2014-08-05 07:17 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll2014-08-05 07:17 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll2014-08-05 07:17 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll2014-08-05 07:16 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll2014-08-05 07:16 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll2014-08-05 07:16 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll2014-08-05 07:16 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe2014-08-05 07:16 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll2014-08-05 07:16 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe2014-08-05 07:16 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe2014-08-05 07:16 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys2014-08-05 07:16 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys2014-08-05 07:16 - 2013-10-02 22:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll2014-08-05 07:16 - 2013-10-02 22:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll2014-08-05 07:16 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe2014-08-05 07:16 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll2014-08-05 07:16 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll2014-08-05 07:16 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll2014-08-05 07:16 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll2014-08-05 07:16 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll2014-08-05 07:16 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys2014-08-05 07:15 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll2014-08-05 07:15 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll2014-08-05 07:15 - 2013-11-11 22:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll2014-08-05 07:15 - 2013-11-11 22:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll2014-08-05 07:15 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll2014-08-05 07:15 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll2014-08-05 07:15 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll2014-08-05 07:15 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll2014-08-05 07:15 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll2014-08-05 07:15 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll2014-08-05 07:15 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll2014-08-05 07:15 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll2014-08-05 07:15 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll2014-08-05 07:15 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll2014-08-05 07:15 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll2014-08-05 07:15 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe2014-08-05 07:15 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe2014-08-05 07:15 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll2014-08-05 07:15 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll2014-08-05 07:15 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll2014-08-05 07:15 - 2013-04-12 10:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys2014-08-05 07:15 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys2014-08-05 07:15 - 2012-06-01 01:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll2014-08-05 07:15 - 2012-06-01 01:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll2014-08-05 07:15 - 2012-06-01 01:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll2014-08-05 07:15 - 2012-06-01 01:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll2014-08-05 07:15 - 2012-06-01 01:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll2014-08-05 07:15 - 2012-06-01 01:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe2014-08-05 07:15 - 2012-06-01 00:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll2014-08-05 07:15 - 2012-06-01 00:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll2014-08-05 07:15 - 2012-06-01 00:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll2014-08-05 07:15 - 2012-06-01 00:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll2014-08-05 07:15 - 2012-06-01 00:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll2014-08-05 07:15 - 2012-06-01 00:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe2014-08-05 07:14 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll2014-08-05 07:14 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll2014-08-05 07:14 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll2014-08-05 07:14 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll2014-08-05 07:14 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll2014-08-05 07:14 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll2014-08-05 07:14 - 2013-02-27 02:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe2014-08-05 07:14 - 2013-02-27 01:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll2014-08-05 07:14 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll2014-08-05 07:14 - 2013-02-27 00:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll2014-08-05 07:13 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll2014-08-05 07:13 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll2014-08-05 07:13 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL2014-08-05 07:13 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL2014-08-05 07:12 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx2014-08-05 07:12 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll2014-08-05 07:12 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx2014-08-05 07:12 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll2014-08-05 07:12 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe2014-08-05 07:12 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe2014-08-05 07:12 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe2014-08-05 07:12 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe2014-08-05 07:12 - 2013-08-01 08:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys2014-08-05 07:12 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys2014-08-05 07:12 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll2014-08-05 07:11 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll2014-08-05 07:11 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL2014-08-05 07:11 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL2014-08-05 07:11 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll2014-08-05 07:11 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL2014-08-05 07:11 - 2013-04-09 19:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll2014-08-05 07:11 - 2013-04-02 18:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast2014-08-05 00:16 - 2014-08-06 00:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus2014-08-04 23:40 - 2014-08-05 06:24 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG2014-08-04 12:26 - 2014-08-08 08:30 - 00000000 ____D () C:\ProgramData\MFAData2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe2014-07-31 11:20 - 2014-07-31 21:54 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}2014-07-18 10:16 - 2014-07-18 10:17 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe2014-07-10 07:12 - 2014-08-05 00:08 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt==================== One Month Modified Files and Folders =======(If an entry is included in the fixlist, the file\folder will be moved.)2014-08-08 08:59 - 2014-08-08 08:58 - 00027318 _____ () C:\Users\Benji\Desktop\FRST.txt2014-08-08 08:58 - 2014-08-07 21:01 - 00000000 ____D () C:\FRST2014-08-08 08:58 - 2014-08-05 21:57 - 00001945 _____ () C:\Windows\epplauncher.mif2014-08-08 08:41 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02014-08-08 08:41 - 2009-07-14 00:45 - 00024192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02014-08-08 08:40 - 2013-01-03 16:35 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-08-08 08:37 - 2012-07-26 01:43 - 01135336 _____ () C:\Windows\WindowsUpdate.log2014-08-08 08:33 - 2013-01-03 16:35 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update2014-08-08 08:32 - 2013-01-03 16:35 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-08-08 08:31 - 2012-07-26 01:51 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job2014-08-08 08:31 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-08-08 08:31 - 2009-07-14 00:51 - 00107390 _____ () C:\Windows\setupact.log2014-08-08 08:30 - 2014-08-04 12:26 - 00000000 ____D () C:\ProgramData\MFAData2014-08-08 08:30 - 2010-11-20 23:47 - 01109234 _____ () C:\Windows\PFRO.log2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\ProgramData\McAfee2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\Program Files (x86)\McAfee2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\ProgramData\Avira2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\Program Files (x86)\Avira2014-08-08 08:07 - 2014-04-05 09:28 - 00000000 ____D () C:\ProgramData\Package Cache2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp2014-08-08 08:03 - 2013-02-06 19:12 - 00000000 ____D () C:\Program Files\McAfee2014-08-08 08:01 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe2014-08-07 18:48 - 2012-07-26 01:51 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job2014-08-07 18:21 - 2014-08-06 22:24 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log2014-08-07 14:01 - 2013-01-09 18:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\CrashDumps2014-08-07 13:46 - 2013-03-20 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help2014-08-07 13:45 - 2013-01-05 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office2014-08-06 22:37 - 2013-01-11 20:07 - 23339520 ___SH () C:\Users\Benji\Desktop\Thumbs.db2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe2014-08-06 22:22 - 2014-08-06 22:22 - 00388608 _____ (Trend Micro Inc.) C:\Users\Benji\Desktop\HijackThis.exe2014-08-06 22:19 - 2009-07-14 01:13 - 00911372 _____ () C:\Windows\system32\PerfStringBackup.INI2014-08-06 20:42 - 2013-01-11 17:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2014-08-06 20:39 - 2014-05-03 13:01 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr2014-08-06 20:38 - 2014-05-03 13:00 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys2014-08-06 20:38 - 2014-05-03 13:00 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys2014-08-06 20:38 - 2013-03-16 23:10 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys2014-08-06 20:38 - 2013-03-16 23:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys2014-08-06 20:38 - 2013-01-03 16:35 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe2014-08-06 20:38 - 2013-01-03 16:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys2014-08-06 20:26 - 2014-05-06 10:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2014-08-06 10:40 - 2014-05-06 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 22014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool2014-08-06 10:26 - 2014-04-14 19:52 - 00039270 _____ () C:\Windows\iis7.log2014-08-06 10:23 - 2009-07-14 00:45 - 05080184 _____ () C:\Windows\system32\FNTCACHE.DAT2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files\Microsoft Silverlight2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight2014-08-06 10:09 - 2012-04-12 23:50 - 00000000 ____D () C:\Program Files\Windows Journal2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\inetsrv2014-08-06 10:01 - 2013-01-03 17:01 - 00919700 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI2014-08-06 10:01 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client2014-08-06 09:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20102014-08-06 09:29 - 2014-03-05 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express2014-08-06 09:07 - 2013-04-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight2014-08-06 09:01 - 2014-04-14 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 20082014-08-06 08:51 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20082014-08-06 08:25 - 2014-05-03 15:52 - 00000000 ____D () C:\Program Files (x86)\AbiWord2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2014-08-06 00:29 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\McAfee Security Scan2014-08-06 00:29 - 2013-01-03 16:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy2014-08-06 00:29 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration2014-08-06 00:28 - 2013-01-03 16:34 - 00000000 ____D () C:\Program Files\AVAST Software2014-08-05 21:54 - 2014-08-05 21:53 - 13829304 _____ (Microsoft Corporation) C:\Users\Benji\Desktop\mseinstall.exe2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com2014-08-05 20:32 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji2014-08-05 13:43 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Skype2014-08-05 13:43 - 2012-04-12 23:18 - 00000000 ____D () C:\ProgramData\Skype2014-08-05 07:55 - 2014-08-05 07:51 - 00000000 ____D () C:\Windows\system32\MRT2014-08-05 06:24 - 2014-08-04 23:40 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast2014-08-05 00:16 - 2014-08-05 00:16 - 00001971 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus2014-08-05 00:10 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer2014-08-05 00:08 - 2014-07-10 07:12 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security2014-08-05 00:08 - 2014-07-06 13:04 - 00000000 ____D () C:\Windows\system32\Drivers\NISx642014-08-05 00:07 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\AppCompat2014-08-05 00:06 - 2014-07-06 13:06 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security2014-08-05 00:06 - 2014-01-16 14:32 - 00000000 ____D () C:\ProgramData\Norton2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files\Bonjour2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files (x86)\Bonjour2014-08-05 00:06 - 2013-03-12 15:20 - 00000000 ____D () C:\Program Files\WinRAR2014-08-05 00:06 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Common Files\Diskeeper Corporation2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files\Sleep Memory Optimizer2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files (x86)\EgisTec Shredder2014-08-05 00:06 - 2012-07-26 01:59 - 00000000 ____D () C:\Program Files (x86)\Launch Manager2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files\Elantech2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files (x86)\Atheros2014-08-05 00:06 - 2012-07-26 01:55 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite2014-08-05 00:06 - 2012-07-26 01:52 - 00000000 ____D () C:\Dolby PCEE42014-08-05 00:06 - 2012-04-12 23:12 - 00000000 ____D () C:\ProgramData\BackupManager2014-08-05 00:05 - 2013-07-20 18:55 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner2014-08-05 00:03 - 2013-01-06 13:18 - 00000000 ____D () C:\workwebsites2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts2014-08-05 00:02 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\SysWOW64\WindowsPowerShell2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Web2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Vss2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\spp2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Speech2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz2014-08-05 00:01 - 2012-04-12 23:11 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\nti2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\SysWOW64\Macromed2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\system32\Macromed2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\winrm2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\WCN2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\slmgr2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\InstallShield2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\IME2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\com2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\sysprep2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spp2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spool2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Speech2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\SMI2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\oobe2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\MUI2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\migwiz2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\IME2014-08-05 00:00 - 2014-04-14 19:52 - 00000000 ____D () C:\Windows\system32\BestPractices2014-08-05 00:00 - 2014-03-05 18:30 - 00000000 ____D () C:\Windows\symbols2014-08-05 00:00 - 2012-07-26 02:27 - 00000000 ____D () C:\Windows\NAPP_Dism_Log2014-08-05 00:00 - 2012-04-12 23:19 - 00000000 ____D () C:\Windows\oem2014-08-05 00:00 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\Performance2014-08-05 00:00 - 2009-07-14 00:45 - 00000000 ____D () C:\Windows\Setup2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\com2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Speech2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\servicing2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\security2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\schemas2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Resources2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PLA2014-08-04 23:59 - 2012-04-12 23:12 - 00000000 ____D () C:\Windows\Downloaded Installations2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 __RSD () C:\Windows\Media2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\IME2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Help2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Globalization2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Branding2014-08-04 23:59 - 2009-03-12 05:30 - 00000000 ____D () C:\Windows\LP2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia2014-08-04 23:58 - 2014-05-15 15:25 - 00000000 ____D () C:\Program Files\SAMSUNG2014-08-04 23:58 - 2014-04-14 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A2014-08-04 23:58 - 2014-04-14 22:49 - 00000000 ____D () C:\Program Files\Business Objects2014-08-04 23:58 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files\Microsoft Device Emulator2014-08-04 23:58 - 2014-04-14 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server2014-08-04 23:58 - 2014-04-14 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 20082014-08-04 23:58 - 2014-04-14 08:47 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.02014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Virtualized Applications2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)2014-08-04 23:58 - 2014-04-05 09:58 - 00000000 ____D () C:\Program Files\GIMP 22014-08-04 23:58 - 2014-03-12 22:46 - 00000000 ____D () C:\Users\Benji\android2014-08-04 23:58 - 2014-03-12 22:45 - 00000000 ____D () C:\Program Files\Java2014-08-04 23:58 - 2014-03-12 20:57 - 00000000 ____D () C:\Users\Benji\Desktop\adt-bundle-windows-x86_64-201310302014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Users\Benji\Documents\Visual Studio 20102014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.02014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v7.12014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\Program Files\Microsoft SDKs2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Adobe2014-08-04 23:58 - 2013-07-10 15:47 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bred2014-08-04 23:58 - 2013-06-25 22:45 - 00000000 ____D () C:\Users\Benji\Desktop\BoogoDEMO25062014-08-04 23:58 - 2013-06-15 07:52 - 00000000 ____D () C:\Users\Benji\.gimp-2.82014-08-04 23:58 - 2013-04-12 16:40 - 00000000 ____D () C:\Program Files\Red Gate2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\PreEmptive Solutions2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\PreEmptive Solutions2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PreEmptive Solutions2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Red Gate2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\IsolatedStorage2014-08-04 23:58 - 2013-03-27 18:36 - 00000000 ____D () C:\Users\Benji\Desktop\PuDongPuxi-DONE2014-08-04 23:58 - 2013-03-20 21:37 - 00000000 ____D () C:\Users\Benji\AppData\Local\Globalscape2014-08-04 23:58 - 2013-03-16 17:19 - 00000000 ____D () C:\Program Files\ptdemo2014-08-04 23:58 - 2013-01-27 13:39 - 00000000 ____D () C:\ProgramData\Apple2014-08-04 23:58 - 2013-01-24 11:12 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\NCH Software2014-08-04 23:58 - 2013-01-23 17:48 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Digiarty2014-08-04 23:58 - 2013-01-21 17:40 - 00000000 ____D () C:\ProgramData\NaturalSoft2014-08-04 23:58 - 2013-01-14 10:49 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-08-04 23:58 - 2013-01-06 11:14 - 00000000 ___SD () C:\PT2014-08-04 23:58 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Local\CyberLink2014-08-04 23:58 - 2013-01-03 17:02 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SoftGrid Client2014-08-04 23:58 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files\Microsoft Office2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Mozilla2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Mozilla2014-08-04 23:58 - 2013-01-03 16:35 - 00000000 ____D () C:\Users\Benji\AppData\Local\Google2014-08-04 23:58 - 2013-01-03 16:34 - 00000000 ____D () C:\ProgramData\AVAST Software2014-08-04 23:58 - 2013-01-03 16:13 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Adobe2014-08-04 23:58 - 2013-01-03 16:05 - 00000000 ____D () C:\ProgramData\OEM_E471269A730E2014-08-04 23:58 - 2013-01-03 16:04 - 00000000 ____D () C:\Program Files\Preload2014-08-04 23:58 - 2013-01-03 16:01 - 00000000 ____D () C:\Users\Benji\AppData\Local\VirtualStore2014-08-04 23:58 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Diskeeper Corporation2014-08-04 23:58 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files\EgisTec IPS2014-08-04 23:58 - 2012-07-26 02:04 - 00000000 ____D () C:\ProgramData\CLSK2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\install_clap2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\CyberLink2014-08-04 23:58 - 2012-07-26 02:02 - 00000000 ____D () C:\Users\Public\OEM2014-08-04 23:58 - 2012-07-26 01:58 - 00000000 ____D () C:\ProgramData\Atheros2014-08-04 23:58 - 2012-07-26 01:53 - 00000000 ____D () C:\ProgramData\Temp2014-08-04 23:58 - 2012-07-26 01:52 - 00000000 ____D () C:\Program Files\Realtek2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Intel2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\Program Files\Intel2014-08-04 23:58 - 2012-07-26 01:48 - 00000000 ____D () C:\Program Files\Common Files\Intel2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\ProgramData\Acer2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files\Acer2014-08-04 23:58 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files\Windows Live2014-08-04 23:58 - 2012-04-12 23:15 - 00000000 ____D () C:\ProgramData\WildTangent2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-04-12 23:13 - 00000000 ____D () C:\ProgramData\Adobe2014-08-04 23:58 - 2012-04-12 23:10 - 00000000 ____D () C:\ProgramData\oem2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Reference Assemblies2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\MSBuild2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Microsoft Games2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\DVD Maker2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Default2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Windows NT2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Device Emulator2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Business Objects2014-08-04 23:57 - 2014-04-14 22:46 - 00000000 ____D () C:\Program Files (x86)\Windows Mobile 5.0 SDK R22014-08-04 23:57 - 2014-04-14 22:38 - 00000000 ____D () C:\Program Files (x86)\CE Remote Tools2014-08-04 23:57 - 2014-04-14 22:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Designer Tools2014-08-04 23:57 - 2014-04-14 08:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.02014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server2014-08-04 23:57 - 2014-03-05 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.02014-08-04 23:57 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs2014-08-04 23:57 - 2013-12-12 19:18 - 00000000 ____D () C:\Program Files (x86)\MSECache2014-08-04 23:57 - 2013-07-10 15:47 - 00000000 ____D () C:\Program Files (x86)\Bred2014-08-04 23:57 - 2013-04-05 20:59 - 00000000 ____D () C:\Program Files (x86)\PreEmptive Solutions2014-08-04 23:57 - 2013-03-20 21:36 - 00000000 ____D () C:\Program Files (x86)\Globalscape2014-08-04 23:57 - 2013-03-19 22:37 - 00000000 ____D () C:\Program Files (x86)\Terminator2014-08-04 23:57 - 2013-03-19 21:28 - 00000000 ____D () C:\Program Files (x86)\NirSoft2014-08-04 23:57 - 2013-03-04 16:14 - 00000000 ____D () C:\Program Files (x86)\TeamViewer2014-08-04 23:57 - 2013-01-19 18:24 - 00000000 ____D () C:\Program Files (x86)\NCH Software2014-08-04 23:57 - 2013-01-03 16:35 - 00000000 ____D () C:\Program Files (x86)\Google2014-08-04 23:57 - 2012-07-26 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLocker2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec IPS2014-08-04 23:57 - 2012-07-26 02:12 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLockerSuite2014-08-04 23:57 - 2012-07-26 02:06 - 00000000 ____D () C:\Program Files (x86)\Cyberlink2014-08-04 23:57 - 2012-04-12 23:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition2014-08-04 23:57 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files (x86)\Windows Live2014-08-04 23:57 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games2014-08-04 23:57 - 2012-04-12 23:12 - 00000000 ____D () C:\Program Files (x86)\newsXpresso2014-08-04 23:57 - 2012-04-12 23:11 - 00000000 ____D () C:\Program Files (x86)\NTI2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ____D () C:\Program Files (x86)\Realtek2014-08-04 23:57 - 2012-04-12 23:08 - 00000000 ____D () C:\Program Files (x86)\Intel2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild2014-08-04 23:57 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files (x86)\Windows NT2014-08-04 23:56 - 2014-04-18 08:31 - 00000000 ___SD () C:\CP_COM - Copy2014-08-04 23:56 - 2014-04-14 19:52 - 00000000 ____D () C:\inetpub2014-08-04 23:56 - 2013-04-26 11:34 - 00000000 ____D () C:\JA260420132014-08-04 23:56 - 2013-04-02 17:11 - 00000000 ___SD () C:\JA0204132014-08-04 23:56 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files (x86)\ASIX Electronics Corporation2014-08-04 23:56 - 2012-04-12 23:40 - 00000000 __SHD () C:\OEM2014-08-04 23:56 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files (x86)\Acer2014-08-04 23:56 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\Acer Games2014-08-04 23:56 - 2012-04-12 23:13 - 00000000 ____D () C:\Program Files (x86)\Adobe2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt2014-07-31 22:07 - 2014-06-17 14:21 - 00002659 _____ () C:\Users\Benji\Desktop\WS_FTP.LOG2014-07-31 21:54 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live2014-07-31 15:56 - 2013-10-13 04:40 - 00000000 ____D () C:\Program Files (x86)\Porn Terminator2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}2014-07-30 16:07 - 2014-08-06 10:46 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup2014-07-23 13:42 - 2014-07-04 12:00 - 00000710 _____ () C:\Users\Benji\Desktop\x.php2014-07-18 10:17 - 2014-07-18 10:16 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe2014-07-18 09:57 - 2014-04-29 21:23 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner Remove Porn Pro2014-07-10 07:06 - 2014-07-06 13:06 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration2014-07-10 07:06 - 2014-07-06 13:05 - 00002505 _____ () C:\Users\Public\Desktop\Norton Internet Security.lnk2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txtSome content of TEMP:====================C:\Users\Benji\AppData\Local\Temp\avgnt.exe==================== Bamital & volsnap Check =================(There is no automatic fix for files that do not pass verification.)C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signedLastRegBack: 2014-07-28 10:33==================== End Of Log ============================ Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:864100 Share Posted August 8, 2014 Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-08-2014Ran by Benji at 2014-08-08 09:00:13Running from C:\Users\Benji\DesktopBoot Mode: Normal============================================================================== Security Center ========================(If an entry is included in the fixlist, it will be removed.)AV: Norton Internet Security (Disabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}AS: Norton Internet Security (Disabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}FW: Norton Internet Security (Disabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}==================== Installed Programs ======================(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) clear.fi SDK - MVP 2 (x32 Version: 2.0.1505 - CyberLink Corp.) Hidden clear.fi SDK- Movie 2 (x32 Version: 2.0.1502 - CyberLink Corp.) Hidden7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - )Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.100 - NTI Corporation)Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}) (Version: 1.5.2728.00 - CyberLink Corp.)Acer Crystal Eye Webcam (x32 Version: 1.5.2728.00 - CyberLink Corp.) HiddenAcer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3010 - Acer Incorporated)Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)Acer Instant Update Service (HKLM\...\{4E8D1AAE-509F-46DE-AAB4-CE9BCABA2D35}) (Version: 1.00.3001 - Acer Incorporated)Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3506 - Acer Incorporated)Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 20.12.0307.1154 - Acer Incorporated)Acer Theft Shield (HKLM\...\{8ADB0CD2-4E5A-452F-BB3B-3A2984CAC749}) (Version: 1.00.3001 - Acer Incorporated)Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3501 - Acer Incorporated)Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3501 - Acer Incorporated)Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)Adobe AIR (x32 Version: 3.1.0.4880 - Adobe Systems Incorporated) HiddenAdobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) HiddenAdobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.1 - Adobe Systems Incorporated)Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)Adobe Flash Professional CC (HKLM-x32\...\{B56B95BF-7161-4166-8288-DB1BA9F6C9B8}) (Version: 13.0 - Adobe Systems Incorporated)Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) HiddenAdobe Reader XI (11.0.03) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated)Advanced Find and Replace v7.8.1 (HKLM-x32\...\Advanced Find and Replace 7_is1) (Version: 7.8.1 - Abacre Limited)Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) HiddenAtheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.126 - Atheros)avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2021 - AVAST Software)AX88772B Windows 7 Drivers (HKLM-x32\...\InstallShield_{54A168C9-2250-4058-80EB-1F4A4192548A}) (Version: 1.0.1.1 - ASIX Electronics Corporation)AX88772B Windows 7 Drivers (x32 Version: 1.0.1.1 - ASIX Electronics Corporation) HiddenBackup Manager V3 (x32 Version: 3.0.0.100 - NTI Corporation) HiddenBejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) HiddenBonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)Chronicles of Albian (x32 Version: 2.2.0.95 - WildTangent) HiddenChuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hiddenclear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated)clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated)Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) HiddenCrystal Reports Basic for Visual Studio 2008 (HKLM-x32\...\{AA467959-A1D6-4F45-90CD-11DC57733F32}) (Version: 10.5.0.0 - Business Objects)Crystal Reports Basic Runtime for Visual Studio 2008 (x64) (HKLM\...\{2BFA9B05-7418-4EDE-A6FC-620427BAAAA3}) (Version: 10.5.0.0 - Business Objects)CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)CyberLink MediaEspresso (x32 Version: 6.5.1720_38230 - CyberLink Corp.) HiddenD3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) HiddenDemo Crack (HKLM-x32\...\{C95E1501-EC37-4C01-8E12-7C2D671986D8}) (Version: 1.0.0 - )Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) HiddenDotfuscator Professional Edition Evaluation 4.10 (HKLM-x32\...\{E227823E-E839-4BE9-A429-E72B3E966DEC}) (Version: 4.10.0.11731 - PreEmptive Solutions)ETDWare PS/2-X64 10.6.9.8_WHQL (HKLM\...\Elantech) (Version: 10.6.9.8 - ELAN Microelectronic Corp.)ExpressCache (HKLM\...\{1E084588-8CC6-4D1B-B904-B1A09DA22A52}) (Version: 1.0.82 - Diskeeper Corporation)FATE (x32 Version: 2.2.0.97 - WildTangent) HiddenFinal Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) HiddenGalería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenGalerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenGIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) HiddenGovernor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) HiddenIdentity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36279 - Intel Corporation)Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)Intel® Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1024 - Intel Corporation)Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)Intel® Trusted Connect Service Client (Version: 1.23.943.1 - Intel Corporation) HiddenJava 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) HiddenJewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) HiddenJunk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenLaunch Manager (HKLM-x32\...\LManager) (Version: 5.1.15 - Acer Inc.)Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) HiddenMicrosoft .NET Compact Framework 2.0 SP2 (HKLM-x32\...\{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}) (Version: 2.0.7045 - Microsoft Corporation)Microsoft .NET Compact Framework 3.5 (HKLM-x32\...\{291B3A3B-F808-45B8-8113-DF232FCB6C82}) (Version: 3.5.7283 - Microsoft Corporation)Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) HiddenMicrosoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) HiddenMicrosoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) HiddenMicrosoft Device Emulator (64 bit) version 3.0 - ENU (HKLM\...\{EF8B1A2E-9CCB-3AB2-91E3-4EEDAB1294E1}) (Version: 9.0.21022 - Microsoft Corporation)Microsoft Document Explorer 2008 (HKLM-x32\...\Microsoft Document Explorer 2008) (Version: - Microsoft Corporation)Microsoft Document Explorer 2008 (x32 Version: 9.0.21022 - Microsoft Corporation) HiddenMicrosoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) HiddenMicrosoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) HiddenMicrosoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) HiddenMicrosoft Office FrontPage 2003 (HKLM-x32\...\{90170409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) HiddenMicrosoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) HiddenMicrosoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) HiddenMicrosoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)Microsoft Office Visual Web Developer 2007 (x32 Version: 12.0.4518.1066 - Microsoft Corporation) HiddenMicrosoft Office Visual Web Developer MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) HiddenMicrosoft PhotoDraw 2000 V2 (HKLM-x32\...\{3C5EA394-1033-11D2-A2CB-00C04F72F31D}) (Version: 2.00.00.0820 - Microsoft Corporation)Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)Microsoft PVK Import (Remove only) (HKLM-x32\...\PVK-Import) (Version: - )Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)Microsoft SQL Server 2008 (HKLM-x32\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)Microsoft SQL Server 2008 (x32 Version: - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft SQL Server 2008 Common Files (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Database Engine Services (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Database Engine Shared (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)Microsoft SQL Server 2008 RsFx Driver (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenMicrosoft SQL Server 2008 Setup Support Files (English) (HKLM-x32\...\{9D6D76A6-4328-49E8-97A7-531A74841DA5}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM-x32\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 for Devices ENU (HKLM-x32\...\{241F2BF7-69EB-42A4-9156-96B2426C7504}) (Version: 3.5.5386.0 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM-x32\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - Microsoft Corporation)Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.0.1600.22 - Microsoft Corporation)Microsoft Visual C# 2010 Express - ENU (HKLM-x32\...\Microsoft Visual C# 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual C# 2010 Express - ENU (x32 Version: 10.0.30319 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Professional Edition - ENU (HKLM-x32\...\Microsoft Visual Studio 2008 Professional Edition - ENU) (Version: - Microsoft Corporation)Microsoft Visual Studio 2008 Professional Edition - ENU (x32 Version: 9.0.21022 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Remote Debugger - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger - ENU) (Version: - Microsoft Corporation)Microsoft Visual Studio 2008 Remote Debugger - ENU (Version: 9.0.21022 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)Microsoft Visual Studio 2008 Remote Debugger Light (x64) - ENU (Version: 9.0.30729 - Microsoft Corporation) HiddenMicrosoft Visual Studio 2008 Remote Debugger Light (x64) - ENU Service Pack 1 (KB945140) (HKLM-x32\...\{90A80D89-A0E4-33C1-B13D-B93CB3496867}.KB945140) (Version: 1 - Microsoft Corporation)Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)Microsoft Visual Studio Web Authoring Component (HKLM-x32\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)Microsoft Windows SDK .NET Framework Tools (30514) (Version: 7.1.30514 - Microsoft) HiddenMicrosoft Windows SDK for Visual Studio .NET 4.0 Framework Tools (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{29C93182-34F6-3275-A18D-59326851CD57}) (Version: 3.5.21022 - Microsoft)Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{9aa5f39c-a8de-46b0-919a-0248f8bc8490}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu (HKLM\...\{DFB3AD2B-4EE2-3077-BF1D-3CA164BC5336}) (Version: 3.5.30729 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32 (HKLM\...\{F5C819A5-E068-4f7d-B91A-1BD18702AFFB}) (Version: 6.1.5295.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{62EED300-E841-4083-A1D6-60B906271804}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{A992BBAA-723D-4574-A07F-983BF8FAA3E1}) (Version: 6.1.5288.17011 - Microsoft Corporation)Microsoft Windows SDK for Windows 7 (7.1) (HKLM\...\SDKSetup_7.1.7600.0.30514) (Version: 7.1.7600.0.30514 - Microsoft Corporation)Microsoft Windows SDK for Windows 7 (7.1) (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft Windows SDK for Windows 7 Common Utilities (30514) (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft Windows SDK Net Fx Interop Headers And Libraries (30514) (Version: 7.1.30514 - Microsoft Corporation) HiddenMicrosoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) HiddenMicrosoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) HiddenMozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) HiddenMSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) HiddenMyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) HiddenMyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) HiddenMyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.19 - Egis Technology Inc.)MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) HiddennewsXpresso (HKLM-x32\...\InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}) (Version: 1.0.0.40 - esobi Inc.)newsXpresso (x32 Version: 1.0.0.40 - esobi Inc.) HiddenNirSoft IconsExtract (HKLM-x32\...\NirSoft IconsExtract) (Version: - )Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.4.0.13 - Symantec Corporation)Orca (HKLM-x32\...\{85F4CBCB-9BBC-4B50-A7D8-E1106771498D}) (Version: 3.1.3790.0000 - Microsoft Corporation)Penguins! (x32 Version: 2.2.0.98 - WildTangent) HiddenPlants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) HiddenPolar Bowler (x32 Version: 2.2.0.97 - WildTangent) HiddenPolar Golfer (x32 Version: 2.2.0.98 - WildTangent) HiddenPorn Terminator (HKLM-x32\...\{63AFDE5F-B004-4F91-8069-B9AB59792904}) (Version: 3.0.0 - )Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.1 - Qualcomm Atheros)Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6597 - Realtek Semiconductor Corp.)Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7601.39025 - Realtek Semiconductor Corp.)Resize Your Picture (HKLM-x32\...\{44559BD3-71A9-4921-AF91-0140D3D07F62}) (Version: 4.0 - Bred)SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.1500.0 - SAMSUNG Electronics Co., Ltd.)Shredder (Version: 2.0.8.9 - Egis Technology Inc.) HiddenShredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) HiddenSleep Memory Optimizer (HKLM-x32\...\{34BE2594-1D20-4A2E-97A0-B9E2837520AE}) (Version: 1.00.3004 - Acer Incorporated)Smart Timer (HKLM-x32\...\{89DB52FC-EA72-468F-A0C7-150AF8B7AB74}) (Version: 1.00.3004 - Acer Incorporated)SmartAssembly 6 (HKLM\...\{E5D5860E-7287-473E-8932-3A979F43AE12}) (Version: 6.7.1.61 - Red Gate Software Ltd)Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)Sql Server Customer Experience Improvement Program (x32 Version: 10.0.1600.22 - Microsoft Corporation) HiddenTeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.26038 - TeamViewer)Torchlight (x32 Version: 2.2.0.98 - WildTangent) HiddenUpdate for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)Update for Microsoft Visual Studio 2008 Professional Edition - ENU (KB972221) (HKLM-x32\...\{D7DAD1E4-45F4-3B2B-899A-EA728167EC4F}.KB972221) (Version: 1 - Microsoft Corporation)Update Installer for WildTangent Games App (x32 Version: - WildTangent) HiddenVC Runtimes MSI (x32 Version: 9.0.21022 - Microsoft) HiddenVirtual Villagers 5 - New Believers (x32 Version: 2.2.0.97 - WildTangent) HiddenVisual Studio .NET Prerequisites - English (HKLM\...\{D3E39E77-0EB4-36FB-B97A-8C8AB21B9A45}) (Version: 9.0.21022 - Microsoft Corporation)Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.21022 - Microsoft Corporation) HiddenWelcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated)WildTangent Games App (Acer Games) (x32 Version: 4.0.5.32 - WildTangent) HiddenWindows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) HiddenWindows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) HiddenWindows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) HiddenWindows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) HiddenWindows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) HiddenWindows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) HiddenWindows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) HiddenWindows Mobile 5.0 SDK R2 for Pocket PC (HKLM-x32\...\{6C9F6D23-E9AD-43C9-B43A-011562AAF876}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)Windows Mobile 5.0 SDK R2 for Smartphone (HKLM-x32\...\{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden==================== Custom CLSID (selected items): ==========================(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{3A999A50-AB25-4A20-90A9-08F71FCE320F}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{98087D89-B93F-4BCF-A998-AE4D9F607C14}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)CustomCLSID: HKU\S-1-5-21-3222356215-3916699849-2517307691-1000_Classes\CLSID\{B286F068-5B17-4AE8-989B-8F9A199C47BA}\InprocServer32 -> C:\Windows\system32\spool\DRIVERS\x64\3\hpcdmc64.dll (HP)==================== Restore Points =========================06-08-2014 12:45:53 Windows Update06-08-2014 14:41:52 Windows Update07-08-2014 00:35:36 avast! antivirus system restore point07-08-2014 00:53:14 Installed AVG 201407-08-2014 00:54:42 Installed AVG 201407-08-2014 17:39:20 Windows Update08-08-2014 12:07:55 Removed AVG 201408-08-2014 12:21:32 Removed AVG 201408-08-2014 12:27:45 Removed AVG 2014==================== Hosts content: ==========================(If needed Hosts: directive could be included in the fixlist to reset Hosts.)2009-07-13 22:34 - 2014-08-06 10:46 - 00450770 ____R C:\Windows\system32\Drivers\etc\hosts127.0.0.1 www.007guard.com127.0.0.1 007guard.com127.0.0.1 008i.com127.0.0.1 www.008k.com127.0.0.1 008k.com127.0.0.1 www.00hq.com127.0.0.1 00hq.com127.0.0.1 010402.com127.0.0.1 www.032439.com127.0.0.1 032439.com127.0.0.1 www.0scan.com127.0.0.1 0scan.com127.0.0.1 www.1000gratisproben.com127.0.0.1 1000gratisproben.com127.0.0.1 1001namen.com127.0.0.1 www.1001namen.com127.0.0.1 100888290cs.com127.0.0.1 www.100888290cs.com127.0.0.1 www.100sexlinks.com127.0.0.1 100sexlinks.com127.0.0.1 www.10sek.com127.0.0.1 10sek.com127.0.0.1 www.1-2005-search.com127.0.0.1 1-2005-search.com127.0.0.1 www.123fporn.info127.0.0.1 123fporn.info127.0.0.1 123haustiereundmehr.com127.0.0.1 www.123haustiereundmehr.com127.0.0.1 123moviedownload.comThere are 1000 more lines.==================== Scheduled Tasks (whitelisted) =============(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)Task: {084E3E00-6291-4226-8097-0D9E9A6DB467} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2012-02-06] (Acer Incorporated)Task: {0A3992EB-BAD7-43EB-8718-A751C69CAC84} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink)Task: {0F143BA5-CFD8-4015-BE18-1A8E8B5098DD} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)Task: {15C9DDF1-99DB-46A6-B25C-7EA949B2F223} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)Task: {16B7594C-C8F9-49FD-AA4B-070B24C7DDC1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-06] (AVAST Software)Task: {447D8BD7-4480-4C49-82B0-60EFFC7388B8} - System32\Tasks\{2B6DEA2A-4BCE-44F2-96E1-E7D212F6D713} => Firefox.exe http://ui.skype.com/ui/0/6.1.0.129.272/en/abandoninstall?page=tsMainTask: {68BFD4A5-A790-4B76-B9DF-1F79CABCDF98} - System32\Tasks\Smart Timer Task Scheduler => Smart_Timer.exeTask: {72AA6030-131F-46A6-BCCF-DC3D25257F88} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\SymErr.exe [2014-01-30] (Symantec Corporation)Task: {73C21A8B-7846-4E5A-B3B5-558BCB3988B4} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2011-03-28] (Egis Technology Inc.)Task: {B5F52E9B-7BDF-4E61-95AA-5DC8A68F2ACA} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\WSCStub.exe [2014-06-26] (Symantec Corporation)Task: {B7DD77B5-DC7A-4294-BE9B-AACC922A86A9} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2011-03-28] (Egis Technology Inc.)Task: {C7B86A17-D88C-472C-A843-2F44282D6442} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)Task: {C9F771D2-F715-4D4E-9B96-A329BDF8992B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-03] (Google Inc.)Task: {E8D11D23-B2AC-42E5-8BB8-0D1CB0D197EB} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2012-03-26] (Intel Corporation)Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exeTask: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exeTask: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeTask: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe==================== Loaded Modules (whitelisted) =============2009-01-21 19:45 - 2009-01-21 19:45 - 01401856 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll2012-07-26 02:12 - 2012-03-26 21:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00257640 _____ () C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe2012-03-07 00:49 - 2012-03-07 00:49 - 00213608 _____ () C:\Program Files\Acer\Acer Theft Shield\CommPtl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () C:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () C:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () C:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00236648 _____ () c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe2012-03-07 00:49 - 2012-03-07 00:49 - 00114280 _____ () c:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00197736 _____ () c:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll2012-03-07 00:49 - 2012-03-07 00:49 - 00140904 _____ () c:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll2012-07-26 01:51 - 2012-03-29 02:36 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe2014-08-06 20:38 - 2014-08-06 20:38 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll2014-08-08 07:55 - 2014-08-08 07:55 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080800\algo.dll2012-01-05 17:22 - 2012-01-05 17:22 - 00465344 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll2012-01-05 17:22 - 2012-01-05 17:22 - 01081368 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll2012-01-05 17:22 - 2012-01-05 17:22 - 00125464 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll2014-08-06 20:38 - 2014-08-06 20:38 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll2014-05-06 10:28 - 2014-04-25 14:11 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl2014-05-06 10:28 - 2014-04-25 14:11 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl2014-05-06 10:28 - 2014-04-25 14:11 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl2014-05-06 10:28 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll2014-05-06 10:28 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll2012-07-26 01:51 - 2012-03-29 02:18 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll==================== Alternate Data Streams (whitelisted) =========(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)AlternateDataStreams: C:\ProgramData\Temp:661DFA1CAlternateDataStreams: C:\Users\Benji\AppData\Local\Temp:ZcHVkelT4qnCfa8embJ0LpO9AlternateDataStreams: C:\Users\Benji\AppData\Local\Temporary Internet Files:aW4DzdLrcpHHzCIzfdyLgutAlternateDataStreams: C:\Users\Benji\AppData\Local\yHrx86IBEK:obCo7un7065qZARgKSl3VRpZLc==================== Safe Mode (whitelisted) ===================(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)==================== EXE Association (whitelisted) =============(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)==================== MSCONFIG/TASK MANAGER disabled items =========(Currently there is no automatic fix for this section.)MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"MSCONFIG\startupreg: ccFullVersionAlert => C:\Program Files (x86)\Content Cleaner\remindeMe.exe==================== Faulty Device Manager Devices =============Name: Symantec Iron DriverDescription: Symantec Iron DriverClass Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: SymIRONProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.Name: Symantec Network Security WFP DriverDescription: Symantec Network Security WFP DriverClass Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: SymNetSProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.Name: BHDrvx64Description: BHDrvx64Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: BHDrvx64Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.Name: NIS Settings ManagerDescription: NIS Settings ManagerClass Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}Manufacturer:Service: ccSet_NISProblem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.Devices stay in this state if they have been prepared for removal.After you remove the device, this error disappears.Remove the device, and this error should be resolved.==================== Event log errors: =========================Application errors:==================Error: (08/08/2014 08:14:10 AM) (Source: MsiInstaller) (EventID: 10005) (User: Benji-PC)Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 27054. CA_Error27054: SetupAction(0xC0070642): Installation failed.Error: (08/08/2014 08:08:31 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.Details:AddLegacyDriverFiles: Unable to back up image of binary SASKUTIL.System Error:The system cannot find the file specified..Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 31543199Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 31543199Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a secondError: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 31542185Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 31542185Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a secondError: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 8471Error: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 8471System errors:=============Error: (08/08/2014 08:35:50 AM) (Source: Service Control Manager) (EventID: 7023) (User: )Description: The HP Network Devices Support service terminated with the following error:%%126Error: (08/08/2014 08:33:44 AM) (Source: Service Control Manager) (EventID: 7026) (User: )Description: The following boot-start or system-start driver(s) failed to load:BHDrvx64ccSet_NISSymIRONSymNetSError: (08/08/2014 08:32:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:%%1053Error: (08/08/2014 08:32:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.Error: (08/08/2014 08:22:15 AM) (Source: Service Control Manager) (EventID: 7023) (User: )Description: The HP Network Devices Support service terminated with the following error:%%126Error: (08/08/2014 08:20:13 AM) (Source: Service Control Manager) (EventID: 7026) (User: )Description: The following boot-start or system-start driver(s) failed to load:BHDrvx64ccSet_NISSymIRONSymNetSError: (08/08/2014 08:19:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Spybot-S&D 2 Scanner Service service failed to start due to the following error:%%1053Error: (08/08/2014 08:19:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the Spybot-S&D 2 Scanner Service service to connect.Error: (08/08/2014 08:17:58 AM) (Source: Service Control Manager) (EventID: 7001) (User: )Description: The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error:%%1058Error: (08/08/2014 08:14:38 AM) (Source: Service Control Manager) (EventID: 7001) (User: )Description: The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error:%%1058Microsoft Office Sessions:=========================Error: (08/08/2014 08:14:10 AM) (Source: MsiInstaller) (EventID: 10005) (User: Benji-PC)Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 27054. CA_Error27054: SetupAction(0xC0070642): Installation failed.(NULL)(NULL)(NULL)(NULL)(NULL)Error: (08/08/2014 08:08:31 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )Description:Details:AddLegacyDriverFiles: Unable to back up image of binary SASKUTIL.System Error:The system cannot find the file specified.Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 31543199Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 31543199Error: (08/08/2014 07:54:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a secondError: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 31542185Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 31542185Error: (08/08/2014 07:54:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: Continuously busy for more than a secondError: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledSPRetry 8471Error: (08/07/2014 11:08:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )Description: Task Scheduling Error: m->NextScheduledEvent 8471==================== Memory info ===========================Percentage of memory in use: 41%Total physical RAM: 3932.36 MBAvailable physical RAM: 2284.14 MBTotal Pagefile: 7862.9 MBAvailable Pagefile: 5968.81 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.84 MB==================== Drives ================================Drive c: (ACER) (Fixed) (Total:282.37 GB) (Free:191.83 GB) NTFS==================== MBR & Partition Table ==========================================================================Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 8FBBF039)Partition 1: (Not Active) - (Size=16 GB) - (Type=27)Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)Partition 3: (Not Active) - (Size=282 GB) - (Type=07 NTFS)========================================================Disk: 1 (MBR Code: Windows 7 or 8) (Size: 19 GB) (Disk ID: 67229B2C)Partition 1: (Not Active) - (Size=4 GB) - (Type=84)Partition 2: (Not Active) - (Size=15 GB) - (Type=73)==================== End Of Log ============================ Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:864101 Share Posted August 8, 2014 Thanks again! Link to post Share on other sites More sharing options...
deeprybka Posted August 8, 2014 ID:864161 Share Posted August 8, 2014 Hi, there is still more than one antivirus installed... Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:864297 Share Posted August 8, 2014 Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2014Ran by Benji (administrator) on Benji-PC on 08-08-2014 17:07:52Running from C:\Users\Benji\DesktopPlatform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 11Boot Mode: NormalThe only official download link for FRST:Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe(Microsoft Corporation) C:\Windows\System32\wlanext.exe(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe(Acer Incorporated) C:\Program Files\Sleep Memory Optimizer\FFSService.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\nis.exe(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe() C:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe(Intel Corporation) C:\Windows\System32\igfxsrvc.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe() C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe(Intel Corporation) C:\Windows\System32\igfxext.exe(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe(CyberLink) C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe==================== Registry (Whitelisted) ==================(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-15] (Realtek Semiconductor)HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2822952 2012-02-24] (ELAN Microelectronics Corp.)HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)HKLM\...\Run: [secure Applicayion] => c:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe [257640 2012-03-07] ()HKLM-x32\...\Run: [backupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)HKLM-x32\...\Run: [uSB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-23] (Dritek System Inc.)HKLM-x32\...\Run: [suiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)HKU\.DEFAULT\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-19\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}HKU\S-1-5-20\...\RunOnce: [isMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnkShortcutTarget: Acer VCM.lnk -> C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnkShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (No File)ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)BootExecute: autocheck autochk * sdnclean64.exe==================== Internet (Whitelisted) ====================(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01URLSearchHook: HKLM-x32 - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No FileURLSearchHook: HKCU - (No Name) - {32b29df0-2237-4370-9a29-37cebb730e9b} - No FileSearchScopes: HKLM-x32 - DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKCU - DefaultScope {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01SearchScopes: HKCU - {DB4F2DBF-4523-44B8-9516-23491EBC7F23} URL = http://ca.search.yahoo.com/search?fr=mcafee&type=A010CA662&p={SearchTerms}BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No FileBHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\IPS\IPSBHO.DLL (Symantec Corporation)BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No FileToolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\21.4.0.13\coIEPlg.dll (Symantec Corporation)Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\coIEPlg.dll (Symantec Corporation)Toolbar: HKCU - No Name - {32B29DF0-2237-4370-9A29-37CEBB730E9B} - No FileDPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cabDPF: HKLM-x32 {84B7AC1D-9AD1-474F-B6B0-FE1641DBFDFA} http://contentpurity.com/xp/ScanFile.CABHandler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - No FileHandler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No FileHosts: There are more than one entry in Hosts. See Hosts section of Addition.txtTcpip\Parameters: [DhcpNameServer] 64.71.255.204 64.71.255.198FireFox:========FF ProfilePath: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.defaultFF DefaultSearchEngine: Microsoft (Bing)FF SearchEngineOrder.1: Microsoft (Bing)FF SelectedSearchEngine: Microsoft (Bing)FF Homepage: hxxp://www.msn.com/?pc=AV01FF Keyword.URL: hxxp://www.bing.com/searchFF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF Plugin: @microsoft.com/GENUINE -> disabled No FileFF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)FF Plugin-x32: @microsoft.com/GENUINE -> disabled No FileFF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)FF SearchPlugin: C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\searchplugins\bing-avast.xmlFF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xmlFF Extension: United States English Spellchecker - C:\Users\Benji\AppData\Roaming\Mozilla\Firefox\Profiles\ou3j933i.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-07-07]FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FFFF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-03]FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFFFF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\IPSFF [2014-07-06]FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgnFF Extension: No Name - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_21.1.0.18\coFFPlgn [2014-07-22]FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpiFF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]Chrome:=======CHR HomePage: hxxp://www.msn.com/?pc=AV01CHR StartupUrls: "hxxp://www.msn.com/?pc=AV01"CHR DefaultSearchKeyword: mcafeeCHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll ()CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewerCHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll ()CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\36.0.1985.125\pdf.dll ()CHR Plugin: (McAfee SiteAdvisor) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.50.146.2_0\McChPlg.dll No FileCHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No FileCHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No FileCHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No FileCHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No FileCHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No FileCHR Extension: (Google Drive) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-03]CHR Extension: (YouTube) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-03]CHR Extension: (Google Search) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-03]CHR Extension: (avast! Online Security) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-07]CHR Extension: (Norton Security Toolbar) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-08-07]CHR Extension: (Google Wallet) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]CHR Extension: (Gmail) - C:\Users\Benji\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-03]CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\Exts\Chrome.crx [2014-08-05]CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION==================== Services (Whitelisted) =================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-02-17] (Diskeeper Corporation)R2 FFSOpzSvc; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [141192 2011-09-17] (Acer Incorporated)R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-29] ()S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [193536 2012-03-27] (Intel Corporation)R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165144 2012-03-29] (Intel Corporation)R2 MSSQL$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [40999448 2008-07-10] (Microsoft Corporation)S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [4737024 2008-07-29] (Microsoft Corporation)R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\21.4.0.13\NIS.exe [276376 2014-06-27] (Symantec Corporation)R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)S4 SQLAgent$SQLEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [369688 2008-07-10] (Microsoft Corporation)R2 USecuAppSvc; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [236648 2012-03-07] ()R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]S2 HPSLPSVC; C:\Users\Benji\AppData\Local\Temp\7zS226D\hpslpsvc64.dll [X]==================== Drivers (Whitelisted) ====================(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-06] (AVAST Software)R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2010-12-31] (ASIX Electronics Corp.)S1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140718.001\BHDrvx64.sys [1530160 2014-06-06] (Symantec Corporation)S1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1504000.00D\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-07-05] (Symantec Corporation)R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-02-17] (Diskeeper Corporation)R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [92976 2012-02-17] (Diskeeper Corporation)R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140731.001\IDSvia64.sys [525016 2014-07-03] (Symantec Corporation)R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-03-28] (Intel Corporation)S3 NAVENG; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\ENG64.SYS [126040 2014-07-21] (Symantec Corporation)S3 NAVEX15; C:\Program Files (x86)\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140801.018\EX64.SYS [2099288 2014-07-21] (Symantec Corporation)S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1504000.00D\SRTSP64.SYS [875736 2014-02-12] (Symantec Corporation)R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1504000.00D\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)R0 SymDS; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)R0 SymEFA; C:\Windows\System32\drivers\NISx64\1504000.00D\SYMEFA64.SYS [1148120 2014-03-04] (Symantec Corporation)R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-07-06] (Symantec Corporation)S1 SymIRON; C:\Windows\system32\drivers\NISx64\1504000.00D\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)S1 SymNetS; C:\Windows\System32\Drivers\NISx64\1504000.00D\SYMNETS.SYS [593112 2014-02-17] (Symantec Corporation)==================== NetSvcs (Whitelisted) ===================(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)==================== One Month Created Files and Folders ======== Link to post Share on other sites More sharing options...
pleasehelpstuck Posted August 8, 2014 Author ID:864298 Share Posted August 8, 2014 (If an entry is included in the fixlist, the file\folder will be moved.)2014-08-08 15:13 - 2014-08-08 15:14 - 00000085 _____ () C:\Windows\wininit.ini2014-08-08 15:13 - 2014-08-08 15:13 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking2014-08-08 08:58 - 2014-08-08 17:08 - 00026075 _____ () C:\Users\Benji\Desktop\FRST.txt2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp2014-08-07 21:01 - 2014-08-08 17:07 - 00000000 ____D () C:\FRST2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\ProgramData\Avira2014-08-07 13:18 - 2014-08-08 08:17 - 00000000 ____D () C:\Program Files (x86)\Avira2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe2014-08-06 22:24 - 2014-08-07 18:21 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr2014-08-06 10:46 - 2014-07-30 16:07 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool2014-08-06 10:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20102014-08-06 10:29 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20082014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-06 10:29 - 2014-08-04 23:58 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia2014-08-06 10:29 - 2012-04-13 00:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance2014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20102014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20082014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2014-08-05 21:57 - 2014-08-08 08:58 - 00001945 _____ () C:\Windows\epplauncher.mif2014-08-05 20:53 - 2014-08-08 08:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com2014-08-05 07:51 - 2014-08-05 07:55 - 00000000 ____D () C:\Windows\system32\MRT2014-08-05 07:24 - 2014-03-04 05:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe2014-08-05 07:24 - 2014-03-04 05:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll2014-08-05 07:24 - 2014-03-04 05:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll2014-08-05 07:24 - 2014-03-04 05:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe2014-08-05 07:24 - 2014-03-04 05:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll2014-08-05 07:24 - 2014-03-04 05:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll2014-08-05 07:24 - 2014-03-04 05:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe2014-08-05 07:24 - 2014-03-04 05:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe2014-08-05 07:24 - 2014-03-04 05:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll2014-08-05 07:24 - 2014-03-04 05:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll2014-08-05 07:24 - 2014-03-04 05:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll2014-08-05 07:24 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll2014-08-05 07:24 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe2014-08-05 07:23 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll2014-08-05 07:23 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll2014-08-05 07:23 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2014-08-05 07:23 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2014-08-05 07:23 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll2014-08-05 07:23 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2014-08-05 07:23 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2014-08-05 07:23 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2014-08-05 07:23 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll2014-08-05 07:23 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll2014-08-05 07:23 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2014-08-05 07:23 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2014-08-05 07:23 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2014-08-05 07:23 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2014-08-05 07:23 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe2014-08-05 07:23 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll2014-08-05 07:23 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2014-08-05 07:23 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2014-08-05 07:23 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll2014-08-05 07:23 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll2014-08-05 07:23 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2014-08-05 07:23 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2014-08-05 07:23 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2014-08-05 07:23 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2014-08-05 07:23 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll2014-08-05 07:23 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2014-08-05 07:23 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2014-08-05 07:23 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2014-08-05 07:23 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll2014-08-05 07:23 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll2014-08-05 07:23 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2014-08-05 07:23 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2014-08-05 07:23 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2014-08-05 07:23 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2014-08-05 07:23 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2014-08-05 07:23 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2014-08-05 07:23 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2014-08-05 07:23 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2014-08-05 07:23 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll2014-08-05 07:23 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll2014-08-05 07:23 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll2014-08-05 07:23 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2014-08-05 07:23 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2014-08-05 07:23 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2014-08-05 07:23 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll2014-08-05 07:23 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2014-08-05 07:23 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2014-08-05 07:23 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2014-08-05 07:23 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2014-08-05 07:23 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2014-08-05 07:23 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2014-08-05 07:23 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2014-08-05 07:23 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2014-08-05 07:23 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2014-08-05 07:23 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2014-08-05 07:23 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2014-08-05 07:23 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll2014-08-05 07:23 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll2014-08-05 07:23 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll2014-08-05 07:23 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll2014-08-05 07:23 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll2014-08-05 07:23 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll2014-08-05 07:23 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll2014-08-05 07:23 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll2014-08-05 07:22 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll2014-08-05 07:22 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll2014-08-05 07:22 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys2014-08-05 07:22 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll2014-08-05 07:22 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll2014-08-05 07:22 - 2014-03-24 22:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll2014-08-05 07:22 - 2014-03-24 22:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll2014-08-05 07:21 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe2014-08-05 07:21 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe2014-08-05 07:21 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2014-08-05 07:21 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys2014-08-05 07:21 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS2014-08-05 07:21 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys2014-08-05 07:20 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll2014-08-05 07:20 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll2014-08-05 07:20 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll2014-08-05 07:20 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys2014-08-05 07:20 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys2014-08-05 07:20 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll2014-08-05 07:20 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe2014-08-05 07:20 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll2014-08-05 07:20 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll2014-08-05 07:20 - 2014-03-04 05:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll2014-08-05 07:20 - 2014-03-04 05:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll2014-08-05 07:20 - 2014-03-04 05:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll2014-08-05 07:20 - 2013-09-24 22:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll2014-08-05 07:20 - 2013-09-24 21:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll2014-08-05 07:20 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys2014-08-05 07:18 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys2014-08-05 07:18 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys2014-08-05 07:18 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll2014-08-05 07:18 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll2014-08-05 07:18 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys2014-08-05 07:18 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys2014-08-05 07:18 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll2014-08-05 07:18 - 2012-11-28 18:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf2014-08-05 07:17 - 2013-12-24 19:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll2014-08-05 07:17 - 2013-12-24 18:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll2014-08-05 07:17 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys2014-08-05 07:17 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys2014-08-05 07:17 - 2013-11-26 04:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll2014-08-05 07:17 - 2013-11-22 18:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll2014-08-05 07:17 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll2014-08-05 07:17 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll2014-08-05 07:17 - 2013-07-09 01:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll2014-08-05 07:17 - 2013-07-09 00:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll2014-08-05 07:17 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys2014-08-05 07:17 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys2014-08-05 07:17 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll2014-08-05 07:17 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll2014-08-05 07:17 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll2014-08-05 07:17 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll2014-08-05 07:17 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll2014-08-05 07:17 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll2014-08-05 07:16 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll2014-08-05 07:16 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll2014-08-05 07:16 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll2014-08-05 07:16 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll2014-08-05 07:16 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe2014-08-05 07:16 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll2014-08-05 07:16 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe2014-08-05 07:16 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe2014-08-05 07:16 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys2014-08-05 07:16 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys2014-08-05 07:16 - 2013-10-02 22:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll2014-08-05 07:16 - 2013-10-02 22:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll2014-08-05 07:16 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe2014-08-05 07:16 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll2014-08-05 07:16 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll2014-08-05 07:16 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll2014-08-05 07:16 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll2014-08-05 07:16 - 2013-07-09 01:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll2014-08-05 07:16 - 2013-07-09 00:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll2014-08-05 07:16 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys2014-08-05 07:15 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll2014-08-05 07:15 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll2014-08-05 07:15 - 2013-11-11 22:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll2014-08-05 07:15 - 2013-11-11 22:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll2014-08-05 07:15 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll2014-08-05 07:15 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll2014-08-05 07:15 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll2014-08-05 07:15 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll2014-08-05 07:15 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll2014-08-05 07:15 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll2014-08-05 07:15 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll2014-08-05 07:15 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll2014-08-05 07:15 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll2014-08-05 07:15 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll2014-08-05 07:15 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll2014-08-05 07:15 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe2014-08-05 07:15 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe2014-08-05 07:15 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll2014-08-05 07:15 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll2014-08-05 07:15 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll2014-08-05 07:15 - 2013-04-12 10:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023x.sys2014-08-05 07:15 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys2014-08-05 07:15 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rndismpx.sys2014-08-05 07:15 - 2012-06-01 01:39 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wamregps.dll2014-08-05 07:15 - 2012-06-01 01:36 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\iisRtl.dll2014-08-05 07:15 - 2012-06-01 01:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\iisrstap.dll2014-08-05 07:15 - 2012-06-01 01:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ahadmin.dll2014-08-05 07:15 - 2012-06-01 01:34 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\admwprox.dll2014-08-05 07:15 - 2012-06-01 01:33 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\iisreset.exe2014-08-05 07:15 - 2012-06-01 00:40 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wamregps.dll2014-08-05 07:15 - 2012-06-01 00:37 - 00154624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisRtl.dll2014-08-05 07:15 - 2012-06-01 00:37 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisrstap.dll2014-08-05 07:15 - 2012-06-01 00:35 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admwprox.dll2014-08-05 07:15 - 2012-06-01 00:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ahadmin.dll2014-08-05 07:15 - 2012-06-01 00:34 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iisreset.exe2014-08-05 07:14 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll2014-08-05 07:14 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll2014-08-05 07:14 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll2014-08-05 07:14 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll2014-08-05 07:14 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll2014-08-05 07:14 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll2014-08-05 07:14 - 2013-02-27 02:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe2014-08-05 07:14 - 2013-02-27 01:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll2014-08-05 07:14 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll2014-08-05 07:14 - 2013-02-27 00:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll2014-08-05 07:13 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll2014-08-05 07:13 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll2014-08-05 07:13 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL2014-08-05 07:13 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL2014-08-05 07:12 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx2014-08-05 07:12 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll2014-08-05 07:12 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx2014-08-05 07:12 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll2014-08-05 07:12 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe2014-08-05 07:12 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe2014-08-05 07:12 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe2014-08-05 07:12 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe2014-08-05 07:12 - 2013-08-01 08:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys2014-08-05 07:12 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys2014-08-05 07:12 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll2014-08-05 07:11 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll2014-08-05 07:11 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL2014-08-05 07:11 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL2014-08-05 07:11 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll2014-08-05 07:11 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL2014-08-05 07:11 - 2013-04-09 19:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll2014-08-05 07:11 - 2013-04-02 18:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast2014-08-05 00:16 - 2014-08-06 00:29 - 00000000 ____D () C:\ProgramData\McAfee Security Scan2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus2014-08-04 23:40 - 2014-08-05 06:24 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG2014-08-04 12:26 - 2014-08-08 08:30 - 00000000 ____D () C:\ProgramData\MFAData2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe2014-07-31 11:20 - 2014-07-31 21:54 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}2014-07-18 10:16 - 2014-07-18 10:17 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe2014-07-10 07:12 - 2014-08-05 00:08 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txt==================== One Month Modified Files and Folders =======(If an entry is included in the fixlist, the file\folder will be moved.)2014-08-08 17:08 - 2014-08-08 08:58 - 00026075 _____ () C:\Users\Benji\Desktop\FRST.txt2014-08-08 17:07 - 2014-08-07 21:01 - 00000000 ____D () C:\FRST2014-08-08 17:05 - 2012-07-26 01:43 - 01211222 _____ () C:\Windows\WindowsUpdate.log2014-08-08 17:01 - 2013-01-03 16:35 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-08-08 17:01 - 2012-07-26 01:51 - 00000828 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job2014-08-08 17:01 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-08-08 17:01 - 2009-07-14 00:51 - 00107670 _____ () C:\Windows\setupact.log2014-08-08 16:08 - 2009-07-14 00:45 - 00024416 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02014-08-08 16:08 - 2009-07-14 00:45 - 00024416 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02014-08-08 15:17 - 2014-05-06 10:28 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 22014-08-08 15:17 - 2010-11-20 23:47 - 01112328 _____ () C:\Windows\PFRO.log2014-08-08 15:14 - 2014-08-08 15:13 - 00000085 _____ () C:\Windows\wininit.ini2014-08-08 15:13 - 2014-08-08 15:13 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking2014-08-08 10:40 - 2013-01-03 16:35 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-08-08 09:49 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache2014-08-08 08:58 - 2014-08-05 21:57 - 00001945 _____ () C:\Windows\epplauncher.mif2014-08-08 08:33 - 2013-01-03 16:35 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update2014-08-08 08:30 - 2014-08-04 12:26 - 00000000 ____D () C:\ProgramData\MFAData2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\ProgramData\McAfee2014-08-08 08:18 - 2012-04-12 23:09 - 00000000 ____D () C:\Program Files (x86)\McAfee2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\ProgramData\Avira2014-08-08 08:17 - 2014-08-07 13:18 - 00000000 ____D () C:\Program Files (x86)\Avira2014-08-08 08:07 - 2014-04-05 09:28 - 00000000 ____D () C:\ProgramData\Package Cache2014-08-08 08:06 - 2014-08-08 08:06 - 00000000 ____D () C:\OETemp2014-08-08 08:03 - 2013-02-06 19:12 - 00000000 ____D () C:\Program Files\McAfee2014-08-08 08:01 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware2014-08-07 20:59 - 2014-08-07 20:59 - 02094080 _____ (Farbar) C:\Users\Benji\Desktop\FRST64.exe2014-08-07 18:48 - 2012-07-26 01:51 - 00000830 _____ () C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job2014-08-07 18:21 - 2014-08-06 22:24 - 00014921 _____ () C:\Users\Benji\Desktop\hijackthis.log2014-08-07 14:01 - 2013-01-09 18:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\CrashDumps2014-08-07 13:46 - 2013-03-20 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help2014-08-07 13:45 - 2013-01-05 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office2014-08-06 22:37 - 2013-01-11 20:07 - 23339520 ___SH () C:\Users\Benji\Desktop\Thumbs.db2014-08-06 22:25 - 2014-08-06 22:25 - 00050688 _____ (Atribune.org) C:\Users\Benji\Desktop\ATF-Cleaner.exe2014-08-06 22:19 - 2009-07-14 01:13 - 00911372 _____ () C:\Windows\system32\PerfStringBackup.INI2014-08-06 20:42 - 2013-01-11 17:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2014-08-06 20:39 - 2014-05-03 13:01 - 00001970 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk2014-08-06 20:38 - 2014-08-06 20:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr2014-08-06 20:38 - 2014-05-03 13:00 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys2014-08-06 20:38 - 2014-05-03 13:00 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys2014-08-06 20:38 - 2013-03-16 23:10 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys2014-08-06 20:38 - 2013-03-16 23:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys2014-08-06 20:38 - 2013-01-03 16:35 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe2014-08-06 20:38 - 2013-01-03 16:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys2014-08-06 20:38 - 2013-01-03 16:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys2014-08-06 20:26 - 2014-05-06 10:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2014-08-06 10:29 - 2014-08-06 10:29 - 00000020 ___SH () C:\Users\DefaultAppPool\ntuser.ini2014-08-06 10:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool2014-08-06 10:26 - 2014-04-14 19:52 - 00039270 _____ () C:\Windows\iis7.log2014-08-06 10:23 - 2009-07-14 00:45 - 05080184 _____ () C:\Windows\system32\FNTCACHE.DAT2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files\Microsoft Silverlight2014-08-06 10:21 - 2013-04-29 16:57 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight2014-08-06 10:09 - 2012-04-12 23:50 - 00000000 ____D () C:\Program Files\Windows Journal2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender2014-08-06 10:09 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\inetsrv2014-08-06 10:09 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\inetsrv2014-08-06 10:01 - 2013-01-03 17:01 - 00919700 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI2014-08-06 10:01 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client2014-08-06 09:29 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20102014-08-06 09:29 - 2014-08-06 09:29 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20102014-08-06 09:29 - 2014-03-05 18:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express2014-08-06 09:07 - 2013-04-29 16:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight2014-08-06 09:01 - 2014-04-14 08:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 20082014-08-06 08:51 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default\Documents\Visual Studio 20082014-08-06 08:51 - 2014-08-06 08:51 - 00000000 ____D () C:\Users\Default User\Documents\Visual Studio 20082014-08-06 08:25 - 2014-05-03 15:52 - 00000000 ____D () C:\Program Files (x86)\AbiWord2014-08-06 08:24 - 2014-08-06 08:24 - 00003102 _____ () C:\Windows\System32\Tasks\{8B140F1D-BDC1-4F7A-A603-FB2A0ACBF467}2014-08-06 07:31 - 2014-08-06 07:31 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2014-08-06 00:29 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\McAfee Security Scan2014-08-06 00:29 - 2013-01-03 16:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy2014-08-06 00:29 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\registration2014-08-06 00:28 - 2013-01-03 16:34 - 00000000 ____D () C:\Program Files\AVAST Software2014-08-05 20:53 - 2014-08-05 20:53 - 00001812 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task ef96d26b-d696-4abe-8bea-233be9a10bba.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000510 _____ () C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 134cd47c-daf5-4ec1-b701-19c7e3ccbb6a.job2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SUPERAntiSpyware.com2014-08-05 20:53 - 2014-08-05 20:53 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com2014-08-05 20:32 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji2014-08-05 13:43 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Skype2014-08-05 13:43 - 2012-04-12 23:18 - 00000000 ____D () C:\ProgramData\Skype2014-08-05 07:55 - 2014-08-05 07:51 - 00000000 ____D () C:\Windows\system32\MRT2014-08-05 06:24 - 2014-08-04 23:40 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\20822184.sys2014-08-05 00:24 - 2014-08-05 00:24 - 00000000 ____D () C:\ProgramData\Kaspersky Lab2014-08-05 00:18 - 2014-08-05 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast2014-08-05 00:16 - 2014-08-05 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus2014-08-05 00:10 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer2014-08-05 00:08 - 2014-07-10 07:12 - 00000000 ____D () C:\Windows\System32\Tasks\Norton Internet Security2014-08-05 00:08 - 2014-07-06 13:04 - 00000000 ____D () C:\Windows\system32\Drivers\NISx642014-08-05 00:07 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\AppCompat2014-08-05 00:06 - 2014-07-06 13:06 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security2014-08-05 00:06 - 2014-07-06 13:04 - 00000000 ____D () C:\Program Files (x86)\Norton Internet Security2014-08-05 00:06 - 2014-01-16 14:32 - 00000000 ____D () C:\ProgramData\Norton2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files\Bonjour2014-08-05 00:06 - 2013-10-09 15:18 - 00000000 ____D () C:\Program Files (x86)\Bonjour2014-08-05 00:06 - 2013-03-12 15:20 - 00000000 ____D () C:\Program Files\WinRAR2014-08-05 00:06 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Common Files\Diskeeper Corporation2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files\Sleep Memory Optimizer2014-08-05 00:06 - 2012-07-26 02:14 - 00000000 ____D () C:\Program Files (x86)\EgisTec Shredder2014-08-05 00:06 - 2012-07-26 01:59 - 00000000 ____D () C:\Program Files (x86)\Launch Manager2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files\Elantech2014-08-05 00:06 - 2012-07-26 01:58 - 00000000 ____D () C:\Program Files (x86)\Atheros2014-08-05 00:06 - 2012-07-26 01:55 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite2014-08-05 00:06 - 2012-07-26 01:52 - 00000000 ____D () C:\Dolby PCEE42014-08-05 00:06 - 2012-04-12 23:12 - 00000000 ____D () C:\ProgramData\BackupManager2014-08-05 00:05 - 2013-07-20 18:55 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner2014-08-05 00:03 - 2013-01-06 13:18 - 00000000 ____D () C:\workwebsites2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr2014-08-05 00:02 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts2014-08-05 00:02 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\SysWOW64\WindowsPowerShell2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Web2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Vss2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\spp2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Speech2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI2014-08-05 00:02 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz2014-08-05 00:01 - 2012-04-12 23:11 - 00000000 ____D () C:\Windows\SysWOW64\Drivers\nti2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\SysWOW64\Macromed2014-08-05 00:01 - 2012-04-12 23:07 - 00000000 ____D () C:\Windows\system32\Macromed2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\winrm2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\WCN2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\slmgr2014-08-05 00:01 - 2010-11-21 03:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell2014-08-05 00:01 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\InstallShield2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\IME2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\com2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\sysprep2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spp2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\spool2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Speech2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\SMI2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\oobe2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\MUI2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\migwiz2014-08-05 00:01 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\IME2014-08-05 00:00 - 2014-04-14 19:52 - 00000000 ____D () C:\Windows\system32\BestPractices2014-08-05 00:00 - 2014-03-05 18:30 - 00000000 ____D () C:\Windows\symbols2014-08-05 00:00 - 2012-07-26 02:27 - 00000000 ____D () C:\Windows\NAPP_Dism_Log2014-08-05 00:00 - 2012-04-12 23:19 - 00000000 ____D () C:\Windows\oem2014-08-05 00:00 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\Performance2014-08-05 00:00 - 2009-07-14 00:45 - 00000000 ____D () C:\Windows\Setup2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\com2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Speech2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\servicing2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\security2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\schemas2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Resources2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions2014-08-05 00:00 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PLA2014-08-04 23:59 - 2012-04-12 23:12 - 00000000 ____D () C:\Windows\Downloaded Installations2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 __RSD () C:\Windows\Media2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\IME2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Help2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Globalization2014-08-04 23:59 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\Branding2014-08-04 23:59 - 2009-03-12 05:30 - 00000000 ____D () C:\Windows\LP2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2014-08-06 10:29 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Macromedia2014-08-04 23:58 - 2014-05-15 15:25 - 00000000 ____D () C:\Program Files\SAMSUNG2014-08-04 23:58 - 2014-04-14 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A2014-08-04 23:58 - 2014-04-14 22:49 - 00000000 ____D () C:\Program Files\Business Objects2014-08-04 23:58 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files\Microsoft Device Emulator2014-08-04 23:58 - 2014-04-14 08:53 - 00000000 ____D () C:\Program Files\Microsoft SQL Server2014-08-04 23:58 - 2014-04-14 08:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 20082014-08-04 23:58 - 2014-04-14 08:47 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 9.02014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Virtualized Applications2014-08-04 23:58 - 2014-04-11 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)2014-08-04 23:58 - 2014-04-05 09:58 - 00000000 ____D () C:\Program Files\GIMP 22014-08-04 23:58 - 2014-03-12 22:46 - 00000000 ____D () C:\Users\Benji\android2014-08-04 23:58 - 2014-03-12 22:45 - 00000000 ____D () C:\Program Files\Java2014-08-04 23:58 - 2014-03-12 20:57 - 00000000 ____D () C:\Users\Benji\Desktop\adt-bundle-windows-x86_64-201310302014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Users\Benji\Documents\Visual Studio 20102014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services2014-08-04 23:58 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition2014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 10.02014-08-04 23:58 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files\Microsoft Help Viewer2014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v7.12014-08-04 23:58 - 2014-02-25 21:17 - 00000000 ____D () C:\Program Files\Microsoft SDKs2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe2014-08-04 23:58 - 2013-07-20 11:00 - 00000000 ____D () C:\Program Files\Adobe2014-08-04 23:58 - 2013-07-10 15:47 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bred2014-08-04 23:58 - 2013-06-25 22:45 - 00000000 ____D () C:\Users\Benji\Desktop\BoogoDEMO25062014-08-04 23:58 - 2013-06-15 07:52 - 00000000 ____D () C:\Users\Benji\.gimp-2.82014-08-04 23:58 - 2013-04-12 16:40 - 00000000 ____D () C:\Program Files\Red Gate2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\PreEmptive Solutions2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\PreEmptive Solutions2014-08-04 23:58 - 2013-04-05 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PreEmptive Solutions2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Red Gate2014-08-04 23:58 - 2013-03-31 17:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\IsolatedStorage2014-08-04 23:58 - 2013-03-27 18:36 - 00000000 ____D () C:\Users\Benji\Desktop\PuDongPuxi-DONE2014-08-04 23:58 - 2013-03-20 21:37 - 00000000 ____D () C:\Users\Benji\AppData\Local\Globalscape2014-08-04 23:58 - 2013-03-16 17:19 - 00000000 ____D () C:\Program Files\ptdemo2014-08-04 23:58 - 2013-01-27 13:39 - 00000000 ____D () C:\ProgramData\Apple2014-08-04 23:58 - 2013-01-24 11:12 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\NCH Software2014-08-04 23:58 - 2013-01-23 17:48 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Digiarty2014-08-04 23:58 - 2013-01-21 17:40 - 00000000 ____D () C:\ProgramData\NaturalSoft2014-08-04 23:58 - 2013-01-14 10:49 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-08-04 23:58 - 2013-01-06 11:14 - 00000000 ___SD () C:\PT2014-08-04 23:58 - 2013-01-05 15:06 - 00000000 ____D () C:\Users\Benji\AppData\Local\CyberLink2014-08-04 23:58 - 2013-01-03 17:02 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\SoftGrid Client2014-08-04 23:58 - 2013-01-03 17:01 - 00000000 ____D () C:\Program Files\Microsoft Office2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Mozilla2014-08-04 23:58 - 2013-01-03 16:51 - 00000000 ____D () C:\Users\Benji\AppData\Local\Mozilla2014-08-04 23:58 - 2013-01-03 16:35 - 00000000 ____D () C:\Users\Benji\AppData\Local\Google2014-08-04 23:58 - 2013-01-03 16:34 - 00000000 ____D () C:\ProgramData\AVAST Software2014-08-04 23:58 - 2013-01-03 16:13 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Adobe2014-08-04 23:58 - 2013-01-03 16:05 - 00000000 ____D () C:\ProgramData\OEM_E471269A730E2014-08-04 23:58 - 2013-01-03 16:04 - 00000000 ____D () C:\Program Files\Preload2014-08-04 23:58 - 2013-01-03 16:01 - 00000000 ____D () C:\Users\Benji\AppData\Local\VirtualStore2014-08-04 23:58 - 2013-01-03 16:00 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files\Diskeeper Corporation2014-08-04 23:58 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files\EgisTec IPS2014-08-04 23:58 - 2012-07-26 02:04 - 00000000 ____D () C:\ProgramData\CLSK2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\install_clap2014-08-04 23:58 - 2012-07-26 02:03 - 00000000 ____D () C:\ProgramData\CyberLink2014-08-04 23:58 - 2012-07-26 02:02 - 00000000 ____D () C:\Users\Public\OEM2014-08-04 23:58 - 2012-07-26 01:58 - 00000000 ____D () C:\ProgramData\Atheros2014-08-04 23:58 - 2012-07-26 01:53 - 00000000 ____D () C:\ProgramData\Temp2014-08-04 23:58 - 2012-07-26 01:52 - 00000000 ____D () C:\Program Files\Realtek2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\ProgramData\Intel2014-08-04 23:58 - 2012-07-26 01:51 - 00000000 ____D () C:\Program Files\Intel2014-08-04 23:58 - 2012-07-26 01:48 - 00000000 ____D () C:\Program Files\Common Files\Intel2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\ProgramData\Acer2014-08-04 23:58 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files\Acer2014-08-04 23:58 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files\Windows Live2014-08-04 23:58 - 2012-04-12 23:15 - 00000000 ____D () C:\ProgramData\WildTangent2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-04-12 23:14 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia2014-08-04 23:58 - 2012-04-12 23:13 - 00000000 ____D () C:\ProgramData\Adobe2014-08-04 23:58 - 2012-04-12 23:10 - 00000000 ____D () C:\ProgramData\oem2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Reference Assemblies2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\MSBuild2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Microsoft Games2014-08-04 23:58 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\DVD Maker2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 __RHD () C:\Users\Default2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Windows NT2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines2014-08-04 23:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Device Emulator2014-08-04 23:57 - 2014-04-14 22:47 - 00000000 ____D () C:\Program Files (x86)\Business Objects2014-08-04 23:57 - 2014-04-14 22:46 - 00000000 ____D () C:\Program Files (x86)\Windows Mobile 5.0 SDK R22014-08-04 23:57 - 2014-04-14 22:38 - 00000000 ____D () C:\Program Files (x86)\CE Remote Tools2014-08-04 23:57 - 2014-04-14 22:36 - 00000000 ____D () C:\Program Files (x86)\Microsoft Web Designer Tools2014-08-04 23:57 - 2014-04-14 08:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 9.02014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services2014-08-04 23:57 - 2014-03-05 18:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server2014-08-04 23:57 - 2014-03-05 18:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 10.02014-08-04 23:57 - 2014-03-05 18:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs2014-08-04 23:57 - 2013-12-12 19:18 - 00000000 ____D () C:\Program Files (x86)\MSECache2014-08-04 23:57 - 2013-07-10 15:47 - 00000000 ____D () C:\Program Files (x86)\Bred2014-08-04 23:57 - 2013-04-05 20:59 - 00000000 ____D () C:\Program Files (x86)\PreEmptive Solutions2014-08-04 23:57 - 2013-03-20 21:36 - 00000000 ____D () C:\Program Files (x86)\Globalscape2014-08-04 23:57 - 2013-03-19 22:37 - 00000000 ____D () C:\Program Files (x86)\Terminator2014-08-04 23:57 - 2013-03-19 21:28 - 00000000 ____D () C:\Program Files (x86)\NirSoft2014-08-04 23:57 - 2013-03-04 16:14 - 00000000 ____D () C:\Program Files (x86)\TeamViewer2014-08-04 23:57 - 2013-01-19 18:24 - 00000000 ____D () C:\Program Files (x86)\NCH Software2014-08-04 23:57 - 2013-01-03 16:35 - 00000000 ____D () C:\Program Files (x86)\Google2014-08-04 23:57 - 2012-07-26 02:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLocker2014-08-04 23:57 - 2012-07-26 02:13 - 00000000 ____D () C:\Program Files (x86)\EgisTec IPS2014-08-04 23:57 - 2012-07-26 02:12 - 00000000 ____D () C:\Program Files (x86)\EgisTec MyWinLockerSuite2014-08-04 23:57 - 2012-07-26 02:06 - 00000000 ____D () C:\Program Files (x86)\Cyberlink2014-08-04 23:57 - 2012-04-12 23:18 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition2014-08-04 23:57 - 2012-04-12 23:17 - 00000000 ____D () C:\Program Files (x86)\Windows Live2014-08-04 23:57 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\WildTangent Games2014-08-04 23:57 - 2012-04-12 23:12 - 00000000 ____D () C:\Program Files (x86)\newsXpresso2014-08-04 23:57 - 2012-04-12 23:11 - 00000000 ____D () C:\Program Files (x86)\NTI2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information2014-08-04 23:57 - 2012-04-12 23:10 - 00000000 ____D () C:\Program Files (x86)\Realtek2014-08-04 23:57 - 2012-04-12 23:08 - 00000000 ____D () C:\Program Files (x86)\Intel2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies2014-08-04 23:57 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild2014-08-04 23:57 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files (x86)\Windows NT2014-08-04 23:56 - 2014-04-18 08:31 - 00000000 ___SD () C:\CP_COM - Copy2014-08-04 23:56 - 2014-04-14 19:52 - 00000000 ____D () C:\inetpub2014-08-04 23:56 - 2013-04-26 11:34 - 00000000 ____D () C:\JA260420132014-08-04 23:56 - 2013-04-02 17:11 - 00000000 ___SD () C:\JA0204132014-08-04 23:56 - 2012-07-26 02:15 - 00000000 ____D () C:\Program Files (x86)\ASIX Electronics Corporation2014-08-04 23:56 - 2012-04-12 23:40 - 00000000 __SHD () C:\OEM2014-08-04 23:56 - 2012-04-12 23:19 - 00000000 ____D () C:\Program Files (x86)\Acer2014-08-04 23:56 - 2012-04-12 23:15 - 00000000 ____D () C:\Program Files (x86)\Acer Games2014-08-04 23:56 - 2012-04-12 23:13 - 00000000 ____D () C:\Program Files (x86)\Adobe2014-08-04 23:18 - 2014-08-04 23:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab Setup Files2014-08-04 12:35 - 2014-08-04 12:35 - 00000000 ____D () C:\Users\Benji\AppData\Roaming\TuneUp Software2014-08-04 12:33 - 2014-08-04 12:33 - 00000000 ____D () C:\Program Files (x86)\AVG2014-08-04 12:26 - 2014-08-04 12:26 - 00000000 ____D () C:\Users\Benji\AppData\Local\MFAData2014-08-02 07:53 - 2014-08-02 07:53 - 00000145 _____ () C:\Users\Benji\Desktop\keywords.txt2014-08-01 20:26 - 2014-08-01 20:26 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup)(1).exe2014-08-01 05:59 - 2014-08-01 05:59 - 00000000 ____D () C:\Users\Benji\AppData\Local\Xamarin2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\J14L4-32760-Q8K56-55005-EL81B.txt2014-07-31 22:07 - 2014-07-31 22:07 - 00000006 _____ () C:\Users\Benji\Desktop\I57A1-71813-D3A41-03541-FP46V.txt2014-07-31 22:07 - 2014-06-17 14:21 - 00002659 _____ () C:\Users\Benji\Desktop\WS_FTP.LOG2014-07-31 21:54 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\Windows Live2014-07-31 15:56 - 2013-10-13 04:40 - 00000000 ____D () C:\Program Files (x86)\Porn Terminator2014-07-31 15:55 - 2014-07-31 15:55 - 00003039 _____ () C:\Users\Benji\Desktop\Porn Terminator.lnk2014-07-31 15:55 - 2014-07-31 15:55 - 00002999 _____ () C:\Users\Benji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Porn Terminator.lnk2014-07-31 15:53 - 2014-07-31 15:53 - 29880864 _____ () C:\Users\Benji\Desktop\PTerminator-Setup.exe2014-07-31 11:20 - 2014-07-31 11:20 - 00000000 ____D () C:\Users\Benji\AppData\Local\{8163D8A9-5C6C-49B3-A568-DCF6815443F1}2014-07-30 16:07 - 2014-08-06 10:46 - 00450770 _____ () C:\Windows\system32\Drivers\etc\hosts.20140806-104645.backup2014-07-23 13:42 - 2014-07-04 12:00 - 00000710 _____ () C:\Users\Benji\Desktop\x.php2014-07-18 10:17 - 2014-07-18 10:16 - 30995275 _____ () C:\Users\Benji\Desktop\ContentCleaner(Setup).exe2014-07-18 09:57 - 2014-04-29 21:23 - 00000000 ____D () C:\Program Files (x86)\Content Cleaner Remove Porn Pro2014-07-10 07:06 - 2014-07-06 13:06 - 00003234 _____ () C:\Windows\System32\Tasks\Norton WSC Integration2014-07-09 10:00 - 2014-07-09 10:00 - 00000644 _____ () C:\Users\Benji\Desktop\mcafee.txtSome content of TEMP:====================C:\Users\Benji\AppData\Local\Temp\avgnt.exe==================== Bamital & volsnap Check =================(There is no automatic fix for files that do not pass verification.)C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\SysWOW64\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signedLastRegBack: 2014-08-08 09:39==================== End Of Log ============================ Link to post Share on other sites
Recommended Posts