Jump to content

snap.do


Recommended Posts

and snap.do engine,

 

I know, I know therese are not new but impossible to get rid of them in the Programs section.

Uninstall doesn't work with them.

I got rid of it in Firefox but not in Programs.

I used malwarebytes anti malware free version, adw, the reports come clean but snap.do still appears.

What can I do ?

Thank you

Soleale

Link to post
Share on other sites

Hello,
    
 
They call me TwinHeadedEagle around here, and I'll be working with you.
 
    
 
    
Before we start please read and note the following:

  • Limit your internet access to posting here, some infections just wait to steal typed-in passwords.
  • Please be patient. I know it is frustrating when your PC isn't working properly, but malware removal takes time.
  • Don't run any scripts or tools on your own, unsupervised usage may cause more harm than good.
  • Do not paste the logs in your posts, attachments make my work easier. There is a Upload Files option below which you can use to attach your reports. Always attach reports from all tools.
  • Stay with me to the end, the absence of symptoms doesn't mean that your machine is fully operational.
  • Note that we may live in totally different time zones, what may cause some delays between answers.
  • Do not ask for help for your business PC. Companies are making revenue via computers, so it is good thing to pay someone to repair it.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.

:excl: I can't foresee everything, so if anything unexpected happens, please stop and inform me!
:excl: There are no silly questions. Never be afraid to ask if in doubt!
 
 
 
  warning.gif Rules and policies
 
We won't support any piracy.
That being told, if any evidence of illegal OS, software, cracks/keygens or any other will be revealed, any further assistance will be suspended. If you are aware that there is this kind of stuff on your machine, remove it before proceeding!
The same applies to any use of P2P software: uTorrent, BitTorrent, Vuze, Kazaa, Ares... We don't provide any help for P2P, except for their removal. All P2P software has to be uninstalled or at least fully disabled before proceeding!
 
Failure to follow these guidelines will result with closing your topic and withdrawning any assistance.
 
 
 
 

adwcleaner_new.png Fix with AdwCleaner
 
Please download AdwCleaner by Xplode and save the file to your desktop.

  • Right-click on adwcleaner_new.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Follow the prompts and click Scan.
  • When finished, please click Clean.
  • Upon completion, click Report. A log (AdwCleaner[s*].txt) will open.
  • Please include the contents of that file in your reply.
     
     
     
     

    Please download Farbar Recovery Scan Tool and save it to your desktop.
     
    Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them.
    Only one of them will run on your system, that will be the right version.
    • Double-click to run it. When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
    • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
Link to post
Share on other sites

Thank you for your help

 

Farbar first and after Adw

 

Soleale

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-08-2014 01
Ran by William at 2014-08-24 20:56:20
Running from C:\Users\William\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.506.5829 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.506.5829 - ABBYY) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Reader X (10.1.10) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.1.629 - Adobe Systems, Inc.)
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD Fuel (Version: 2011.0705.1115.18310 - AMD) Hidden
AMD Media Foundation Decoders (Version: 1.0.60705.1113 - ATI Technologies Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2011.0705.1115.18310 - ATI) Hidden
ATI Catalyst Install Manager (HKLM\...\{B3C4ADC9-637E-DDD9-A66C-782AE5E2E667}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
AWMA Demonstration (HKLM-x32\...\{FD83EDAD-4FA5-4E07-91D1-593BCA73E9C8}) (Version: 1.0.0 - Harcourt Assessment)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{9FA13759-5C2B-4177-9DDC-0038F8B5BEFD}) (Version: 7.0.826.0 - Microsoft Corporation)
Blackboard Collaborate Launcher (HKLM-x32\...\{77A1A81A-8986-45A5-863E-9DDD2C753205}) (Version: 1.1.0.0 - Blackboard)
Blackhawk Striker 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Blio (HKLM-x32\...\{741006D1-7B2B-4E33-B2B0-831F282EEF64}) (Version: 2.2.8188 - K-NFB Reading Technology, Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0705.1115.18310 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0705.1115.18310 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0705.1115.18310 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Czech (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Danish (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Dutch (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help English (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Finnish (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help French (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help German (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Greek (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Italian (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Japanese (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Korean (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Polish (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Russian (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Spanish (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Swedish (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Thai (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
CCC Help Turkish (x32 Version: 2011.0705.1114.18310 - ATI) Hidden
ccc-utility64 (Version: 2011.0705.1115.18310 - ATI) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Compaq Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.2.14901.3869 - Hewlett-Packard Company)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.0.4606 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.5.0.4606 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
EPSON Artisan 730 Series Printer Uninstall (HKLM\...\EPSON Artisan 730 Series) (Version:  - SEIKO EPSON Corporation)
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.1.1 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{FFF841F3-9A15-4F61-BD16-C19F132E5A27}) (Version: 2.3.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON Manuals (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.0.1.0 - SEIKO EPSON CORPORATION)
Epson Print CD (HKLM-x32\...\{D16A31F9-276D-4968-A753-FFEAC56995D0}) (Version: 2.05.00 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-710 Series Printer Uninstall (HKLM\...\EPSON XP-710 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
e-Record 6 (HKLM-x32\...\e-Record 6) (Version:  - )
ESU for Microsoft Windows 7 SP1 (HKLM-x32\...\{E96CAA2A-0244-4A2A-8403-0C3C9534778B}) (Version: 2.1.1 - Hewlett-Packard)
e-tax 2013 (HKLM-x32\...\{FFF14233-FE39-4671-A38E-76FD8F24A879}) (Version: 0.8.509 - Australian Taxation Office)
Evernote v. 4.2.3 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.2.3.22 - Evernote Corp.)
f.lux (HKCU\...\Flux) (Version:  - )
Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Farmscapes (x32 Version: 2.2.0.98 - WildTangent) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FileNet Desktop eForms (HKLM-x32\...\{42CFD768-94A5-4C0D-A49A-88B536BAC551}) (Version: 4.2.00200.2238 - FileNet Corporation)
Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Drive (HKLM-x32\...\{C6640705-7479-4EE5-BC86-879F05F65E74}) (Version: 1.17.7290.4094 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.1.2.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden
HP Auto (Version: 1.0.12935.3667 - Hewlett-Packard Company) Hidden
HP Client Services (Version: 1.1.12938.3539 - Hewlett-Packard) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Documentation (HKLM-x32\...\{14F8638A-6A91-4C4C-82F5-1091686CCB86}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent)
HP Launch Box (HKLM\...\{BF1E75D0-E7AF-4BEA-9FBC-567F0C54BDF9}) (Version: 1.0.12 - Hewlett-Packard Company)
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{2D5E3D2B-919F-407C-8757-E64827518BB6}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Power Manager (HKLM-x32\...\{E44578C7-4667-4124-8BC2-1161BCA54978}) (Version: 1.4.4 - Hewlett-Packard Company)
HP Quick Launch (HKLM-x32\...\{285F722C-0E45-47DE-B38E-5B3B10FA4A7C}) (Version: 2.5.2 - Hewlett-Packard Company)
HP QuickWeb (HKLM-x32\...\{41298BF3-DF6B-449C-BFB7-83663ECB5108}) (Version: 3.1.1.10184 - Hewlett-Packard Company)
HP Recovery Manager (x32 Version: 2.0.0 - Hewlett-Packard) Hidden
HP Security Assistant (HKLM\...\{562608FE-2051-4488-BF22-8CE4C03046AC}) (Version: 1.0.12 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}) (Version: 9.0.15076.3891 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{AF240B18-034B-4A82-B3FC-0B879C4BAE2E}) (Version: 4.5.1.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}) (Version: 6.1.12.1 - Hewlett-Packard Company)
Insaniquarium Deluxe 1.1 (HKLM-x32\...\Insaniquarium Deluxe 1.1) (Version:  - )
Jacquie Lawson Alpine Advent Calendar 2013 (HKLM-x32\...\JLAdventCalendarAlpine2013) (Version: 0.0.5 - MicroCourt Limited)
Jacquie Lawson Alpine Advent Calendar 2013 (x32 Version: 0.0.5 - MicroCourt Limited) Hidden
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Letters from Nowhere 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
Luxor HD (x32 Version: 2.2.0.98 - WildTangent) Hidden
Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movavi Video Converter 12 (HKLM-x32\...\Movavi Video Converter 12) (Version: 12.3.0 - Movavi)
Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyEPSON Portal (HKLM-x32\...\MyEPSON Connect) (Version:  - SEIKO EPSON Corporation)
MyEPSON Portal (x32 Version: 1.0.4.0 - SEIKO EPSON CORPORATION) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation)
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
Peggle Deluxe (HKLM-x32\...\Peggle Deluxe) (Version:  - PopCap Games)
Peggle Nights (HKLM-x32\...\Peggle Nights) (Version:  - PopCap Games)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies (HKLM-x32\...\Plants vs. Zombies) (Version:  - PopCap Games)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poker Superstars III (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden
Ralink RT5390 802.11b/g/n WiFi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 3.02.03.0 - Ralink)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.42.304.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6461 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7600.77 - Realtek Semiconductor Corp.)
RollerCoaster Tycoon 3: Platinum (x32 Version: 2.2.0.98 - WildTangent) Hidden
Serif PagePlus Starter Edition (HKLM-x32\...\{C349396B-D599-4F49-890C-4B663739E2CA}) (Version: 3.0.0.3 - Serif (Europe) Ltd)
Serif PagePlus X7 (HKLM\...\{CB487BBA-A1AC-4B2B-80AC-DED349C897C5}) (Version: 17.0.2.26 - Serif (Europe) Ltd)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Snap.Do (HKLM-x32\...\{1072E826-883E-47F0-8CAF-39EF25613962}) (Version: 11.89.1.18549 - ReSoft Ltd.) <==== ATTENTION
Snap.Do Engine (HKCU\...\{33657486-bc8d-496a-b2c7-c3e88d3fd595}) (Version: 11.89.1.18549 - ReSoft Ltd.) <==== ATTENTION
snowynight_3347881 Screen Saver (HKLM-x32\...\snowynight_3347881) (Version:  - )
Software Updater (HKLM-x32\...\{A3B308B9-BE96-4334-816F-3D82B19A7DE2}) (Version: 4.1.7 - SEIKO EPSON CORPORATION)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.21.0 - Synaptics Incorporated)
The Treasures of Mystery Island: The Ghost Ship (x32 Version: 2.2.0.98 - WildTangent) Hidden
thechristmastree_3264062 Screen Saver (HKLM-x32\...\thechristmastree_3264062) (Version:  - )
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
WildTangent Games App (HP Games) (x32 Version: 4.0.10.5 - WildTangent) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.65  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2455621043-2641148222-1765951290-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll No File
CustomCLSID: HKU\S-1-5-21-2455621043-2641148222-1765951290-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll No File
CustomCLSID: HKU\S-1-5-21-2455621043-2641148222-1765951290-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll No File
CustomCLSID: HKU\S-1-5-21-2455621043-2641148222-1765951290-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\ooofilt_x64.dll No File
CustomCLSID: HKU\S-1-5-21-2455621043-2641148222-1765951290-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\propertyhdl_x64.dll No File
CustomCLSID: HKU\S-1-5-21-2455621043-2641148222-1765951290-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl_x64.dll No File

==================== Restore Points  =========================

22-07-2014 19:43:10 Windows Update
24-07-2014 22:00:10 Windows Update
29-07-2014 22:49:10 Windows Update
04-08-2014 00:34:22 Windows Update
06-08-2014 01:05:44 Windows Update
14-08-2014 02:46:25 Windows Update
14-08-2014 21:44:53 Windows Update
15-08-2014 22:13:48 Windows Update
19-08-2014 22:06:02 Windows Update
20-08-2014 08:44:24 Installed Java 7 Update 67

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 12:04 - 2009-06-11 06:30 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {40FAF3D6-20F7-4C55-9BBF-EE6DC7AF8B13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-09-10] (Hewlett-Packard Company)
Task: {5E1FE42A-3B8F-4319-BA68-7F963835C4EF} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-10-07] (CyberLink)
Task: {6EEA84DE-95DE-4655-B165-772448884AE4} - System32\Tasks\EPSON XP-710 Series Update {B0611B62-18E6-48DE-8DE2-D868B7B10C52} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {6EF60AF7-EDC0-43DE-8083-7C5A025EDF1A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-09-10] (Hewlett-Packard Company)
Task: {7642D69A-88BF-4B10-B3D4-5BD3E64BAFCD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: {8D1C601B-34E7-4E93-AD26-A4CCD1962169} - System32\Tasks\EPSON XP-710 Series Invitation {B0611B62-18E6-48DE-8DE2-D868B7B10C52} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {C1960797-083E-4DFD-B994-5C26DA2E8C8F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-21] (Adobe Systems Incorporated)
Task: {CBDE892B-0A1C-4AEF-9AA1-4023EACF9504} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe [2011-09-10] (Hewlett-Packard Company)
Task: {D7EE99A1-1A25-4DA8-8256-86F4B78FD94B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [2011-03-23] (Hewlett-Packard Company)
Task: {E0FDF573-D569-4779-91D6-9667089665CD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe [2011-06-15] (Hewlett-Packard)
Task: {F6A5F355-4F4D-4706-8896-E4AC71D057BF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-30] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-710 Series Invitation {B0611B62-18E6-48DE-8DE2-D868B7B10C52}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE
Task: C:\Windows\Tasks\EPSON XP-710 Series Update {B0611B62-18E6-48DE-8DE2-D868B7B10C52}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2011-07-06 03:57 - 2011-07-06 03:57 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2011-10-01 03:10 - 2011-10-01 03:10 - 00107320 _____ () C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
2011-07-06 03:57 - 2011-07-06 03:57 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-07-06 03:43 - 2011-07-06 03:43 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-06-18 06:12 - 2011-06-18 06:12 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2012-08-10 15:51 - 2012-08-10 15:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2014-07-30 09:07 - 2014-07-30 09:08 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-08-24 20:31 - 2014-08-24 20:31 - 00098816 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32api.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00110080 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\pywintypes27.dll
2014-08-24 20:31 - 2014-08-24 20:31 - 00364544 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\pythoncom27.dll
2014-08-24 20:31 - 2014-08-24 20:31 - 00045568 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\_socket.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 01160704 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\_ssl.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00320512 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32com.shell.shell.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00713216 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\_hashlib.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 01175040 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._core_.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00805888 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._gdi_.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00811008 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._windows_.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 01062400 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._controls_.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00735232 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._misc_.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00128512 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\_elementtree.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00127488 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\pyexpat.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00557056 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\pysqlite2._sqlite.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00007168 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\hashobjs_ext.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00087552 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\_ctypes.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00119808 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32file.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00108544 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32security.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00018432 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32event.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00038912 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32inet.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00070656 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._html2.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00167936 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32gui.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00011264 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32crypt.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00027136 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\_multiprocessing.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00686080 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\unicodedata.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00122368 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._wizard.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00010240 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\select.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00024064 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32pipe.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00025600 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32pdh.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00525640 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\windows._lib_cacheinvalidation.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00035840 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32process.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00017408 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32profile.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00022528 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\win32ts.pyd
2014-08-24 20:31 - 2014-08-24 20:31 - 00078336 _____ () C:\Users\William\AppData\Local\Temp\_MEI35762\wx._animate.pyd

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/24/2014 08:31:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 01:17:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 09:30:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 09:06:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2014 07:57:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 31.0.0.5310, time stamp: 0x53c75e91
Faulting module name: mozalloc.dll, version: 31.0.0.5310, time stamp: 0x53c72e91
Exception code: 0x80000003
Fault offset: 0x0000141b
Faulting process id: 0x1ed4
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (08/23/2014 07:57:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/21/2014 07:25:55 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/20/2014 08:03:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/16/2014 03:55:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: JL Alpine Advent Calendar 2013.exe, version: 0.0.0.0, time stamp: 0x527043be
Faulting module name: Adobe AIR.dll, version: 3.9.0.1380, time stamp: 0x52900cd8
Exception code: 0xc0000005
Fault offset: 0x001112e3
Faulting process id: 0xf60
Faulting application start time: 0xJL Alpine Advent Calendar 2013.exe0
Faulting application path: JL Alpine Advent Calendar 2013.exe1
Faulting module path: JL Alpine Advent Calendar 2013.exe2
Report Id: JL Alpine Advent Calendar 2013.exe3

Error: (08/16/2014 03:52:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/24/2014 08:29:43 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/24/2014 02:02:15 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (08/24/2014 01:14:17 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/24/2014 11:40:10 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (08/24/2014 11:40:08 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the HPWMISVC service.

Error: (08/24/2014 09:27:46 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/24/2014 09:04:47 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 9:10:39 PM on ‎23/‎08/‎2014 was unexpected.

Error: (08/23/2014 08:46:50 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AMD External Events Utility service.

Error: (08/23/2014 08:46:50 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (08/23/2014 05:10:48 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AMD External Events Utility service.


Microsoft Office Sessions:
=========================
Error: (08/24/2014 08:31:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 01:17:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 09:30:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2014 09:06:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2014 07:57:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe31.0.0.531053c75e91mozalloc.dll31.0.0.531053c72e91800000030000141b1ed401cfbebcaf5a75d4C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll225d8fdc-2ab0-11e4-82f3-009c0295f5af

Error: (08/23/2014 07:57:19 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/21/2014 07:25:55 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/20/2014 08:03:56 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/16/2014 03:55:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: JL Alpine Advent Calendar 2013.exe0.0.0.0527043beAdobe AIR.dll3.9.0.138052900cd8c0000005001112e3f6001cfb91a6f40d890C:\Program Files (x86)\JL Alpine Advent Calendar 2013\JL Alpine Advent Calendar 2013.exec:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll154d72e0-250e-11e4-8d41-009c0295f5af

Error: (08/16/2014 03:52:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2013-07-29 20:23:30.941
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas64-v1.5_000\midas64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-07-29 20:12:24.913
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas64-v1.5_000\midas64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-07-29 19:27:30.408
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BitDefender\BitDefender 2009\BitDefender InnerFire\midas64-v1.5_000\midas64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: AMD E-300 APU with Radeon HD Graphics
Percentage of memory in use: 51%
Total physical RAM: 1642.91 MB
Available physical RAM: 802.4 MB
Total Pagefile: 3285.81 MB
Available Pagefile: 1707.98 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:275.17 GB) (Free:192.57 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (Recovery) (Fixed) (Total:18.76 GB) (Free:2.04 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.08 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 0528DEF5)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=275.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=18.8 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=4 GB) - (Type=0C)

==================== End Of Log ============================

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2014 01
Ran by William (administrator) on DELTA2 on 24-08-2014 20:49:05
Running from C:\Users\William\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEPSON Connect\mepService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEPSON Connect\mep.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATILPE.EXE
(Flux Software LLC) C:\Users\William\AppData\Local\FluxSoftware\Flux\flux.exe
() C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7466600 2011-09-15] (Realtek Semiconductor)
HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2821416 2011-08-20] (Synaptics Incorporated)
HKLM\...\Run: [setDefault] => C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [43320 2011-10-01] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [startCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-08-11] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPQuickWebProxy] => C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528 2011-09-30] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-12] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-20] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\.DEFAULT\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
HKU\S-1-5-21-2455621043-2641148222-1765951290-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILPE.EXE [297024 2013-01-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2455621043-2641148222-1765951290-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHQP.EXE [283232 2013-07-24] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-2455621043-2641148222-1765951290-1001\...\Run: [f.lux] => C:\Users\William\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-2455621043-2641148222-1765951290-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google)
Startup: C:\Users\William\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\JL Alpine Advent Calendar 2013.lnk
ShortcutTarget: JL Alpine Advent Calendar 2013.lnk -> C:\Program Files (x86)\JL Alpine Advent Calendar 2013\JL Alpine Advent Calendar 2013.exe ()
Startup: C:\Users\William\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\William\AppData\Roaming\Mozilla\Firefox\Profiles\2x7al6oc.default-1408840321503
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: SmartPrintButton - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2013-07-21]

Chrome:
=======
CHR HomePage: hxxp://feed.sonic-search.com/?p=mKO_AwFzXIpYRbPBDDI6Pk-fpITtt_7-dx2uy24NiqVp0tYWQZp3ob794cmjFoaDjsGbKdlJBz5a86uDJaBGxNm0MBrtuIWZ6SDRT2wr08lqrmBr-Q-09OOOHsY3CEvmqi7xQ6vbJLqGnSuF1SuKGFOWyitIM7OM9q1SzlJ7WSBNjkK45gn38A,,
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: istartsurf
CHR DefaultSearchProvider: istartsurf
CHR DefaultSearchURL: http://www.istartsurf.com/web/?type=ds&ts=1408789478&from=smt&uid=HitachiXHTS543232A7A384_E20342333RHDYS3RHDYSX&q={searchTerms}
CHR DefaultSuggestURL: {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Extension: (Google Docs) - C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-07-30]
CHR Extension: (Google Drive) - C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-30]
CHR Extension: (YouTube) - C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-30]
CHR Extension: (Google Search) - C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-30]
CHR Extension: (Google Wallet) - C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR Extension: (Gmail) - C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-30]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-07-06] (Advanced Micro Devices, Inc.) [File not signed]
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (Seiko Epson Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [1817088 2010-12-28] (Realsil Microelectronics Inc.) [File not signed]
R2 MyEPSON Connect Service; C:\Program Files (x86)\EPSON\MyEPSON Connect\mepService.exe [703616 2012-10-01] (SEIKO EPSON CORPORATION)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)


==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 20:49 - 2014-08-24 20:50 - 00015200 _____ () C:\Users\William\Downloads\FRST.txt
2014-08-24 20:48 - 2014-08-24 20:49 - 00000000 ____D () C:\FRST
2014-08-24 20:46 - 2014-08-24 20:47 - 02103296 _____ (Farbar) C:\Users\William\Downloads\FRST64.exe
2014-08-24 20:42 - 2014-08-24 20:43 - 01095168 _____ (Farbar) C:\Users\William\Downloads\FRST.exe
2014-08-24 20:21 - 2014-08-24 20:21 - 01364531 _____ () C:\Users\William\Downloads\AdwCleaner.exe
2014-08-24 10:02 - 2014-08-24 10:02 - 00000000 ____D () C:\Users\William\Desktop\Old Firefox Data
2014-08-24 09:45 - 2014-08-24 10:55 - 00000000 ____D () C:\Users\William\AppData\Roaming\ZHP
2014-08-24 09:38 - 2014-08-24 09:39 - 01236480 _____ () C:\Users\William\Downloads\ZHPCleaner.exe
2014-08-24 09:26 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-08-24 09:24 - 2014-08-24 20:29 - 00000000 ____D () C:\AdwCleaner
2014-08-24 09:22 - 2014-08-24 09:22 - 01364531 _____ () C:\Users\William\Downloads\adwcleaner_3.308.exe
2014-08-23 21:07 - 2014-08-23 21:08 - 01016261 _____ (Thisisu) C:\Users\William\Downloads\JRT.exe
2014-08-23 20:05 - 2014-08-24 10:58 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-23 20:05 - 2014-08-23 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-23 20:05 - 2014-08-23 20:05 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-23 20:05 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-23 20:05 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-23 19:59 - 2014-08-24 09:27 - 00001083 _____ () C:\Users\William\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-08-23 19:59 - 2014-08-24 09:27 - 00001053 _____ () C:\Users\William\Desktop\Search.lnk
2014-08-23 19:51 - 2014-08-23 19:51 - 00226176 _____ () C:\Users\William\Downloads\DVDshrink32setup_downloader-I8Lc3iLtQ.exe
2014-08-23 15:04 - 2014-08-23 15:04 - 00292488 _____ () C:\Users\William\Downloads\7b_Template.odt
2014-08-22 16:57 - 2014-08-24 20:33 - 00000000 ___RD () C:\Users\William\Google Drive
2014-08-22 16:57 - 2014-08-22 16:57 - 00001699 _____ () C:\Users\William\Desktop\Google Drive.lnk
2014-08-22 16:53 - 2014-08-22 16:53 - 00002042 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-08-22 16:53 - 2014-08-22 16:53 - 00002040 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-08-22 16:53 - 2014-08-22 16:53 - 00002030 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-08-22 16:53 - 2014-08-22 16:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-08-22 16:50 - 2014-08-22 16:50 - 00895120 _____ (Google Inc.) C:\Users\William\Downloads\googledrivesync.exe
2014-08-21 16:30 - 2014-08-21 16:30 - 00000000 ____D () C:\Users\William\AppData\Local\Adobe
2014-08-20 18:51 - 2014-08-20 18:52 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-20 18:18 - 2014-08-20 18:18 - 00000000 ____D () C:\ProgramData\Sun
2014-08-20 18:18 - 2014-08-20 18:16 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-20 18:17 - 2014-08-20 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-20 18:17 - 2014-08-20 18:16 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-20 18:17 - 2014-08-20 18:16 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-20 18:17 - 2014-08-20 18:16 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-20 18:16 - 2014-08-20 18:16 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-20 18:06 - 2014-08-20 18:06 - 00918952 _____ (Oracle Corporation) C:\Users\William\Downloads\jxpiinstall.exe
2014-08-16 14:47 - 2014-08-16 14:47 - 01049801 _____ () C:\Users\William\Downloads\publications-de-lirdpq-26.zip
2014-08-15 17:53 - 2014-07-16 12:53 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-15 17:53 - 2014-07-16 12:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-15 07:18 - 2014-07-01 07:54 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-15 07:18 - 2014-07-01 07:44 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-15 07:18 - 2014-03-10 07:18 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-15 07:18 - 2014-03-10 07:18 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-15 07:18 - 2014-03-10 07:17 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-15 07:18 - 2014-03-10 07:17 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-15 07:17 - 2014-06-06 15:46 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-15 07:17 - 2014-06-06 15:42 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 12:39 - 2014-07-09 11:33 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 12:39 - 2014-07-09 11:33 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 12:39 - 2014-07-09 11:33 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 12:39 - 2014-07-09 11:33 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 12:39 - 2014-07-09 11:33 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 12:39 - 2014-07-09 11:01 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-14 12:39 - 2014-07-09 11:01 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-14 12:39 - 2014-07-09 11:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-14 12:39 - 2014-07-09 11:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-14 12:39 - 2014-07-09 11:01 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-14 12:39 - 2014-07-09 08:08 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 12:39 - 2014-07-09 08:00 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-14 12:37 - 2014-06-03 19:32 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 12:37 - 2014-06-03 19:32 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 12:37 - 2014-06-03 18:59 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 12:36 - 2014-06-03 19:32 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 12:36 - 2014-06-03 19:32 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 12:36 - 2014-06-03 18:59 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 12:36 - 2014-06-03 18:59 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-14 12:35 - 2014-07-25 23:21 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 12:35 - 2014-07-25 22:58 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 12:35 - 2014-07-25 22:03 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-14 12:35 - 2014-07-25 21:58 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 12:35 - 2014-07-25 21:47 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-14 12:35 - 2014-07-25 21:38 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-14 12:35 - 2014-07-25 21:22 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-14 12:35 - 2014-07-25 21:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-14 12:35 - 2014-07-25 21:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-14 12:35 - 2014-07-25 20:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-14 12:35 - 2014-07-25 19:30 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-14 12:35 - 2014-07-16 12:55 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-14 12:35 - 2014-07-16 12:16 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-14 12:35 - 2014-07-16 11:42 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-14 12:35 - 2014-06-25 11:35 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 12:35 - 2014-06-25 11:11 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-14 12:35 - 2014-06-12 17:22 - 00986560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 12:34 - 2014-08-01 09:11 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 12:34 - 2014-08-01 08:46 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 12:34 - 2014-07-26 00:22 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 12:34 - 2014-07-25 23:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 12:34 - 2014-07-25 23:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 12:34 - 2014-07-25 23:00 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 12:34 - 2014-07-25 22:58 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 12:34 - 2014-07-25 22:55 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 12:34 - 2014-07-25 22:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 12:34 - 2014-07-25 22:41 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 12:34 - 2014-07-25 22:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 12:34 - 2014-07-25 22:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-14 12:34 - 2014-07-25 22:33 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 12:34 - 2014-07-25 22:30 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 12:34 - 2014-07-25 22:30 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 12:34 - 2014-07-25 22:29 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 12:34 - 2014-07-25 22:17 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 12:34 - 2014-07-25 22:10 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 12:34 - 2014-07-25 22:04 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-14 12:34 - 2014-07-25 22:04 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-14 12:34 - 2014-07-25 22:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-14 12:34 - 2014-07-25 21:58 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 12:34 - 2014-07-25 21:51 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-14 12:34 - 2014-07-25 21:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 12:34 - 2014-07-25 21:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-14 12:34 - 2014-07-25 21:47 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 12:34 - 2014-07-25 21:42 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-14 12:34 - 2014-07-25 21:40 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 12:34 - 2014-07-25 21:40 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-14 12:34 - 2014-07-25 21:36 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-14 12:34 - 2014-07-25 21:17 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 12:34 - 2014-07-25 21:12 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 12:34 - 2014-07-25 21:09 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 12:34 - 2014-07-25 21:09 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 12:34 - 2014-07-25 21:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-14 12:34 - 2014-07-25 20:59 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-14 12:34 - 2014-07-25 20:53 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 12:34 - 2014-07-25 20:37 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-14 12:34 - 2014-07-25 20:37 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-14 12:34 - 2014-07-25 20:33 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-14 12:34 - 2014-07-25 20:22 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 12:34 - 2014-07-25 19:56 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 12:34 - 2014-07-25 19:47 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 12:34 - 2014-07-25 19:39 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-14 12:34 - 2014-07-25 19:35 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-14 12:33 - 2014-07-14 11:32 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 12:33 - 2014-07-14 11:10 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-12 19:48 - 2014-08-12 19:48 - 00000000 ____D () C:\Users\William\AppData\Local\{1F615E21-232F-40C7-8B81-48BF07EC7641}
2014-08-10 15:30 - 2014-08-10 15:30 - 05082806 _____ () C:\Users\William\Downloads\virtue.2.2.1.zip
2014-08-10 11:09 - 2014-08-10 11:09 - 00719035 _____ () C:\Users\William\Downloads\image(2).jpeg
2014-08-10 11:08 - 2014-08-10 11:08 - 00703454 _____ () C:\Users\William\Downloads\image(1).jpeg
2014-08-10 11:06 - 2014-08-10 11:06 - 00703454 _____ () C:\Users\William\Downloads\image.jpeg
2014-08-09 11:10 - 2014-08-11 19:35 - 00020152 _____ () C:\Users\William\Documents\lettre Louis ASMS.odt
2014-08-04 10:06 - 2014-05-15 01:53 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-04 10:06 - 2014-05-15 01:53 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-04 10:06 - 2014-05-15 01:53 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-04 10:06 - 2014-05-15 01:53 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-04 10:06 - 2014-05-15 01:53 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-04 10:06 - 2014-05-15 01:53 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-04 10:06 - 2014-05-15 01:53 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-04 10:06 - 2014-05-15 01:51 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-04 10:06 - 2014-05-15 01:50 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-04 10:06 - 2014-05-15 01:47 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-04 10:05 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-04 10:05 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-04 10:05 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-04 10:05 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-01 09:22 - 2014-08-01 09:23 - 00078997 _____ () C:\Users\William\Downloads\Export_01.01.2013_31.12.2013.zip
2014-07-30 09:07 - 2014-07-30 09:08 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 20:50 - 2014-08-24 20:49 - 00015200 _____ () C:\Users\William\Downloads\FRST.txt
2014-08-24 20:49 - 2014-08-24 20:48 - 00000000 ____D () C:\FRST
2014-08-24 20:49 - 2013-07-30 11:35 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-24 20:47 - 2014-08-24 20:46 - 02103296 _____ (Farbar) C:\Users\William\Downloads\FRST64.exe
2014-08-24 20:43 - 2014-08-24 20:42 - 01095168 _____ (Farbar) C:\Users\William\Downloads\FRST.exe
2014-08-24 20:43 - 2012-03-19 19:26 - 01974154 _____ () C:\Windows\WindowsUpdate.log
2014-08-24 20:41 - 2009-07-14 14:15 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-24 20:41 - 2009-07-14 14:15 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-24 20:33 - 2014-08-22 16:57 - 00000000 ___RD () C:\Users\William\Google Drive
2014-08-24 20:31 - 2013-07-30 11:35 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-24 20:31 - 2009-07-14 14:38 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-24 20:31 - 2009-07-14 14:21 - 00057681 _____ () C:\Windows\setupact.log
2014-08-24 20:31 - 2009-07-14 14:15 - 00383424 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-24 20:30 - 2010-11-21 13:17 - 00901742 _____ () C:\Windows\PFRO.log
2014-08-24 20:29 - 2014-08-24 09:24 - 00000000 ____D () C:\AdwCleaner
2014-08-24 20:21 - 2014-08-24 20:21 - 01364531 _____ () C:\Users\William\Downloads\AdwCleaner.exe
2014-08-24 20:17 - 2013-12-05 14:53 - 00000725 _____ () C:\Windows\Tasks\EPSON XP-710 Series Invitation {B0611B62-18E6-48DE-8DE2-D868B7B10C52}.job
2014-08-24 20:17 - 2013-12-05 14:52 - 00000911 _____ () C:\Windows\Tasks\EPSON XP-710 Series Update {B0611B62-18E6-48DE-8DE2-D868B7B10C52}.job
2014-08-24 20:17 - 2012-12-05 20:11 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-24 10:58 - 2014-08-23 20:05 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-24 10:55 - 2014-08-24 09:45 - 00000000 ____D () C:\Users\William\AppData\Roaming\ZHP
2014-08-24 10:02 - 2014-08-24 10:02 - 00000000 ____D () C:\Users\William\Desktop\Old Firefox Data
2014-08-24 09:39 - 2014-08-24 09:38 - 01236480 _____ () C:\Users\William\Downloads\ZHPCleaner.exe
2014-08-24 09:27 - 2014-08-23 19:59 - 00001083 _____ () C:\Users\William\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Search.lnk
2014-08-24 09:27 - 2014-08-23 19:59 - 00001053 _____ () C:\Users\William\Desktop\Search.lnk
2014-08-24 09:27 - 2013-07-30 11:36 - 00001290 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-24 09:27 - 2013-07-30 11:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-24 09:27 - 2012-11-20 11:24 - 00001065 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-24 09:27 - 2012-08-03 04:16 - 00000993 _____ () C:\Users\William\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-24 09:22 - 2014-08-24 09:22 - 01364531 _____ () C:\Users\William\Downloads\adwcleaner_3.308.exe
2014-08-24 09:20 - 2012-08-03 04:16 - 00003926 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{AEB62779-C962-4001-8BB5-BA0D16F94E88}
2014-08-23 21:08 - 2014-08-23 21:07 - 01016261 _____ (Thisisu) C:\Users\William\Downloads\JRT.exe
2014-08-23 20:55 - 2013-06-15 08:00 - 00000000 ____D () C:\Users\William\AppData\Roaming\QuickScan
2014-08-23 20:05 - 2014-08-23 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-23 20:05 - 2014-08-23 20:05 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-23 20:05 - 2013-07-29 16:07 - 00000000 ____D () C:\Users\William\AppData\Roaming\Malwarebytes
2014-08-23 20:05 - 2013-07-29 16:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-23 19:58 - 2013-04-03 13:06 - 00000000 ____D () C:\Users\William\AppData\Local\CrashDumps
2014-08-23 19:51 - 2014-08-23 19:51 - 00226176 _____ () C:\Users\William\Downloads\DVDshrink32setup_downloader-I8Lc3iLtQ.exe
2014-08-23 19:09 - 2013-06-17 16:29 - 00000000 ____D () C:\Users\William\Documents\Move to Learn
2014-08-23 15:04 - 2014-08-23 15:04 - 00292488 _____ () C:\Users\William\Downloads\7b_Template.odt
2014-08-23 10:04 - 2012-08-04 09:51 - 00000166 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-08-23 09:55 - 2012-11-27 16:30 - 00000000 ____D () C:\Users\William\Documents\dominique
2014-08-23 09:55 - 2012-11-22 17:42 - 00000000 ____D () C:\Users\William\Documents\comptabilite
2014-08-23 07:42 - 2012-11-20 18:15 - 00000000 ____D () C:\Users\William\AppData\Roaming\Skype
2014-08-22 18:27 - 2011-10-19 05:25 - 00000000 ____D () C:\ProgramData\Skype
2014-08-22 16:57 - 2014-08-22 16:57 - 00001699 _____ () C:\Users\William\Desktop\Google Drive.lnk
2014-08-22 16:57 - 2012-08-03 04:09 - 00000000 ____D () C:\Users\William
2014-08-22 16:53 - 2014-08-22 16:53 - 00002042 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2014-08-22 16:53 - 2014-08-22 16:53 - 00002040 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2014-08-22 16:53 - 2014-08-22 16:53 - 00002030 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2014-08-22 16:53 - 2014-08-22 16:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-08-22 16:53 - 2013-03-22 11:25 - 00000000 ____D () C:\Users\William\AppData\Local\Google
2014-08-22 16:53 - 2013-03-22 11:25 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-22 16:50 - 2014-08-22 16:50 - 00895120 _____ (Google Inc.) C:\Users\William\Downloads\googledrivesync.exe
2014-08-21 16:30 - 2014-08-21 16:30 - 00000000 ____D () C:\Users\William\AppData\Local\Adobe
2014-08-21 07:51 - 2012-12-05 20:11 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-21 07:51 - 2012-12-05 20:11 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-21 07:51 - 2011-10-19 05:05 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-20 18:52 - 2014-08-20 18:51 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-20 18:18 - 2014-08-20 18:18 - 00000000 ____D () C:\ProgramData\Sun
2014-08-20 18:17 - 2014-08-20 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-20 18:16 - 2014-08-20 18:18 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-20 18:16 - 2014-08-20 18:17 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-20 18:16 - 2014-08-20 18:17 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-20 18:16 - 2014-08-20 18:17 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-20 18:16 - 2014-08-20 18:16 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-20 18:06 - 2014-08-20 18:06 - 00918952 _____ (Oracle Corporation) C:\Users\William\Downloads\jxpiinstall.exe
2014-08-16 14:47 - 2014-08-16 14:47 - 01049801 _____ () C:\Users\William\Downloads\publications-de-lirdpq-26.zip
2014-08-15 08:20 - 2009-07-14 12:50 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-15 07:44 - 2013-07-16 06:31 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-15 07:30 - 2012-08-09 16:08 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-12 19:48 - 2014-08-12 19:48 - 00000000 ____D () C:\Users\William\AppData\Local\{1F615E21-232F-40C7-8B81-48BF07EC7641}
2014-08-11 19:35 - 2014-08-09 11:10 - 00020152 _____ () C:\Users\William\Documents\lettre Louis ASMS.odt
2014-08-10 15:30 - 2014-08-10 15:30 - 05082806 _____ () C:\Users\William\Downloads\virtue.2.2.1.zip
2014-08-10 11:09 - 2014-08-10 11:09 - 00719035 _____ () C:\Users\William\Downloads\image(2).jpeg
2014-08-10 11:08 - 2014-08-10 11:08 - 00703454 _____ () C:\Users\William\Downloads\image(1).jpeg
2014-08-10 11:06 - 2014-08-10 11:06 - 00703454 _____ () C:\Users\William\Downloads\image.jpeg
2014-08-05 09:20 - 2010-11-21 12:57 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-03 10:01 - 2012-11-20 11:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-01 09:23 - 2014-08-01 09:22 - 00078997 _____ () C:\Users\William\Downloads\Export_01.01.2013_31.12.2013.zip
2014-08-01 09:11 - 2014-08-14 12:34 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 08:46 - 2014-08-14 12:34 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-30 09:08 - 2014-07-30 09:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-27 09:32 - 2013-03-19 05:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-27 09:32 - 2013-03-19 05:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-26 00:22 - 2014-08-14 12:34 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 23:32 - 2014-08-14 12:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 23:31 - 2014-08-14 12:34 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 23:21 - 2014-08-14 12:35 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 23:00 - 2014-08-14 12:34 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 22:58 - 2014-08-14 12:35 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 22:58 - 2014-08-14 12:34 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 22:55 - 2014-08-14 12:34 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 22:55 - 2014-08-14 12:34 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 22:41 - 2014-08-14 12:34 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 22:40 - 2014-08-14 12:34 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 22:34 - 2014-08-14 12:34 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 22:33 - 2014-08-14 12:34 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 22:30 - 2014-08-14 12:34 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 22:30 - 2014-08-14 12:34 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 22:29 - 2014-08-14 12:34 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 22:17 - 2014-08-14 12:34 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 22:10 - 2014-08-14 12:34 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 22:04 - 2014-08-14 12:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 22:04 - 2014-08-14 12:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 22:03 - 2014-08-14 12:35 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 22:00 - 2014-08-14 12:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 21:58 - 2014-08-14 12:35 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 21:58 - 2014-08-14 12:34 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 21:51 - 2014-08-14 12:34 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 21:49 - 2014-08-14 12:34 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 21:48 - 2014-08-14 12:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 21:47 - 2014-08-14 12:35 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 21:47 - 2014-08-14 12:34 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 21:42 - 2014-08-14 12:34 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 21:40 - 2014-08-14 12:34 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 21:40 - 2014-08-14 12:34 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 21:38 - 2014-08-14 12:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 21:36 - 2014-08-14 12:34 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 21:22 - 2014-08-14 12:35 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 21:17 - 2014-08-14 12:34 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 21:13 - 2014-08-14 12:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 21:12 - 2014-08-14 12:34 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 21:09 - 2014-08-14 12:34 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 21:09 - 2014-08-14 12:34 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 21:06 - 2014-08-14 12:34 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 21:04 - 2014-08-14 12:35 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 20:59 - 2014-08-14 12:34 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 20:53 - 2014-08-14 12:34 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 20:43 - 2014-08-14 12:35 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 20:37 - 2014-08-14 12:34 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 20:37 - 2014-08-14 12:34 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 20:33 - 2014-08-14 12:34 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 20:22 - 2014-08-14 12:34 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 19:56 - 2014-08-14 12:34 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 19:47 - 2014-08-14 12:34 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 19:39 - 2014-08-14 12:34 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 19:35 - 2014-08-14 12:34 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 19:30 - 2014-08-14 12:35 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-25 07:37 - 2013-03-19 05:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

Some content of TEMP:
====================
C:\Users\William\AppData\Local\Temp\conduitinstaller.exe
C:\Users\William\AppData\Local\Temp\dvdshrink32setup.exe
C:\Users\William\AppData\Local\Temp\ESDPK-PLX6-PagePlusStarterEdition_Setup.exe
C:\Users\William\AppData\Local\Temp\Installer_jul.exe
C:\Users\William\AppData\Local\Temp\LiveSupport_setup.exe
C:\Users\William\AppData\Local\Temp\OptimizerPro.exe
C:\Users\William\AppData\Local\Temp\PagePlus-X7-en-GB_17.0.1.23_64-Bit_Patch-Setup.exe
C:\Users\William\AppData\Local\Temp\PagePlus-X7-en-GB_17.0.2.26_64-Bit_Patch-Setup.exe
C:\Users\William\AppData\Local\Temp\PagePlus-X7-en-GB_17.0.3.28_64-Bit_Patch-Setup.exe
C:\Users\William\AppData\Local\Temp\Quarantine.exe
C:\Users\William\AppData\Local\Temp\SkypeSetup.exe
C:\Users\William\AppData\Local\Temp\smt_istartsurf_180814.exe
C:\Users\William\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\William\AppData\Local\Temp\_isF380.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-09 11:10

==================== End Of Log ============================

 

And Adw

 

# AdwCleaner v3.308 - Report created 24/08/2014 at 20:29:35
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : William - DELTA2
# Running from : C:\Users\William\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239


-\\ Mozilla Firefox v31.0 (x86 en-US)

[ File : C:\Users\William\AppData\Roaming\Mozilla\Firefox\Profiles\2x7al6oc.default-1408840321503\prefs.js ]


-\\ Google Chrome v36.0.1985.143

[ File : C:\Users\William\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [15721 octets] - [24/08/2014 09:24:19]
AdwCleaner[R1].txt - [1088 octets] - [24/08/2014 13:11:30]
AdwCleaner[R2].txt - [1202 octets] - [24/08/2014 20:26:29]
AdwCleaner[s0].txt - [12337 octets] - [24/08/2014 09:26:55]
AdwCleaner[s1].txt - [1150 octets] - [24/08/2014 13:14:05]
AdwCleaner[s2].txt - [1124 octets] - [24/08/2014 20:29:35]

########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1184 octets] ##########

Link to post
Share on other sites

First, go to Control Panel and uninstall following (skip lines that cannot be uninstalled):
Snap.Do
Snap.Do Engine
 
 
 
FRST.gif Fix with Farbar Recovery Scan Tool
 


icon_exclaim.gif This fix was created for this user for use on that particular machine. icon_exclaim.gif
icon_exclaim.gif Running it on another one may cause damage and render the system unstable. icon_exclaim.gif

 
Download attached fixlist.txt file and save it to the Desktop:
 
Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

  • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
    (XP users click run after receipt of Windows Security Warning - Open File).
  • Press the Fix button just once and wait.
  • If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
  • When finished FRST will generate a log on the Desktop, called Fixlog.txt.

Please attach it to your reply.

fixlist.txt

Link to post
Share on other sites

  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.