Loss of Internet Connectivity with MLWB, AVG, IE, Etc.

[hotmike]

Hello,

 

Long time listener, first time caller.  Got an odd issue that someone in the MLWB Help forum suggested might be some Malware hidden away.

 

Running Win 8.1.  Have the latest free edition of Malwarebytes but it won't connect to the update server.  Neither will AVG.  I have a Lenovo Thinkpad, and can't connect to their System Update software for drivers.  The technician at Lenovo tried to remote access my computer with 123Rescue to fix the issue and couldn't connect.  Internet Explorer won't connect, but Waterfox (Firefox) will.  Internet based program installs fail (anything that has to connect to its own server, not a direct download).

 

I recently came back from out of country and had to tinker with a lot of settings to get internet to work at times, think I may have messed something up.  Proxy is disabled in LAN settings and everywere else as far as I can see.  Windows Update connects just fine.  Have tried wired and wireless on many different networks.  Tried with firewall and AVG disabled to no avail.  AVG and MLWB full scans find minor stuff but nothing fixes the issue.

 

Lenovo told me to do a system refresh, which I'd like to avoid.  I'm worried about my AVG and Malwarebytes falling out of date and leaving me succeptible to a virus, but am also worried I do have some form of internet breaking virus, though neither AVG nor Malwarebytes can find anything.

 

Thanks a bunch in advance for any help any of you can provide!

Mike

 

Here are the FRST logs:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-10-2014 01
Ran by Mike (administrator) on ROTORTHINKPAD on 29-10-2014 12:40:28
Running from C:\Users\Mike\Downloads
Loaded Profile: Mike (Available profiles: Mike)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\SystemAgent\SystemAgentService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\micmute.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tphkload.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\tposd.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\shtctky.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Digital Plus\ddp.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Pokki) C:\Users\Mike\AppData\Local\Pokki\Engine\pokki.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Pokki) C:\Users\Mike\AppData\Local\Pokki\Engine\pokki.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe
(Lenovo Group Limited) C:\Program Files (x86)\Lenovo\QuickControl\QuickControl.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\HOTKEY\extapsup.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(HID Global Identity Assurance) C:\Program Files\ActivIdentity\ActivClient\ac.activclient.gui.scagent.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(HID Global Identity Assurance) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\x64\avfulsvr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\QuickSnipService\QuickSnipService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Lenovo) C:\Program Files\Lenovo\QuickSnipService\QuickSnipInput.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
() C:\Program Files (x86)\Lenovo\LocationAware\lpdagent.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
(Mozilla Corporation) C:\Program Files\Waterfox\waterfox.exe
(Mozilla Corporation) C:\Program Files\Waterfox\plugin-container.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [LenovoOptMouseUpdate] => C:\Program Files\Lenovo\HOTKEY\extapsup.exe [255480 2013-06-19] (Lenovo Group Limited)
HKLM\...\Run: [LENOVO.TPKNRRES] => rundll32.exe "C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll",AVStartupStub
HKLM\...\Run: [ac.activclient.gui.scagent.exe] => C:\Program Files\ActivIdentity\ActivClient\ac.activclient.gui.scagent.exe [813456 2013-12-19] (HID Global Identity Assurance)
HKLM\...\Run: [intelPROSet] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [4876528 2014-01-17] (Intel® Corporation)
HKLM\...\Run: [bTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [apmwinapp] => C:\Program Files (x86)\Paragon Software\HFS+ for Windows 8 Free Edition\apmwinsrv.exe [66768 2014-06-17] ()
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [449168 2012-03-26] (CANON INC.)
HKLM-x32\...\Run: [AprvRemoveLegacyExcelKeys] => C:\Program Files (x86)\ApproveIt\Support\Tools\AprvClean.exe [73728 2011-01-29] (Silanis Technology Inc.)
HKLM-x32\...\Run: [AprvRemoveLegacyWordKeys] => C:\Program Files (x86)\ApproveIt\Support\Tools\AprvClean.exe [73728 2011-01-29] (Silanis Technology Inc.)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [552960 2013-05-14] (Vimicro)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3593744 2014-09-05] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-3747722074-4262286703-4179932392-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-3747722074-4262286703-4179932392-1001\...\RunOnce: [Application Restart #2] => C:\Users\Mike\AppData\Local\Pokki\Engine\pokki.exe [8252744 2013-10-31] (Pokki)
HKU\S-1-5-21-3747722074-4262286703-4179932392-1001\...\MountPoints2: {0a1dbbb9-e9a2-11e3-bee9-5c514f6e7471} - "G:\MotorolaDeviceManagerSetup.exe" -a
HKU\S-1-5-21-3747722074-4262286703-4179932392-1001\...\MountPoints2: {1d19dce8-40a6-11e4-bf0b-5c514f6e7471} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3747722074-4262286703-4179932392-1001\...\MountPoints2: {1d7e0f7b-5f07-11e3-be82-5c514f6e7471} - "E:\MotorolaDeviceManagerSetup.exe" -a
HKU\S-1-5-21-3747722074-4262286703-4179932392-1001\...\MountPoints2: {9413730c-c325-11e3-bed5-5c514f6e7471} - "E:\WD SmartWare.exe" autoplay=true
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ApproveIt StartUp.lnk
ShortcutTarget: ApproveIt StartUp.lnk -> C:\Windows\Installer\{F39BD95B-5B9E-4E83-96C4-D4667FD061C6}\Icon9557F1BC1.ico ()
ShellIconOverlayIdentifiers: [sugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} =>  No File
ShellIconOverlayIdentifiers: [sugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} =>  No File
ShellIconOverlayIdentifiers: [sugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} =>  No File
ShellIconOverlayIdentifiers: [sugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://home.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://home.lenovo.com
SearchScopes: HKLM - DefaultScope {740D745C-AB75-49BB-9D46-6A1227FDDD98} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LNJB
SearchScopes: HKLM - {740D745C-AB75-49BB-9D46-6A1227FDDD98} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LNJB
SearchScopes: HKLM-x32 - DefaultScope {740D745C-AB75-49BB-9D46-6A1227FDDD98} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LNJB
SearchScopes: HKLM-x32 - {740D745C-AB75-49BB-9D46-6A1227FDDD98} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LNJB
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IBM Forms Viewer Helper -> {0941C58F-E461-4E03-BD7D-44C27392ADE1} -> C:\Program Files (x86)\IBM\Forms Viewer\4.0\PEhelper.dll (IBM Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
DPF: HKLM-x32 {A6616B31-4860-41E2-98E3-CA7649AF172F} file:///D:/launch.ocx
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Winsock: Catalog9 01 C:\WINDOWS\system32\plsapp.dll File Not found ()
Winsock: Catalog9 02 C:\WINDOWS\system32\plsapp.dll File Not found ()
Winsock: Catalog9 03 C:\WINDOWS\system32\plsapp.dll File Not found ()
Winsock: Catalog9 04 C:\WINDOWS\system32\plsapp.dll File Not found ()
Winsock: Catalog9 16 C:\WINDOWS\system32\plsapp.dll File Not found ()
Winsock: Catalog9-x64 01 C:\WINDOWS\system32\plsapp64.dll [439296] (Sendori)
Winsock: Catalog9-x64 02 C:\WINDOWS\system32\plsapp64.dll [439296] (Sendori)
Winsock: Catalog9-x64 03 C:\WINDOWS\system32\plsapp64.dll [439296] (Sendori)
Winsock: Catalog9-x64 04 C:\WINDOWS\system32\plsapp64.dll [439296] (Sendori)
Winsock: Catalog9-x64 16 C:\WINDOWS\system32\plsapp64.dll [439296] (Sendori)
Tcpip\Parameters: [DhcpNameServer] 10.0.1.1

FireFox:
========
FF ProfilePath: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com/
FF Keyword.URL:
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pokki.com/PokkiDownloadHelper -> C:\Users\Mike\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki)
FF user.js: detected! => C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\mfc71.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\msvcr71.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npmfv.dll (IBM Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\google-images.undefined-5wrv.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\google-images.xml
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\google-news.xml
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\safeguard-secure-search.xml
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\the-pirate-bay.xml
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-5rfa.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-btse.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-g4u7.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-pkec.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-t4vh.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-ycqx.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-yikh.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined-z5sw.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.undefined.undefined
FF SearchPlugin: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\searchplugins\youtube.xml
FF Extension: Garmin Communicator - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E} [2014-09-29]
FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2014-02-22]
FF Extension: DoD Configuration - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\Extensions\{d15c1608-ba3e-4aa0-aa6f-aa9337226087} [2014-01-18]
FF Extension: Add to Search Bar - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\Extensions\add-to-searchbox@maltekraus.de.xpi [2013-11-10]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\b7qbmiwk.default\Extensions\firefox-hotfix@mozilla.org.xpi [2014-07-16]
FF HKLM-x32\...\Firefox\Extensions: [{00CC6330-A221-429B-9FAD-FD29EC560D7A}] - C:\Program Files (x86)\ActivIdentity\ActivClient\Mozilla Extensions\{00CC6330-A221-429B-9FAD-FD29EC560D7A}
FF Extension: ActivClient Security Module - C:\Program Files (x86)\ActivIdentity\ActivClient\Mozilla Extensions\{00CC6330-A221-429B-9FAD-FD29EC560D7A} [2014-01-17]
FF HKCU\...\Firefox\Extensions: [{F74D5734-46F5-4B16-96F0-1E7FBF41B750}] - C:\Program Files (x86)\Lenovo\Password Manager\PWM Firefox Extension\2.0b12

Chrome:
=======
CHR Profile: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-17]
CHR Extension: (Google Drive) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-17]
CHR Extension: (YouTube) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-17]
CHR Extension: (Google Search) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-17]
CHR Extension: (AVG SafeGuard) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2014-02-17]
CHR Extension: (Google Wallet) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-17]
CHR Extension: (Gmail) - C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ActivIdentity Shared Store Service; C:\WINDOWS\system32\dllhost.exe [19296 2013-08-22] (Microsoft Corporation)
R2 ActivIdentity Shared Store Service; C:\WINDOWS\SysWOW64\dllhost.exe [17760 2013-08-21] (Microsoft Corporation)
S3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [573488 2014-03-04] (Lenovo Corporation)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3364368 2014-09-05] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [293448 2014-09-05] (AVG Technologies CZ, s.r.o.)
R2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [283296 2013-07-26] (Intel Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2436280 2014-09-25] (Microsoft Corporation)
R2 ExpressCache; C:\Program Files\Condusiv Technologies\ExpressCache\ExpressCache.exe [107792 2013-07-03] (Condusiv Technologies)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-07-16] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-15] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-07-16] (Intel Corporation)
R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-21] (Microsoft Corporation)
R2 Lenovo QuickSnip Service; C:\Program Files\lenovo\QuickSnipService\QuickSnipService.exe [219976 2013-09-23] (LENOVO INCORPORATED.)
R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2085184 2014-03-09] (Lenovo Group Limited)
R2 Lenovo System Agent Service; C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe [585032 2013-09-23] (LENOVO INCORPORATED.)
S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [702512 2014-03-04] (Lenovo Corporation)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [136288 2012-08-10] (Lenovo Group Limited)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-13] (Microsoft Corporation)
R2 lnvDiscoveryWinSvc; C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe [22576 2014-02-21] (Lenovo)
S2 LocationTaskManager; C:\Program Files (x86)\Lenovo\LocationAware\loctaskmgr.exe [468288 2013-12-11] ()
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1663880 2014-05-06] ()
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-05] (Microsoft Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-06-17] (Nitro PDF Software)
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
S2 QuickControlMasterSvc; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlMasterSvc.exe [59440 2014-02-12] (Lenovo Group Limited)
R3 QuickControlService; C:\Program Files (x86)\Lenovo\QuickControl\QuickControlService.exe [322608 2014-02-12] (Lenovo Group Limited)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-21] (Microsoft Corporation)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-21] (Microsoft Corporation)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [24560 2014-09-16] ()
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [61440 2008-01-10] (Ulead Systems, Inc.) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-23] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-23] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-01-17] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 apmwin; C:\Windows\System32\DRIVERS\apmwin.sys [35024 2014-06-17] (Paragon Software Group)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [247576 2014-07-24] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [243480 2014-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [313624 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-08-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [273176 2014-07-18] (AVG Technologies CZ, s.r.o.)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-11-06] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1419576 2013-12-10] (Motorola Solutions, Inc.)
R3 cxbu0x64; C:\Windows\system32\DRIVERS\cxbu0x64.sys [147576 2014-05-14] (HID Global Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [25872 2013-07-03] (Condusiv Technologies)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [112912 2013-07-03] (Condusiv Technologies)
R0 gpt_loader; C:\Windows\System32\DRIVERS\gpt_loader.sys [61136 2014-06-17] (Paragon Software Group)
S3 Hfsplus; C:\Windows\System32\DRIVERS\hfsplus.sys [206032 2014-06-17] (Paragon Software Group)
R2 HfsplusRec; C:\Windows\System32\DRIVERS\hfsplusrec.sys [15568 2014-06-17] (Paragon Software Group)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [169680 2014-04-02] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21048 2013-04-15] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21048 2013-04-15] ()
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [74344 2013-07-02] (Intel Corporation)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [47008 2013-07-30] ()
R0 mounthlp; C:\Windows\System32\DRIVERS\mounthlp.sys [42704 2014-06-17] (Paragon Software Group)
S3 NdisImPlatformMp; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [126464 2014-07-24] (Microsoft Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3607520 2014-01-09] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [3646432 2013-08-01] (Intel Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [424664 2013-08-02] (Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-04-07] (Synaptics Incorporated)
S3 SWIX64; C:\Program Files (x86)\Lenovo\System Update\tvsuhd64.sys [33856 2012-09-12] (Lenovo Group Limited)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [206744 2013-06-20] (Windows ® Win 7 DDK provider)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1070080 2013-12-30] (Vimicro Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-23] (Microsoft Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-10-29] ()

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-29 12:40 - 2014-10-29 12:40 - 00029769 _____ () C:\Users\Mike\Downloads\FRST.txt
2014-10-29 12:40 - 2014-10-29 12:40 - 00000000 ____D () C:\FRST
2014-10-29 12:38 - 2014-10-29 12:38 - 02113536 _____ (Farbar) C:\Users\Mike\Downloads\FRST64.exe
2014-10-28 19:13 - 2014-10-28 19:13 - 00671744 _____ () C:\Users\Mike\Downloads\MicrosoftFixit50746.msi
2014-10-28 19:09 - 2014-10-28 19:09 - 00001457 _____ () C:\Users\Mike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-28 18:38 - 2014-10-28 18:38 - 00662016 _____ () C:\Users\Mike\Downloads\MicrosoftFixit50566.msi
2014-10-28 18:31 - 2014-10-28 18:31 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-10-28 18:31 - 2014-10-28 18:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-28 18:31 - 2014-10-28 18:31 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-28 18:31 - 2014-10-28 18:31 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-28 18:31 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-10-28 18:31 - 2014-10-01 11:11 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-10-28 18:31 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-10-28 18:30 - 2014-10-28 18:31 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Mike\Downloads\mbam-setup-2.0.3.1025.exe
2014-10-28 18:18 - 2014-10-28 18:18 - 00347816 _____ (Microsoft Corporation) C:\Users\Mike\Downloads\MicrosoftFixit.WindowsFirewall.FISC.32337976150207052.2.1.Run.exe
2014-10-28 18:15 - 2014-10-29 12:32 - 00003942 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E5EC4D43-D780-4BA3-B466-6824220990C3}
2014-10-28 17:57 - 2014-10-28 17:57 - 01533248 _____ (LogMeIn, Inc.) C:\Users\Mike\Downloads\Support-LogMeInRescue(2).exe
2014-10-28 17:55 - 2014-10-28 17:55 - 01533248 _____ (LogMeIn, Inc.) C:\Users\Mike\Downloads\Support-LogMeInRescue(1).exe
2014-10-28 17:48 - 2014-10-28 17:48 - 01533248 _____ (LogMeIn, Inc.) C:\Users\Mike\Downloads\Support-LogMeInRescue.exe
2014-10-28 17:33 - 2014-10-28 17:33 - 13066744 _____ ( ) C:\Users\Mike\Downloads\systemupdate506-09-16-2014.exe
2014-10-28 17:30 - 2014-10-28 17:47 - 00000031 _____ () C:\Users\Mike\Desktop\lenovo support.txt
2014-10-25 12:04 - 2014-10-25 12:06 - 17919664 _____ (Adobe Systems Incorporated) C:\Users\Mike\Downloads\install_flash_player(3).exe
2014-10-25 10:50 - 2014-08-30 17:15 - 21197152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-10-25 10:49 - 2014-09-09 23:25 - 00474432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-10-25 10:49 - 2014-09-07 20:07 - 02497344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-10-25 10:49 - 2014-09-07 20:07 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-10-25 10:49 - 2014-09-07 15:08 - 00389176 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-10-25 10:49 - 2014-09-04 15:30 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-10-25 10:49 - 2014-09-04 15:21 - 01053184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-10-25 10:49 - 2014-09-03 20:15 - 00561416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-10-25 10:49 - 2014-09-03 20:14 - 00177472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-10-25 10:49 - 2014-09-03 20:05 - 00836176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-10-25 10:49 - 2014-09-03 19:22 - 00670384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-10-25 10:49 - 2014-09-03 18:19 - 00436224 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2014-10-25 10:49 - 2014-09-03 18:01 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2014-10-25 10:49 - 2014-09-03 17:45 - 00318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2014-10-25 10:49 - 2014-09-03 17:41 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-10-25 10:49 - 2014-09-03 17:36 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-10-25 10:49 - 2014-09-03 17:32 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2014-10-25 10:49 - 2014-09-03 17:15 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-10-25 10:49 - 2014-08-30 17:17 - 00148800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-10-25 10:49 - 2014-08-30 15:59 - 18723112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-10-25 10:49 - 2014-08-30 15:05 - 00615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2014-10-25 10:49 - 2014-08-30 14:58 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2014-10-25 10:49 - 2014-08-30 14:04 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-10-25 10:49 - 2014-08-30 13:53 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2014-10-25 10:49 - 2014-08-30 13:17 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-10-25 10:49 - 2014-08-27 19:55 - 07484224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-10-25 10:49 - 2014-08-27 17:21 - 02480128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-10-25 10:49 - 2014-08-27 17:06 - 02030592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-10-25 10:49 - 2014-08-22 22:14 - 13424128 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-10-25 10:49 - 2014-08-22 22:04 - 11820544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-10-25 10:49 - 2014-08-22 21:50 - 02714112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-10-25 10:49 - 2014-08-01 17:51 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-10-25 10:49 - 2014-08-01 17:35 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-10-19 04:44 - 2014-10-19 04:44 - 00699016 _____ (CNET Download.com) C:\Users\Mike\Downloads\cbsidlm-cbsi213-BatteryCare-SEO-10964408.exe
2014-10-19 04:26 - 2014-10-19 04:26 - 00822608 _____ (Pokki) C:\Users\Mike\Downloads\Pokki_Start_MenuSetup.exe
2014-10-19 04:07 - 2014-10-19 04:07 - 00000000 ____D () C:\Users\Mike\AppData\Local\CrystalDiskMark
2014-10-19 04:06 - 2014-10-19 04:06 - 03958888 _____ (Crystal Dew World ) C:\Users\Mike\Downloads\CrystalDiskMark3_0_3bShizuku-en.exe
2014-10-19 04:06 - 2014-10-19 04:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark
2014-10-19 04:06 - 2014-10-19 04:06 - 00000000 ____D () C:\Program Files\CrystalDiskMark
2014-10-19 04:02 - 2014-10-19 04:02 - 07075640 _____ (Crystal Dew World ) C:\Users\Mike\Downloads\CrystalDiskInfo5_6_2Shizuku-en.exe
2014-10-19 03:57 - 2014-10-29 12:29 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2014-10-19 03:57 - 2014-10-29 12:28 - 00015452 _____ () C:\WINDOWS\PFRO.log
2014-10-19 02:34 - 2014-10-19 02:34 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Acronis
2014-10-19 02:30 - 2014-10-29 12:39 - 00003427 _____ () C:\WINDOWS\setupact.log
2014-10-19 02:30 - 2014-10-19 02:30 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-10-19 02:29 - 2014-10-19 02:30 - 276253520 _____ (Acronis) C:\Users\Mike\Downloads\atih_installer_hd_s_e.exe
2014-10-19 02:22 - 2014-10-19 02:22 - 00003128 _____ () C:\WINDOWS\System32\Tasks\Dolby Selector
2014-10-19 02:22 - 2014-10-19 02:22 - 00000000 ____D () C:\Program Files (x86)\Dolby Digital Plus
2014-10-19 02:19 - 2014-10-19 02:19 - 00003144 _____ () C:\WINDOWS\System32\Tasks\RtHDVBg_Dolby
2014-10-19 02:19 - 2014-10-19 02:19 - 00003132 _____ () C:\WINDOWS\System32\Tasks\RTKCPL
2014-10-19 02:19 - 2014-10-19 02:19 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM
2014-10-19 02:19 - 2014-10-19 02:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2014-10-19 02:19 - 2014-10-19 02:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2014-10-19 02:19 - 2014-10-19 02:19 - 00000000 ____D () C:\Program Files\Realtek
2014-10-19 02:19 - 2014-10-19 02:19 - 00000000 ____D () C:\Program Files\Dolby Digital Plus
2014-10-19 02:19 - 2013-09-13 09:38 - 00646313 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2014-10-19 02:19 - 2013-09-13 08:54 - 03641688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2014-10-19 02:19 - 2013-09-13 04:23 - 32882688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2014-10-19 02:19 - 2013-09-12 09:23 - 00149208 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2014-10-19 02:19 - 2013-09-12 08:03 - 02586840 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2014-10-19 02:19 - 2013-09-03 04:49 - 02103040 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2014-10-19 02:19 - 2013-08-20 10:17 - 02809048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2014-10-19 02:19 - 2013-08-05 23:47 - 00947248 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2014-10-19 02:19 - 2013-08-05 08:11 - 02743328 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2014-10-19 02:19 - 2013-08-02 10:16 - 01005784 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2014-10-19 02:19 - 2013-04-24 07:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2014-10-19 02:19 - 2013-02-20 08:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2014-10-19 02:19 - 2012-10-02 04:41 - 00501192 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2014-10-19 02:19 - 2012-10-02 04:41 - 00487368 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2014-10-19 02:19 - 2012-10-02 04:41 - 00415688 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2014-10-19 02:19 - 2012-08-31 09:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2014-10-19 02:19 - 2012-08-31 09:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2014-10-19 02:19 - 2012-08-31 09:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2014-10-19 02:19 - 2012-08-31 09:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2014-10-19 02:19 - 2012-08-31 09:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2014-10-19 02:19 - 2012-01-30 01:43 - 00836544 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2014-10-19 02:19 - 2012-01-10 00:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2014-10-19 02:19 - 2011-12-20 05:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2014-10-19 02:19 - 2011-11-22 06:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2014-10-19 02:19 - 2011-09-02 04:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2014-10-19 02:19 - 2011-09-02 04:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2014-10-19 02:19 - 2011-09-02 04:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2014-10-19 02:19 - 2011-08-23 07:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2014-10-19 02:19 - 2011-05-30 23:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2014-10-19 02:19 - 2011-03-17 02:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2014-10-19 02:19 - 2011-03-07 07:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2014-10-19 02:19 - 2010-11-07 21:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2014-10-19 02:19 - 2010-11-07 21:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2014-10-19 02:19 - 2010-11-07 21:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2014-10-19 02:19 - 2010-11-07 21:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2014-10-19 02:19 - 2010-11-07 21:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2014-10-19 02:19 - 2010-11-07 21:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2014-10-19 02:19 - 2010-11-03 08:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2014-10-19 02:19 - 2010-07-22 06:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2014-10-19 02:19 - 2009-11-23 23:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2014-10-19 02:19 - 2009-11-23 23:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2014-10-19 02:19 - 2009-11-23 23:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2014-10-19 02:19 - 2009-11-23 23:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2014-10-19 02:18 - 2013-08-07 07:41 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-10-19 02:18 - 2013-08-05 18:56 - 06219096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2014-10-19 02:18 - 2013-08-05 18:56 - 01908568 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2014-10-19 02:18 - 2013-08-05 18:56 - 00312152 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2014-10-19 02:18 - 2013-08-05 18:56 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2014-10-19 02:18 - 2013-06-05 11:42 - 00208072 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2014-10-19 02:18 - 2012-03-08 01:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2014-10-19 02:18 - 2011-05-30 23:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2014-10-19 02:18 - 2011-05-30 23:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2014-10-19 02:18 - 2011-05-30 23:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2014-10-19 02:12 - 2014-10-19 02:14 - 320376920 _____ (Lenovo Group Limited ) C:\Users\Mike\Downloads\j4au03ww.exe
2014-10-16 09:14 - 2014-10-16 09:14 - 00003156 _____ () C:\WINDOWS\System32\Tasks\RtHDVBg_LENOVO_MICPKEY
2014-10-15 23:22 - 2014-10-15 23:23 - 00000000 ____D () C:\Users\Mike\Desktop\log
2014-10-15 23:16 - 2014-10-15 23:16 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\AVG2015
2014-10-15 23:16 - 2014-10-15 23:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-10-15 23:16 - 2014-09-21 23:42 - 00278152 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-10-15 23:15 - 2014-10-15 23:16 - 00000000 ____D () C:\ProgramData\AVG2015
2014-10-15 23:15 - 2014-10-15 23:15 - 00000000 ___HD () C:\$AVG
2014-10-15 23:15 - 2014-10-15 23:15 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-10-15 23:14 - 2014-10-29 12:33 - 00000000 ____D () C:\ProgramData\MFAData
2014-10-15 23:14 - 2014-10-20 17:54 - 00000000 ____D () C:\Users\Mike\AppData\Local\Avg2015
2014-10-15 23:14 - 2014-10-15 23:14 - 00000000 ____D () C:\Users\Mike\AppData\Local\MFAData
2014-10-15 23:12 - 2014-09-27 15:25 - 04183040 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-10-15 23:12 - 2014-09-07 20:15 - 00054752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-10-15 23:12 - 2014-09-07 18:46 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-10-15 23:12 - 2014-09-07 18:46 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-10-15 23:12 - 2014-09-07 17:08 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-10-15 23:12 - 2014-09-07 17:07 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-10-15 23:12 - 2014-09-07 17:05 - 03448320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-10-15 23:12 - 2014-09-07 17:04 - 00388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-10-15 23:12 - 2014-09-07 17:04 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-10-15 23:12 - 2014-09-07 17:03 - 01702400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-10-15 23:12 - 2014-09-07 17:03 - 00839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-10-15 23:12 - 2014-09-07 16:59 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-10-15 23:12 - 2014-09-07 16:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-10-15 23:12 - 2014-09-07 16:56 - 00672256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-10-15 23:12 - 2014-09-07 16:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-10-15 23:12 - 2014-09-03 17:10 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-10-15 23:12 - 2014-09-03 16:57 - 00921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-10-15 23:12 - 2014-09-03 16:49 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-10-15 23:11 - 2014-09-25 15:50 - 13619200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-10-15 23:11 - 2014-09-25 15:46 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-10-15 23:11 - 2014-09-25 15:46 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-10-15 23:11 - 2014-09-25 15:43 - 11807232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-10-15 23:11 - 2014-09-25 15:32 - 02017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-10-15 23:11 - 2014-09-25 15:31 - 02108416 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-10-15 23:11 - 2014-09-18 19:25 - 23631360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-10-15 23:11 - 2014-09-18 18:44 - 17484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-10-15 23:11 - 2014-09-18 18:41 - 02796032 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-10-15 23:11 - 2014-09-18 18:40 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-10-15 23:11 - 2014-09-18 18:38 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-10-15 23:11 - 2014-09-18 18:36 - 05829632 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-10-15 23:11 - 2014-09-18 18:25 - 04201472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-10-15 23:11 - 2014-09-18 18:25 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-10-15 23:11 - 2014-09-18 18:02 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-10-15 23:11 - 2014-09-18 18:00 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-10-15 23:11 - 2014-09-18 17:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-10-15 23:11 - 2014-09-18 17:58 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-10-15 23:11 - 2014-09-18 17:55 - 02187264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-10-15 23:11 - 2014-09-18 17:42 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-10-15 23:11 - 2014-09-18 17:42 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-10-15 23:11 - 2014-09-18 17:42 - 00363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-10-15 23:11 - 2014-09-18 17:33 - 02309632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-10-15 23:11 - 2014-09-18 17:20 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-10-15 23:11 - 2014-09-18 17:20 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-10-15 23:11 - 2014-09-18 17:14 - 01447936 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-10-15 23:11 - 2014-09-18 16:59 - 01810944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-10-15 23:11 - 2014-09-18 16:59 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-10-15 23:11 - 2014-09-18 16:53 - 01190400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-10-15 23:11 - 2014-09-18 16:52 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-10-15 23:11 - 2014-09-03 17:12 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-10-15 23:11 - 2014-09-03 17:01 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-10-15 23:10 - 2014-09-12 23:02 - 02779648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-10-15 23:10 - 2014-09-12 22:30 - 03117568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-10-15 23:07 - 2014-10-15 23:10 - 00604936 _____ () C:\Users\Mike\Downloads\avgremover.log
2014-10-15 23:06 - 2014-10-15 23:07 - 03681088 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Mike\Downloads\avg_remover_stf_x64_2015_5501.exe
2014-10-15 23:04 - 2014-09-12 23:29 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2014-10-15 23:04 - 2014-09-12 22:49 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2014-10-15 23:03 - 2014-10-15 23:03 - 01565744 _____ () C:\Users\Mike\Downloads\AVG_Remover_en.exe
2014-10-15 22:53 - 2014-10-15 22:53 - 04579176 _____ (AVG Technologies) C:\Users\Mike\Downloads\avg_free_stb_all_2015_5315_cnet(1).exe
2014-10-11 01:46 - 2014-10-11 01:46 - 00001882 _____ () C:\WINDOWS\delpw64.cmd
2014-10-10 05:24 - 2014-10-10 05:24 - 00000132 _____ () C:\Users\Mike\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-10-04 08:09 - 2014-10-19 02:27 - 00000000 ____D () C:\Users\Mike\Desktop\CCleaner Registry Files
2014-10-04 07:31 - 2014-10-04 07:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-10-04 07:31 - 2014-10-04 07:31 - 00000000 ____D () C:\Program Files\Speccy
2014-10-04 07:29 - 2014-10-04 07:29 - 04890736 _____ (Piriform Ltd) C:\Users\Mike\Downloads\spsetup126.exe
2014-10-04 07:29 - 2014-10-04 07:29 - 00002770 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2014-10-04 07:29 - 2014-10-04 07:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-04 07:29 - 2014-10-04 07:29 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-04 07:27 - 2014-10-04 07:28 - 04965896 _____ (Piriform Ltd) C:\Users\Mike\Downloads\ccsetup418.exe
2014-10-04 04:51 - 2014-10-04 04:56 - 17903792 _____ (Adobe Systems Incorporated) C:\Users\Mike\Downloads\install_flash_player(2).exe
2014-10-02 23:49 - 2014-10-02 23:51 - 04579176 _____ (AVG Technologies) C:\Users\Mike\Downloads\avg_free_stb_all_2015_5315_cnet.exe
2014-10-01 07:52 - 2014-10-01 07:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paragon HFS+ for Windows 8 Free Edition
2014-10-01 07:52 - 2014-10-01 07:52 - 00000000 ____D () C:\Program Files (x86)\Paragon Software
2014-10-01 07:52 - 2014-06-17 01:18 - 00206032 _____ (Paragon Software Group) C:\WINDOWS\system32\Drivers\hfsplus.sys
2014-10-01 07:52 - 2014-06-17 01:18 - 00061136 _____ (Paragon Software Group) C:\WINDOWS\system32\Drivers\gpt_loader.sys
2014-10-01 07:52 - 2014-06-17 01:18 - 00042704 _____ (Paragon Software Group) C:\WINDOWS\system32\Drivers\mounthlp.sys
2014-10-01 07:52 - 2014-06-17 01:18 - 00015568 _____ (Paragon Software Group) C:\WINDOWS\system32\Drivers\hfsplusrec.sys
2014-10-01 07:52 - 2014-06-17 01:17 - 00035024 _____ (Paragon Software Group) C:\WINDOWS\system32\Drivers\apmwin.sys
2014-10-01 07:45 - 2014-10-01 07:49 - 03737088 _____ () C:\Users\Mike\Downloads\PSG-265-FRE-PL.msi
2014-09-29 09:06 - 2014-09-29 09:12 - 36034936 _____ (Garmin Ltd or its subsidiaries) C:\Users\Mike\Downloads\GarminExpressInstaller(2).exe
2014-09-29 08:31 - 2014-09-29 08:31 - 00895120 _____ (Google Inc.) C:\Users\Mike\Downloads\GoogleEarthSetup.exe
2014-09-29 08:24 - 2014-09-29 08:24 - 00000000 ____D () C:\Users\Mike\AppData\Local\Garmin
2014-09-29 08:24 - 2014-09-29 08:24 - 00000000 ____D () C:\ProgramData\Garmin
2014-09-29 08:06 - 2014-09-29 08:20 - 36034936 _____ (Garmin Ltd or its subsidiaries) C:\Users\Mike\Downloads\GarminExpressInstaller.exe
2014-09-29 08:02 - 2014-09-29 08:21 - 46781480 _____ () C:\Users\Mike\Downloads\TrainingCenter_365.exe
2014-09-29 07:53 - 2014-09-29 08:24 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Garmin
2014-09-29 07:53 - 2014-09-29 08:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2014-09-29 07:53 - 2014-09-29 08:23 - 00000000 ____D () C:\Program Files (x86)\Garmin
2014-09-29 07:49 - 2014-09-29 07:53 - 11390192 _____ () C:\Users\Mike\Downloads\WebUpdater_WindowsXPSP3andnewer__256.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-29 12:40 - 2013-11-04 19:01 - 01826357 _____ () C:\WINDOWS\WindowsUpdate.log
2014-10-29 12:40 - 2013-11-04 16:25 - 00000000 ____D () C:\Users\Mike\AppData\Local\Pokki
2014-10-29 12:39 - 2013-11-06 21:14 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\BitTorrent
2014-10-29 12:34 - 2013-11-04 16:35 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3747722074-4262286703-4179932392-1001
2014-10-29 12:34 - 2013-09-29 21:04 - 00863592 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-29 12:30 - 2013-11-08 20:46 - 00148992 ___SH () C:\Users\Mike\Downloads\Thumbs.db
2014-10-29 12:29 - 2013-11-04 19:05 - 00000000 __RDO () C:\Users\Mike\SkyDrive
2014-10-29 12:29 - 2013-11-04 16:26 - 00000466 _____ () C:\Users\Mike\AppData\Local\RegisteredPackageInformation.xml
2014-10-29 12:29 - 2013-10-29 01:18 - 00034752 _____ () C:\WINDOWS\system32\Drivers\WPRO_41_2001.sys
2014-10-29 12:28 - 2014-02-17 01:30 - 00000918 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-29 12:28 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\Registration
2014-10-29 12:28 - 2013-08-22 07:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-10-28 23:02 - 2013-11-06 22:38 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\vlc
2014-10-28 23:00 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-10-28 22:51 - 2014-02-17 01:30 - 00000922 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-28 22:16 - 2013-11-10 11:03 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-10-28 19:08 - 2012-07-26 00:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-10-28 18:54 - 2014-07-09 10:41 - 00000000 ____D () C:\Program Files\Vuze
2014-10-28 18:43 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-10-28 18:22 - 2013-08-22 06:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-10-28 17:57 - 2014-02-16 22:41 - 00000000 ____D () C:\Users\Mike\AppData\Local\LogMeIn Rescue Applet
2014-10-28 17:37 - 2013-10-28 09:29 - 00000000 ____D () C:\ProgramData\Lenovo
2014-10-28 17:36 - 2013-10-29 01:24 - 00000000 ____D () C:\WINDOWS\System32\Tasks\TVT
2014-10-28 17:36 - 2013-10-29 01:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2014-10-28 17:36 - 2013-10-29 01:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-10-28 17:36 - 2013-10-29 01:05 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2014-10-28 17:34 - 2013-10-29 01:22 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2014-10-28 17:23 - 2013-11-04 16:26 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Nitro PDF
2014-10-28 17:21 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-10-27 21:22 - 2014-07-09 10:41 - 00000000 ____D () C:\Users\Mike\AppData\Roaming\Azureus
2014-10-27 20:52 - 2013-11-06 21:44 - 00000000 ____D () C:\Users\Mike\Downloads\Movies
2014-10-26 06:35 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-10-25 12:06 - 2013-11-10 11:03 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-10-25 10:52 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-10-25 10:52 - 2013-08-22 08:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-10-24 13:43 - 2014-03-05 20:57 - 00000000 ____D () C:\Users\Mike\Documents\My Received Files
2014-10-24 12:01 - 2013-11-15 20:25 - 00390144 ___SH () C:\Users\Mike\Desktop\Thumbs.db
2014-10-24 10:57 - 2013-12-07 16:00 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-10-19 05:01 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-10-19 05:01 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-10-19 05:01 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-10-19 05:01 - 2013-08-22 07:44 - 00501960 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-10-19 04:59 - 2013-11-15 21:50 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-10-19 04:57 - 2013-11-15 21:50 - 103265616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-10-19 04:57 - 2013-08-22 06:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-10-19 02:19 - 2013-10-29 01:11 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-10-16 09:33 - 2013-10-29 01:07 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-10-15 23:45 - 2014-09-14 10:29 - 00000000 ____D () C:\Users\Mike\Downloads\AVGU
2014-10-15 23:16 - 2012-07-26 01:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-10-14 22:06 - 2013-11-04 18:52 - 00000000 ____D () C:\Users\Mike
2014-10-14 20:14 - 2014-04-14 09:10 - 00000000 ____D () C:\Users\Mike\Desktop\Phone
2014-10-11 23:31 - 2013-12-07 18:46 - 00000000 ____D () C:\Users\Mike\Desktop\Work
2014-10-11 23:31 - 2013-11-04 16:25 - 00000000 ____D () C:\Users\Mike\AppData\Local\Packages
2014-10-11 01:46 - 2014-06-10 02:42 - 00000006 _____ () C:\WINDOWS\systemtype.txt
2014-10-11 01:46 - 2013-08-22 08:36 - 00000000 ____D () C:\WINDOWS\Help
2014-10-10 05:28 - 2014-09-11 22:51 - 00000000 ____D () C:\Users\Mike\Desktop\Flag Pics
2014-10-04 07:51 - 2014-06-10 03:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
2014-10-04 07:35 - 2013-11-07 23:11 - 00000000 ____D () C:\WINDOWS\Minidump
2014-10-04 07:35 - 2013-11-04 18:48 - 00000000 ___DC () C:\WINDOWS\Panther
2014-10-04 07:26 - 2014-01-25 18:49 - 00007618 _____ () C:\Users\Mike\AppData\Local\Resmon.ResmonCfg
2014-10-01 03:02 - 2014-06-19 09:49 - 00000000 ____D () C:\Users\Mike\Desktop\TAB TRANSFER
2014-09-30 23:09 - 2014-07-06 10:14 - 00000000 ____D () C:\Users\Mike\AppData\Local\IADS
2014-09-30 23:09 - 2014-02-26 18:25 - 00000000 ____D () C:\ProgramData\IADS
2014-09-29 15:45 - 2013-08-22 08:38 - 00706016 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-09-29 15:45 - 2013-08-22 08:38 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-29 09:38 - 2013-10-29 01:12 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-29 07:53 - 2013-10-29 00:53 - 00000000 ____D () C:\Program Files\DIFX

Some content of TEMP:
====================
C:\Users\Mike\AppData\Local\Temp\917b0b87-3358-4e79-93de-3dfc2fc99ed0.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-20 17:02

==================== End Of Log ============================

 

 

Addition.txt

[AdvancedSetup]

We're sorry. It looks like your topic was somehow overlooked. Due to the length of time we'll go ahead and close this topic now but if you still actually need help please send a private message to one of the Moderators and we'll assist you.

Thank you and sorry we missed your topic.