Help GetSearch

xristoforos123 · October 26, 2015

Well suddenly one day i just opened google chrome and when i typed any address i saw on chrome set from administrator GetSeach engine..i cant get rid of it cause it set itself default search engine and cant be changed

i searched on regedit and delete some files from SpaceSearch..scanned with antimalware programms such as malware bytes and a lot of other programms...found malwares and deleted them but it seems

the problem is not fixed can someone help ?

PS:When i click on a url lot of ads come all the time

kevinf80 · October 26, 2015

Hello and welcome to Malwarebytes.org

P2P/Piracy Warning:

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here. Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

Next,

Change the download folder setting in the default Browser so all tools we may use are saved to the Desktop:

Google Chrome - Click the "Customize and control Google Chrome" button in the upper right-corner of the browser.

Choose Settings. at the bottom of the screen click the
"Show advanced settings..." link. Scroll down to find the Downloads section and click the Change... button. Select your desktop and click OK.

Mozilla Firefox - Click the "Open Menu" button in the upper right-corner of the browser.

Choose Options. In the downloads section, click the Browse button, click on the Desktop folder and the click the "Select Folder" button. Click OK to get out of the Options menu.

Internet Explorer - Click the Tools menu in the upper right-corner of the browser.

Select View downloads. Select the Options link in the lower left of the window. Click Browse and select the Desktop and then choose the Select Folder button. Click OK to get out of the download options screen and then click Close to get out of the View Downloads screen.
NOTE: IE8 Does not support changing download locations in this manner. You will need to download the tool(s) to the default folder, usually Downloads, then copy them to the desktop.

Next,

Follow the instructions in the following link to show hidden files:

http://www.bleepingcomputer.com/tutorials/how-to-see-hidden-files-in-windows/

Next,

Please open Malwarebytes Anti-Malware.

On the Settings tab > Detection and Protection sub tab, Detection Options, tick the box "Scan for rootkits".
Under Non-Malware Protection sub tab Change PUP and PUM entries to Treat detections as Malware
Click on the Scan tab, then click on Scan Now >> . If an update is available, click the Update Now button.
A Threat Scan will begin.
With some infections, you may or may not see this message box.

'Could not load DDA driver'
Click 'Yes' to this message, to allow the driver to load after a restart.
Allow the computer to restart. Continue with the rest of these instructions.
When the scan is complete, click Apply Actions.
Wait for the prompt to restart the computer to appear, then click on Yes.
After the restart once you are back at your desktop, open MBAM once more.

To get the log from Malwarebytes do the following:

Click on the History tab > Application Logs.
Double click on the scan log which shows the Date and time of the scan just performed.
Click Export > From export you have three options:

Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
Text file (*.txt) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
XML file (*.xml) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
Recommend you use "Copy to Clipboard, then Right click to your reply > select "Paste" that will copy the log to your reply…

If Malwarebytes is not installed follow these instructions first:

Download Malwarebytes Anti-Malware to your desktop.

Double-click mbam-setup and follow the prompts to install the program.
At the end, be sure a checkmark is placed next to the following:
Launch Malwarebytes Anti-Malware
A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
Click Finish. Follow the instructions above....

Next,

Download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

If your security alerts to FRST either accept the alert or disable your security and allow FRST to run...

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Next,

Please download RogueKiller and save it to your desktop from the following link: http://www.bleepingcomputer.com/download/roguekiller/

Quit all running programs.
For Windows XP, double-click to start.
For Vista,Windows 7/8/8.1/10, Right-click on the program and select Run as Administrator to start and when prompted allow it to run.
Read and accept the EULA (End User Licene Agreement)
Click Scan to scan the system.
When the scan completes select "Report",in the next window select "Export txt" the log will open as a text file post that log... Also save to your Desktop for reference. log will open.
Close the program > Don't Fix anything!

Let me see those logs in your reply....

Thank you,

Kevin...

xristoforos123 · October 26, 2015

Malwarebytes Anti-Malware

www.malwarebytes.org

Scan Date: 2015-10-26

Scan Time: 16:48

Logfile:

Administrator: Yes

Version: 2.2.0.1024

Malware Database: v2015.10.26.04

Rootkit Database: v2015.10.23.01

License: Free

Malware Protection: Disabled

Malicious Website Protection: Disabled

Self-protection: Disabled

OS: Windows 8.1

CPU: x64

File System: NTFS

User: xristof

Scan Type: Threat Scan

Result: Completed

Objects Scanned: 429674

Time Elapsed: 19 min, 19 sec

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Enabled

Heuristics: Enabled

PUP: Enabled

PUM: Enabled

Processes: 0

(No malicious items detected)

Modules: 0

(No malicious items detected)

Registry Keys: 19

PUP.Optional.OpenCandy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\INTERFACE\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\TYPELIB\{1112F282-7099-4624-A439-DB29D6551552}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\INTERFACE\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{1112F282-7099-4624-A439-DB29D6551552}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{1112F282-7099-4624-A439-DB29D6551552}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\OCComSDK.ComSDK.1, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\OCComSDK.ComSDK, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\OCComSDK.ComSDK, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\OCComSDK.ComSDK, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\WOW6432NODE\CLASSES\OCComSDK.ComSDK.1, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\OCComSDK.ComSDK.1, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

Registry Values: 0

(No malicious items detected)

Registry Data: 0

(No malicious items detected)

Folders: 0

(No malicious items detected)

Files: 3

PUP.Optional.OpenCandy, C:\Users\xristof\AppData\Local\Temp\HYD6F36.tmp.1445870160\HTA\install.1445870160.zip, Quarantined, [b2da3526ec9f65d1feca0ddffe03b34d],

PUP.Optional.OpenCandy, C:\Users\xristof\AppData\Local\Temp\HYD6F36.tmp.1445870160\HTA\3rdparty\OCComSDK.dll, Quarantined, [8b015a01deadcd69f4d410dc926f6997],

PUP.Optional.OpenCandy, C:\Users\xristof\AppData\Local\Temp\HYD6F36.tmp.1445870160\HTA\3rdparty\OCSetupHlp.dll, Quarantined, [3e4ecb90404bad8988f2bd8d887c847c],

Physical Sectors: 0

(No malicious items detected)

(end)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-10-2015 02

Ran by xristof (administrator) on XRISTOF-PC (26-10-2015 17:14:25)

Running from C:\Users\xristof\Desktop

Loaded Profiles: xristof (Available Profiles: xristof & Administrator)

Platform: Windows 8.1 Pro (X64) Language: English (United States)

Internet Explorer Version 11 (Default browser: Chrome)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

() C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe

() C:\Windows\SysWOW64\ASGT.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

(Microsoft Corporation) C:\Windows\System32\alg.exe

(ASUS) C:\Program Files (x86)\ASUS\GPU Tweak\GPUTweak.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe

(ASUS) C:\Program Files (x86)\ASUS\GPU Tweak\Monitor.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe

(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8497368 2015-09-17] (Realtek Semiconductor)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-10-25] (AVAST Software)

HKLM-x32\...\Run: [ChangeFilterMerit] => C:\Program Files (x86)\NewSoft\Presto! PVR\ChangeFilterMerit.exe [51280 2007-06-08] (NewSoft)

HKLM-x32\...\Run: [Presto! PVR Monitor] => C:\Program Files (x86)\NewSoft\Presto! PVR\Monitor.exe [157520 2010-03-24] (NewSoft)

HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [56080 2015-10-01] (Raptr, Inc)

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\Run: [MK LOL] => C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe [1095704 2015-09-17] (MKGame)

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\Run: [C] => C:\WINDOWS\system32\GroupPolicy\Machine\Registry.pol [782 2015-10-17] ()

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-25] (AVAST Software)

GroupPolicy: Restriction - Chrome <======= ATTENTION

CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 c:\Windows\SysWOW64\wlidnsp.dll [49664 2013-08-22] (Microsoft Corporation)

Winsock: Catalog5 08 c:\Windows\SysWOW64\wlidnsp.dll [49664 2013-08-22] (Microsoft Corporation)

Winsock: Catalog5-x64 07 c:\Windows\System32\wlidnsp.dll [73216 2013-08-22] (Microsoft Corporation)

Winsock: Catalog5-x64 08 c:\Windows\System32\wlidnsp.dll [73216 2013-08-22] (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{A09BC1BF-6E71-46EE-A611-DDCF23DF6409}: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{DE0DFF87-2D10-49B3-968B-589645A2B667}: [DhcpNameServer] 192.168.1.1

Internet Explorer:

==================

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.se.msn.com/

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006

SearchScopes: HKLM -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL =

SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

SearchScopes: HKLM-x32 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}

SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

SearchScopes: HKU\S-1-5-21-857740524-2325024319-2471581936-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

SearchScopes: HKU\S-1-5-21-857740524-2325024319-2471581936-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}

BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-14] (Oracle Corporation)

BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-27] (AVAST Software)

BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)

BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-14] (Oracle Corporation)

BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-14] (Oracle Corporation)

BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-27] (AVAST Software)

BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-14] (Oracle Corporation)

Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)

Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:

========

FF ProfilePath: C:\Users\xristof\AppData\Roaming\Mozilla\Firefox\Profiles\i312r0vg.default-1445786634387

FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_19_0_0_226.dll [2015-10-16] ()

FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-14] (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-14] (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-10-16] ()

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.)

FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-14] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-14] (Oracle Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.17\npGoogleUpdate3.dll [2015-10-18] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.17\npGoogleUpdate3.dll [2015-10-18] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)

FF Plugin HKU\S-1-5-21-857740524-2325024319-2471581936-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\xristof\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)

FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]

FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-10-25] [not signed]

FF HKLM-x32\...\Firefox\Extensions: [arthurj8283@gmail.com] - C:\Users\xristof\AppData\Roaming\Mozilla\Firefox\Profiles\v50zxwe3.default\extensions\arthurj8283@gmail.com => not found

FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\prefs.js [2015-04-01] <==== ATTENTION (Points to *.cfg file)

FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\cfg [2015-04-01] <==== ATTENTION

Chrome:

=======

CHR HomePage: Profile 1 -> hxxp://www.google.gr/

CHR Profile: C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Έγγραφα Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]

CHR Extension: (Google Drive ) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-24]

CHR Extension: (YouTube) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]

CHR Extension: (Adblock για το Youtube™) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-10-16]

CHR Extension: (Αναζήτηση Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-30]

CHR Extension: (Έγγραφα Google εκτός σύνδεσης) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-06]

CHR Extension: (AdBlock) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-14]

CHR Extension: (Avast Online Security) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-03-14]

CHR Extension: (Πληρωμές στο Chrome Web Store) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-05]

CHR Extension: (Gmail) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]

CHR Profile: C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1

CHR Extension: (Διαφάνειες Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-18]

CHR Extension: (Έγγραφα Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-19]

CHR Extension: (Google Drive ) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-23]

CHR Extension: (YouTube) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-19]

CHR Extension: (Adblock Plus) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-10-20]

CHR Extension: (Αναζήτηση Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-24]

CHR Extension: (Υπολογιστικά φύλλα Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-18]

CHR Extension: (Έγγραφα Google εκτός σύνδεσης) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-19]

CHR Extension: (AdBlock) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-10-22]

CHR Extension: (Avast Online Security) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-10-18]

CHR Extension: (Πληρωμές στο Chrome Web Store) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-18]

CHR Extension: (Gmail) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-19]

CHR Profile: C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2

CHR Extension: (Διαφάνειες Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-18]

CHR Extension: (Έγγραφα Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-18]

CHR Extension: (Google Drive ) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-18]

CHR Extension: (YouTube) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-18]

CHR Extension: (Αναζήτηση Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-18]

CHR Extension: (Υπολογιστικά φύλλα Google) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-18]

CHR Extension: (Έγγραφα Google εκτός σύνδεσης) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-18]

CHR Extension: (Avast Online Security) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-10-18]

CHR Extension: (Πληρωμές στο Chrome Web Store) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-18]

CHR Extension: (Gmail) - C:\Users\xristof\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-18]

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-14]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-07-04] (Advanced Micro Devices, Inc.) [File not signed]

R2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-09-19] ()

R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-25] (AVAST Software)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)

R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)

R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5429520 2015-01-30] (TeamViewer GmbH)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

S2 ZAMSvc; "C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe" /service [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdide64; C:\Windows\System32\drivers\amdide64.sys [11944 2015-05-20] (Advanced Micro Devices Inc.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)

R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)

R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [60104 2014-09-19] (Advanced Micro Devices)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-25] (AVAST Software)

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-25] (AVAST Software)

R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-25] (AVAST Software)

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-25] (AVAST Software)

R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-10-25] (AVAST Software)

R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-10-25] (AVAST Software)

R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-25] (AVAST Software)

R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-25] (AVAST Software)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [102912 2015-09-17] (Advanced Micro Devices)

S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)

R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-20] (REALiX)

R3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [23680 2010-02-23] (ASUSTeK Computer Inc.)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)

R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2015-10-26] (Malwarebytes)

S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)

R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()

S3 tapoas; C:\Windows\system32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)

R3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()

S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [34760 2013-08-22] (Microsoft Corporation)

R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [265056 2013-08-22] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X]

S1 ZAM_Guard; \??\C:\WINDOWS\System32\drivers\zamguard64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-26 17:14 - 2015-10-26 17:14 - 00021414 _____ C:\Users\xristof\Desktop\FRST.txt

2015-10-26 17:14 - 2015-10-26 17:14 - 00000000 ____D C:\FRST

2015-10-26 17:13 - 2015-10-26 17:13 - 02197504 _____ (Farbar) C:\Users\xristof\Desktop\FRST64.exe

2015-10-26 16:51 - 2015-10-26 16:51 - 18965064 _____ C:\Users\xristof\Desktop\RogueKiller.exe

2015-10-26 16:45 - 2015-10-26 16:46 - 22908888 _____ (Malwarebytes ) C:\Users\xristof\Desktop\mbam-setup-2.2.0.1024.exe

2015-10-26 16:33 - 2015-10-26 16:34 - 29619504 _____ (IObit ) C:\Users\xristof\Downloads\IObit-Malware-Fighter-Setup.exe

2015-10-26 16:12 - 2015-10-26 16:44 - 00000000 ____D C:\Program Files\Reason

2015-10-26 16:12 - 2015-10-26 16:12 - 00000000 ____D C:\ProgramData\Reason

2015-10-26 16:10 - 2015-10-26 16:10 - 03802952 _____ (Reason Software Company Inc.) C:\Users\xristof\Downloads\reason-core-security-setup.exe

2015-10-26 14:52 - 2015-10-26 14:52 - 23736088 _____ (SUPERAntiSpyware) C:\Users\xristof\Downloads\SUPERAntiSpyware.exe

2015-10-26 14:49 - 2015-10-26 14:49 - 01694208 _____ C:\Users\xristof\Downloads\adwcleaner_5.015.exe

2015-10-25 22:07 - 2015-10-25 22:08 - 00000000 ____D C:\Users\xristof\Desktop\MAMA

2015-10-25 17:24 - 2015-10-25 17:24 - 00000000 ____D C:\Users\xristof\Desktop\Παλιά δεδομένα Firefox

2015-10-25 17:18 - 2015-10-25 17:18 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\subinacl.exe

2015-10-25 17:18 - 2015-10-25 17:18 - 00000000 ____D C:\Program Files (x86)\Adware Removal Tool by TSA

2015-10-25 17:17 - 2015-10-25 17:17 - 00700584 _____ C:\Users\xristof\Downloads\Adware_Removal_Tool_by_TSA.exe

2015-10-25 16:42 - 2015-10-25 16:42 - 00000000 _____ C:\autoexec.bat

2015-10-25 16:39 - 2015-10-25 16:39 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\xristof\Downloads\SpyHunter-Installer.exe

2015-10-25 15:51 - 2015-10-26 17:08 - 00000000 ____D C:\Program Files (x86)\Zemana AntiMalware

2015-10-25 15:51 - 2015-10-25 15:51 - 00000000 ____D C:\Users\xristof\AppData\Local\Zemana

2015-10-25 15:50 - 2015-10-25 15:50 - 05193784 _____ ( ) C:\Users\xristof\Downloads\Zemana.AntiMalware.Setup.exe

2015-10-25 15:03 - 2015-10-25 15:12 - 00002550 _____ C:\Users\xristof\Desktop\Rkill.txt

2015-10-25 15:01 - 2015-10-25 15:01 - 00000000 ____D C:\TDSSKiller_Quarantine

2015-10-25 14:59 - 2015-10-25 14:59 - 02019656 _____ (Bleeping Computer, LLC) C:\Users\xristof\Downloads\rkill.com

2015-10-25 14:54 - 2015-10-25 14:54 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\xristof\Downloads\tdsskiller.exe

2015-10-25 14:40 - 2015-10-25 14:40 - 00002800 _____ C:\WINDOWS\system32\.crusader

2015-10-25 14:33 - 2015-10-25 14:40 - 00000000 ____D C:\ProgramData\HitmanPro

2015-10-25 14:32 - 2015-10-25 14:32 - 11336600 _____ (SurfRight B.V.) C:\Users\xristof\Downloads\HitmanPro_x64.exe

2015-10-25 03:47 - 2015-10-26 14:49 - 00000000 ____D C:\AdwCleaner

2015-10-25 03:04 - 2015-10-26 17:11 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys

2015-10-25 03:04 - 2015-10-25 03:26 - 00001114 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-10-25 03:04 - 2015-10-25 03:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-10-25 03:04 - 2015-10-25 03:06 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-10-25 03:04 - 2015-10-25 03:04 - 00000000 ____D C:\ProgramData\Malwarebytes

2015-10-25 03:04 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys

2015-10-25 03:04 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys

2015-10-25 03:04 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys

2015-10-25 02:21 - 2015-10-25 02:21 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe

2015-10-25 02:21 - 2015-10-25 02:21 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr

2015-10-24 19:35 - 2015-10-24 19:51 - 00000000 ____D C:\Users\xristof\Downloads\3DMGAME-MGSV.TPP.v1.005.Update.and.Crack.v2-3DM

2015-10-23 16:27 - 2015-10-24 10:29 - 00000000 ____D C:\Users\xristof\Downloads\Metal.Gear.Solid.V.The.Phantom.Pain.Full.Unlocked

2015-10-20 13:39 - 2015-04-01 18:12 - 00000000 ____D C:\Users\xristof\Desktop\NIMA

2015-10-20 13:34 - 2015-10-20 13:38 - 122414471 _____ C:\Users\xristof\Downloads\FI VHTA SIGMA - TOSO KODA STO TELOS.rar

2015-10-20 09:57 - 2015-10-23 13:37 - 00000000 ____D C:\Program Files (x86)\Fifa 16

2015-10-20 09:55 - 2015-10-20 09:55 - 00000000 ____D C:\Users\xristof\Documents\FIFA 16

2015-10-20 09:54 - 2015-10-20 09:54 - 00000000 ____D C:\ProgramData\Origin

2015-10-19 15:40 - 2015-10-20 09:57 - 00000000 ____D C:\Users\xristof\Downloads\FIFA 16 Super Deluxe Edition-SKIDROWGAMES

2015-10-19 13:38 - 2015-10-25 03:26 - 00002234 _____ C:\Users\Public\Desktop\Pro Evolution Soccer 2016.lnk

2015-10-19 13:38 - 2015-10-19 13:38 - 00002243 _____ C:\Users\Public\Desktop\Настройки PES 2016.lnk

2015-10-19 13:38 - 2015-10-19 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pro Evolution Soccer 2016

2015-10-18 20:40 - 2015-10-18 20:40 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7

2015-10-18 16:35 - 2015-10-25 03:49 - 00000000 ____D C:\WINDOWS\system32\log

2015-10-18 16:32 - 2015-10-18 16:32 - 00000000 ____D C:\Program Files (x86)\GUMCD0B.tmp

2015-10-18 10:55 - 2015-10-18 10:55 - 00191787 _____ C:\Users\xristof\Downloads\GTA V Fixes (1).zip

2015-10-18 10:48 - 2010-03-18 09:36 - 05522768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc100u.dll

2015-10-18 10:48 - 2010-03-18 09:36 - 05493576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc100.dll

2015-10-18 10:48 - 2010-03-18 09:36 - 00827728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100.dll

2015-10-18 10:48 - 2010-03-18 09:36 - 00607568 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100.dll

2015-10-18 10:48 - 2007-04-04 17:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll

2015-10-18 10:48 - 2007-04-04 17:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll

2015-10-18 10:20 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll

2015-10-18 10:20 - 2010-05-26 10:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll

2015-10-18 10:20 - 2010-05-26 10:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll

2015-10-18 10:20 - 2009-09-04 16:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll

2015-10-18 10:20 - 2009-09-04 16:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll

2015-10-18 10:20 - 2009-09-04 16:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll

2015-10-18 10:20 - 2009-03-09 14:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll

2015-10-18 10:20 - 2009-03-09 14:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll

2015-10-18 10:20 - 2008-10-15 05:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll

2015-10-18 10:19 - 2008-10-15 05:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll

2015-10-18 10:19 - 2008-07-10 10:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll

2015-10-18 10:19 - 2008-07-10 10:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll

2015-10-18 10:19 - 2008-05-30 13:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll

2015-10-18 10:19 - 2008-05-30 13:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll

2015-10-18 10:19 - 2008-03-05 14:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll

2015-10-18 10:19 - 2008-02-05 22:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll

2015-10-18 10:19 - 2007-10-12 14:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll

2015-10-18 10:19 - 2007-10-02 08:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll

2015-10-18 10:19 - 2007-07-19 17:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll

2015-10-18 10:19 - 2007-07-19 17:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll

2015-10-18 10:19 - 2007-05-16 15:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll

2015-10-18 10:19 - 2007-05-16 15:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll

2015-10-18 10:19 - 2007-03-15 15:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll

2015-10-18 10:19 - 2007-03-12 15:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll

2015-10-18 10:19 - 2006-11-29 12:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll

2015-10-18 10:19 - 2006-11-29 12:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll

2015-10-18 10:19 - 2006-09-28 15:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll

2015-10-18 10:19 - 2006-03-31 11:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll

2015-10-18 10:19 - 2006-02-03 07:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll

2015-10-18 10:19 - 2005-12-05 17:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll

2015-10-18 10:19 - 2005-07-22 18:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll

2015-10-18 10:19 - 2005-05-26 14:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll

2015-10-18 10:19 - 2005-03-18 16:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll

2015-10-18 10:19 - 2005-02-05 18:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll

2015-10-18 10:16 - 2015-10-18 10:16 - 00054873 _____ C:\WINDOWS\SysWOW64\CCCInstall_201510181116428688.log

2015-10-18 10:16 - 2015-10-18 10:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center

2015-10-18 10:15 - 2015-10-18 10:15 - 00059756 _____ C:\WINDOWS\SysWOW64\CCCInstall_201510181115353368.log

2015-10-18 10:14 - 2015-10-18 10:14 - 47785472 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 30752256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 27535872 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 25299968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 21622784 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys

2015-10-18 10:14 - 2015-10-18 10:14 - 15716864 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 14302208 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 08893160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 08779872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 07408936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 06477312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 05068288 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap

2015-10-18 10:14 - 2015-10-18 10:14 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap

2015-10-18 10:14 - 2015-10-18 10:14 - 01247744 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00665088 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys

2015-10-18 10:14 - 2015-10-18 10:14 - 00660928 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb

2015-10-18 10:14 - 2015-10-18 10:14 - 00660928 _____ C:\WINDOWS\system32\atiapfxx.blb

2015-10-18 10:14 - 2015-10-18 10:14 - 00458472 _____ C:\WINDOWS\system32\amdmiracast.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe

2015-10-18 10:14 - 2015-10-18 10:14 - 00297672 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys

2015-10-18 10:14 - 2015-10-18 10:14 - 00235008 _____ C:\WINDOWS\system32\clinfo.exe

2015-10-18 10:14 - 2015-10-18 10:14 - 00204800 _____ C:\WINDOWS\system32\amdgfxinfo64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00190976 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00189952 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00160256 _____ C:\WINDOWS\system32\atieah64.exe

2015-10-18 10:14 - 2015-10-18 10:14 - 00156672 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00143872 _____ C:\WINDOWS\SysWOW64\atieah32.exe

2015-10-18 10:14 - 2015-10-18 10:14 - 00141792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00134656 _____ C:\WINDOWS\system32\amdhdl64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00123392 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00120144 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00107784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00102912 _____ C:\WINDOWS\system32\hsa-thunk64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00102616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00102400 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00093696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00086528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00065024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00059392 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00039424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00029696 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll

2015-10-18 10:14 - 2015-10-18 10:14 - 00000000 ____D C:\WINDOWS\LastGood.Tmp

2015-10-18 10:00 - 2008-10-15 05:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll

2015-10-18 09:56 - 2015-10-18 10:49 - 00000000 ____D C:\Users\xristof\Documents\Rockstar Games

2015-10-18 09:56 - 2015-10-18 09:56 - 00000000 ____D C:\Users\xristof\AppData\Local\Rockstar Games

2015-10-18 09:22 - 2015-10-25 03:26 - 00002215 _____ C:\Users\xristof\Desktop\Grand Theft Auto V.lnk

2015-10-18 09:22 - 2015-10-18 09:22 - 00000000 ____D C:\Users\xristof\AppData\Roaming\Grand Theft Auto V

2015-10-17 18:41 - 2015-10-17 18:41 - 00000408 _____ C:\zoek-results.log

2015-10-17 18:40 - 2015-10-17 18:42 - 00000529 _____ C:\runcheck.txt

2015-10-17 18:40 - 2015-10-17 18:40 - 00000000 ____D C:\zoek_backup

2015-10-17 18:18 - 2015-10-17 18:18 - 00000077 _____ C:\WINDOWS\SysWOW64\L

2015-10-17 18:11 - 2015-10-25 03:26 - 00002299 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-10-17 18:11 - 2015-10-17 18:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-10-17 18:09 - 2015-10-17 18:10 - 00000000 ____D C:\Users\xristof\AppData\Local\Deployment

2015-10-17 18:00 - 2015-10-17 18:02 - 00000008 __RSH C:\Users\xristof\ntuser.pol

2015-10-17 18:00 - 2015-10-17 18:00 - 00828416 _____ C:\WINDOWS\SysWOW64\SearchProtectService.exe

2015-10-17 18:00 - 2015-10-17 18:00 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy

2015-10-17 17:59 - 2015-10-26 16:37 - 00001032 __RSH C:\ProgramData\ntuser.pol

2015-10-17 17:58 - 2015-10-17 17:58 - 03306564 _____ C:\Users\xristof\Downloads\Failed to set data for language gta v.rar

2015-10-17 14:47 - 2015-10-18 09:22 - 00000000 ____D C:\Program Files (x86)\Rockstar Games

2015-10-17 14:47 - 2015-10-18 09:21 - 00000000 ____D C:\Program Files\Rockstar Games

2015-10-17 14:06 - 2015-10-25 22:49 - 00000000 ____D C:\Users\xristof\AppData\LocalLow\uTorrent

2015-10-15 20:05 - 2015-10-16 07:57 - 00000000 ____D C:\Users\xristof\Downloads\[R.G. Mechanics] Grand Theft Auto V

2015-10-15 20:04 - 2015-10-15 20:04 - 00000000 ____D C:\Users\xristof\Downloads\GTA IV Extreme Edition 2015

2015-10-14 13:36 - 2015-10-16 21:36 - 03996360 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe

2015-10-13 20:33 - 2015-10-13 20:33 - 28094413 _____ C:\Users\xristof\Documents\Untitled (4).wma

2015-10-13 15:13 - 2015-10-25 03:26 - 00001406 _____ C:\Users\xristof\Desktop\dmcr.exe - Shortcut.lnk

2015-10-13 12:53 - 2015-10-13 12:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cossacks

2015-10-13 12:52 - 2015-10-13 12:52 - 00053248 _____ C:\WINDOWS\SysWOW64\unrar.dll

2015-10-13 12:52 - 2015-10-13 12:46 - 04358144 ____R (GSC Game World) C:\WINDOWS\uncsetup.exe

2015-10-13 12:34 - 2015-10-13 12:44 - 00000000 ____D C:\Users\xristof\Downloads\Cossacks - European Wars V 1.15

2015-10-11 23:34 - 2015-10-11 23:53 - 725929428 _____ C:\Users\xristof\Downloads\Pach-of-Glorians (1).zip

2015-09-29 13:17 - 2015-09-29 13:20 - 00000000 ____D C:\Users\xristof\AppData\Roaming\FreeFileViewer

2015-09-28 14:29 - 2015-10-26 16:21 - 00000000 ____D C:\Program Files (x86)\FreeFileViewer

2015-09-28 14:29 - 2015-10-25 03:26 - 00001097 _____ C:\ProgramData\Microsoft\Windows\Start Menu\FreeFileViewer.lnk

2015-09-28 14:29 - 2015-10-25 03:26 - 00001091 _____ C:\Users\xristof\Desktop\FreeFileViewer.lnk

2015-09-28 14:29 - 2015-09-28 14:30 - 00000000 ____D C:\Users\xristof\AppData\Local\FreeFileViewer

2015-09-28 14:29 - 2015-09-28 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileViewer

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-26 17:14 - 2014-09-25 18:47 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-857740524-2325024319-2471581936-1000

2015-10-26 17:13 - 2013-09-30 06:14 - 00943530 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2015-10-26 17:12 - 2015-09-24 21:41 - 01274320 _____ C:\WINDOWS\WindowsUpdate.log

2015-10-26 17:10 - 2015-09-22 15:36 - 00000000 ____D C:\Users\xristof\AppData\Roaming\Raptr

2015-10-26 17:10 - 2015-05-20 13:01 - 00002882 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (xristof)

2015-10-26 17:09 - 2015-09-24 21:52 - 00000000 ___RD C:\Users\xristof\SkyDrive

2015-10-26 17:09 - 2014-09-25 18:54 - 00001204 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job

2015-10-26 17:09 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2015-10-26 17:08 - 2014-09-25 23:39 - 00000000 ___HD C:\WINDOWS\msdownld.tmp

2015-10-26 17:08 - 2013-09-30 06:02 - 00655746 _____ C:\WINDOWS\PFRO.log

2015-10-26 17:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru

2015-10-26 16:59 - 2014-09-25 18:54 - 00001208 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

2015-10-26 16:44 - 2015-05-22 12:22 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.4

2015-10-26 16:44 - 2014-10-21 15:38 - 00000958 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-857740524-2325024319-2471581936-1000UA.job

2015-10-26 16:44 - 2014-10-21 15:38 - 00000936 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-857740524-2325024319-2471581936-1000Core.job

2015-10-26 16:44 - 2014-09-25 18:52 - 00003942 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0CD0A543-9E79-4433-A9D7-8C9FF10DB760}

2015-10-26 16:37 - 2014-10-16 21:36 - 00001018 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cfe9787f0d7542.job

2015-10-26 16:36 - 2014-10-17 15:06 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2015-10-26 16:21 - 2015-09-25 16:18 - 00000000 ____D C:\Program Files (x86)\Smart Defender

2015-10-26 16:21 - 2015-09-22 15:43 - 00000000 ____D C:\Program Files (x86)\Pro Evolution Soccer 2015

2015-10-26 16:21 - 2015-06-10 19:04 - 00000000 ____D C:\Program Files (x86)\Half-Life 2 Episode One

2015-10-26 16:21 - 2014-11-09 10:47 - 00000000 ____D C:\Program Files\PowerISO

2015-10-26 15:52 - 2014-12-15 21:34 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2

2015-10-26 15:44 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2015-10-26 15:30 - 2014-11-01 15:09 - 00000000 ____D C:\Users\xristof\Downloads\Call of Duty 2

2015-10-26 01:02 - 2015-07-02 00:35 - 00003758 _____ C:\WINDOWS\System32\Tasks\AutoKMS

2015-10-25 17:25 - 2015-09-21 12:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-10-25 17:25 - 2014-10-16 22:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-10-25 03:29 - 2014-11-26 20:37 - 00000000 ____D C:\WINDOWS\Downloaded Installations

2015-10-25 03:27 - 2015-09-24 21:50 - 00001343 _____ C:\Users\xristof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2015-10-25 03:27 - 2015-09-24 21:36 - 00001511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-10-25 03:27 - 2015-02-08 02:04 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk

2015-10-25 03:27 - 2014-12-15 21:33 - 00002056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FL Studio 11.lnk

2015-10-25 03:27 - 2014-12-09 14:35 - 00001134 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WavePad Sound Editor.lnk

2015-10-25 03:27 - 2014-12-09 14:34 - 00001166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RecordPad Sound Recorder.lnk

2015-10-25 03:27 - 2014-12-01 15:24 - 00001126 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Debut Video Capture Software.lnk

2015-10-25 03:27 - 2014-10-01 15:33 - 00001378 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk

2015-10-25 03:27 - 2014-10-01 15:33 - 00001309 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk

2015-10-25 03:27 - 2014-10-01 15:32 - 00002490 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk

2015-10-25 03:27 - 2014-10-01 15:32 - 00001462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk

2015-10-25 03:27 - 2014-09-25 18:35 - 00000445 _____ C:\Users\xristof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk

2015-10-25 03:27 - 2014-09-25 18:35 - 00000443 _____ C:\Users\xristof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk

2015-10-25 03:26 - 2015-09-25 01:01 - 00000982 _____ C:\Users\Public\Desktop\DriversCloud.com - Start the detection.lnk

2015-10-25 03:26 - 2015-09-22 15:47 - 00001608 _____ C:\Users\xristof\Desktop\PES2015.exe - Shortcut.lnk

2015-10-25 03:26 - 2015-06-15 21:14 - 00001332 _____ C:\Users\Public\Desktop\Fallout New Vegas.lnk

2015-10-25 03:26 - 2015-06-10 19:10 - 00002033 _____ C:\Users\xristof\Desktop\Half-Life 2 Episode One.lnk

2015-10-25 03:26 - 2015-06-09 20:58 - 00002173 _____ C:\Users\Public\Desktop\Age of Empires III.lnk

2015-10-25 03:26 - 2015-06-09 20:35 - 00002034 _____ C:\Users\Public\Desktop\Presto! PVR.lnk

2015-10-25 03:26 - 2015-06-07 21:00 - 00001982 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk

2015-10-25 03:26 - 2015-05-20 17:46 - 00001002 _____ C:\Users\xristof\Desktop\TERA.lnk

2015-10-25 03:26 - 2015-05-20 13:01 - 00002162 _____ C:\Users\Public\Desktop\Driver Booster 2.lnk

2015-10-25 03:26 - 2015-03-11 21:49 - 00001082 _____ C:\Users\Public\Desktop\VLC media player.lnk

2015-10-25 03:26 - 2015-03-06 20:06 - 00001205 _____ C:\Users\xristof\Desktop\l2.exe - Shortcut.lnk

2015-10-25 03:26 - 2015-02-08 02:04 - 00001043 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk

2015-10-25 03:26 - 2014-12-15 21:35 - 00002083 _____ C:\Users\Public\Desktop\AMD OverDrive.lnk

2015-10-25 03:26 - 2014-12-15 21:33 - 00002048 _____ C:\Users\Public\Desktop\FL Studio 11.lnk

2015-10-25 03:26 - 2014-12-11 15:17 - 00002535 _____ C:\Users\Public\Desktop\Skype.lnk

2015-10-25 03:26 - 2014-12-11 11:21 - 00000570 _____ C:\Users\Public\Desktop\Fraps.lnk

2015-10-25 03:26 - 2014-12-11 10:23 - 00001793 _____ C:\Users\xristof\Desktop\FarCry4.exe - Shortcut.lnk

2015-10-25 03:26 - 2014-12-09 14:35 - 00001134 _____ C:\Users\Public\Desktop\WavePad Sound Editor.lnk

2015-10-25 03:26 - 2014-12-09 14:34 - 00001166 _____ C:\Users\Public\Desktop\RecordPad Sound Recorder.lnk

2015-10-25 03:26 - 2014-11-26 20:37 - 00001059 _____ C:\Users\Public\Desktop\ASUS GPU Tweak.lnk

2015-10-25 03:26 - 2014-11-26 19:50 - 00000975 _____ C:\Users\Public\Desktop\Steam.lnk

2015-10-25 03:26 - 2014-11-26 14:59 - 00001898 _____ C:\Users\Public\Desktop\Call of Duty® 2 Singleplayer.lnk

2015-10-25 03:26 - 2014-11-26 14:59 - 00001898 _____ C:\Users\Public\Desktop\Call of Duty® 2 Multiplayer.lnk

2015-10-25 03:26 - 2014-11-09 10:47 - 00000868 _____ C:\Users\Public\Desktop\PowerISO.lnk

2015-10-25 03:26 - 2014-10-12 15:32 - 00001049 _____ C:\Users\xristof\Desktop\speed.exe - Shortcut.lnk

2015-10-25 03:26 - 2014-09-25 23:11 - 00001127 _____ C:\Users\xristof\Desktop\MK LOL.lnk

2015-10-25 03:26 - 2014-09-25 19:18 - 00000806 _____ C:\Users\xristof\Desktop\lol.launcher - Shortcut.lnk

2015-10-25 02:57 - 2015-09-22 14:25 - 00000000 ____D C:\WINDOWS\system32\appmgmt

2015-10-25 02:36 - 2015-02-25 22:32 - 00000000 ____D C:\Users\xristof\AppData\Local\Opera Software

2015-10-25 02:36 - 2015-02-25 22:31 - 00000000 ____D C:\Program Files (x86)\Opera

2015-10-25 02:36 - 2014-11-26 14:59 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2015-10-25 02:34 - 2014-12-15 21:33 - 00000000 ____D C:\Users\xristof\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line

2015-10-25 02:34 - 2014-12-15 21:33 - 00000000 ____D C:\Program Files\Image-Line

2015-10-25 02:34 - 2014-12-15 21:31 - 00000000 ____D C:\Program Files (x86)\Image-Line

2015-10-25 02:21 - 2015-03-14 10:24 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys

2015-10-25 02:21 - 2015-03-14 10:24 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys

2015-10-25 02:21 - 2015-03-14 10:24 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys

2015-10-25 02:21 - 2015-03-14 10:24 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys

2015-10-25 02:21 - 2015-03-14 10:24 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys

2015-10-25 02:21 - 2015-03-14 10:24 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys

2015-10-25 02:21 - 2015-03-14 10:24 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys

2015-10-25 02:21 - 2015-03-14 10:24 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update

2015-10-25 02:20 - 2015-03-14 10:24 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys

2015-10-22 16:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF

2015-10-18 20:58 - 2014-11-26 14:57 - 00000000 ____D C:\Program Files (x86)\Activision

2015-10-18 16:32 - 2014-10-16 21:36 - 00003990 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1cfe9787f0d7542

2015-10-18 16:32 - 2014-10-16 21:36 - 00003754 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1cfe9787df78063

2015-10-18 16:32 - 2014-10-16 21:36 - 00001014 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfe9787df78063.job

2015-10-18 10:19 - 2014-09-25 23:43 - 00282043 _____ C:\WINDOWS\DirectX.log

2015-10-18 10:16 - 2015-09-17 14:01 - 00000000 ____D C:\Program Files (x86)\ATI Technologies

2015-10-18 10:16 - 2014-12-12 14:36 - 00000000 ____D C:\Users\xristof\AppData\Local\Glyph

2015-10-18 10:16 - 2014-12-12 14:36 - 00000000 ____D C:\Program Files (x86)\Glyph

2015-10-18 10:16 - 2014-12-03 15:39 - 00000000 ____D C:\ProgramData\Package Cache

2015-10-18 10:15 - 2014-02-14 18:39 - 00000000 ____D C:\AMD

2015-10-18 10:14 - 2015-09-17 13:58 - 39714304 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 22318592 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 11948704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 10094152 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 07929616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 01445224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 01193904 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 00926720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 00926720 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 00865792 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 00672768 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe

2015-10-18 10:14 - 2015-09-17 13:58 - 00246784 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe

2015-10-18 10:14 - 2015-09-17 13:58 - 00152056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 00141824 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 00133016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll

2015-10-18 10:14 - 2015-09-17 13:58 - 00100568 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll

2015-10-18 10:12 - 2014-12-12 14:36 - 00000000 ____D C:\ProgramData\Glyph

2015-10-18 10:09 - 2015-05-20 13:01 - 00000000 ____D C:\ProgramData\ProductData

2015-10-18 09:22 - 2014-12-02 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics

2015-10-17 19:08 - 2014-12-02 19:51 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics

2015-10-17 18:10 - 2014-09-25 18:54 - 00000000 ____D C:\Program Files (x86)\Google

2015-10-17 18:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy

2015-10-16 21:36 - 2014-10-17 15:06 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2015-10-16 08:09 - 2014-12-11 15:17 - 00000000 ___RD C:\Program Files (x86)\Skype

2015-10-12 13:52 - 2013-08-22 16:46 - 00336407 _____ C:\WINDOWS\setupact.log

2015-10-09 13:24 - 2015-09-25 16:18 - 00003622 _____ C:\WINDOWS\System32\Tasks\Smart Defender Cleaner

2015-10-03 13:26 - 2015-09-22 15:36 - 00000000 ____D C:\Program Files (x86)\Raptr

2015-10-01 15:33 - 2015-09-24 16:19 - 00047625 _____ C:\WINDOWS\system32\ScanResults.xml

2015-10-01 15:30 - 2015-09-24 16:14 - 00000464 _____ C:\WINDOWS\system32\ScannerSettings

2015-09-30 13:12 - 2014-12-11 11:21 - 00000000 ____D C:\Fraps

==================== Files in the root of some directories =======

2014-12-04 16:10 - 2015-08-27 19:06 - 0007605 _____ () C:\Users\xristof\AppData\Local\resmon.resmoncfg

2014-09-25 20:17 - 2014-09-25 20:17 - 2162557 _____ () C:\ProgramData\1411667705.bdinstall.bin

2015-02-23 20:12 - 2015-02-23 20:12 - 0260330 _____ () C:\ProgramData\1424714975.bdinstall.bin

2015-09-24 21:27 - 2015-09-24 21:27 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed

C:\WINDOWS\system32\wininit.exe => File is digitally signed

C:\WINDOWS\explorer.exe => File is digitally signed

C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed

C:\WINDOWS\system32\svchost.exe => File is digitally signed

C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed

C:\WINDOWS\system32\services.exe => File is digitally signed

C:\WINDOWS\system32\User32.dll => File is digitally signed

C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed

C:\WINDOWS\system32\userinit.exe => File is digitally signed

C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed

C:\WINDOWS\system32\rpcss.dll => File is digitally signed

C:\WINDOWS\system32\dnsapi.dll => File is digitally signed

C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed

C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-23 11:02

==================== End of FRST.txt ============================

xristoforos123 · October 26, 2015

Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-10-2015 02

Ran by xristof (2015-10-26 17:15:22)

Running from C:\Users\xristof\Desktop

Windows 8.1 Pro (X64) (2015-09-24 19:50:07)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-857740524-2325024319-2471581936-500 - Administrator - Disabled) => C:\Users\Administrator

Guest (S-1-5-21-857740524-2325024319-2471581936-501 - Limited - Disabled)

xristof (S-1-5-21-857740524-2325024319-2471581936-1000 - Administrator - Enabled) => C:\Users\xristof

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)

Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios)

Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden

Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios)

Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden

Age of Empires III (HKLM-x32\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)

Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden

Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)

AMD Catalyst Install Manager (HKLM\...\{C2956908-53A3-88FC-B795-B16508296FC4}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)

AMD OverDrive (HKLM-x32\...\{EEB605FD-C5F5-4946-90F3-D65C604A9187}) (Version: 4.3.1.0698 - Advanced Micro Devices, Inc.)

AMD VISION Engine Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)

ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.2.8.1 - ASUSTek COMPUTER INC.)

ASUS GPU Tweak (x32 Version: 2.2.8.1 - ASUSTek COMPUTER INC.) Hidden

Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)

Call of Duty® 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - Activision)

Call of Duty® 2 (x32 Version: 1.00.0000 - Activision) Hidden

Call of Duty® 2 Patch 1.3 (x32 Version: 1.3 - ) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.03 - NCH Software)

Driver Booster 2.4 (HKLM-x32\...\Driver Booster_is1) (Version: 2.4 - IObit)

DriversCloud.com (64 bits) (HKLM\...\{FB6EA5F2-707D-4655-8F59-564E51B3B431}) (Version: 8.0.1.0 - Cybelsoft)

Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)

Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks)

Fallout New Vegas (HKLM-x32\...\{219ED5A0-9CBF-4F3A-B927-37C9E5C5F14F}_is1) (Version: 1.4.0.525 - Bethesda Softworks)

Far Cry 4 (HKLM-x32\...\Far Cry 4_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)

FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)

FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )

Fraps (HKLM-x32\...\Fraps) (Version: - )

Gameforge Live 2.0.7 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.7 - Gameforge)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.80 - Google Inc.)

Google Update Helper (x32 Version: 1.3.28.17 - Google Inc.) Hidden

Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm)

Half-Life 2 Episode One (HKLM-x32\...\Half-Life 2 Episode One) (Version: - )

IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)

Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)

Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)

Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)

Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)

Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Lineage II (HKLM-x32\...\{076A6FD8-EE45-4A83-B3C9-C7C34E7CAFDD}) (Version: 90.7.2281 - NCSoft)

Lineage® II: Freya (High Five) (HKLM-x32\...\{21040472-F8DF-48A9-A093-2986C1495670}) (Version: 198 - NCsoft)

Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)

Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )

Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )

Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )

Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )

Microsoft .NET Framework 1.1 SP1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: - )

Microsoft .NET Framework 1.1 SP1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )

Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

MK LOL (HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\MK LOL) (Version: - )

Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Need for Speed Most Wanted (black edition) (HKLM-x32\...\Need for Speed Most Wanted (black edition)) (Version: 1.3 - Electronic Arts)

PowerISO (HKLM-x32\...\PowerISO) (Version: 6.1 - Power Software Ltd)

Presto! PVR (HKLM-x32\...\{BC0DCD27-345B-4013-A6E0-67EC92DF32C8}) (Version: 5.73.00 - NewSoft)

Pro Evolution Soccer 2015 (HKLM-x32\...\UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1) (Version: 1 - )

Pro Evolution Soccer 2016 version Pro Evolution Soccer 2016 (HKLM-x32\...\Pro Evolution Soccer 2016_is1) (Version: Pro Evolution Soccer 2016 - )

Raptr (HKLM-x32\...\Raptr) (Version: - )

REALTEK DTV USB DEVICE (HKLM-x32\...\{DDBB7C89-1A09-441E-AA0F-6AA465755C17}) (Version: 1.00.0000 - Realtek)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)

RecordPad Sound Recorder (HKLM-x32\...\Recordpad) (Version: 5.28 - NCH Software)

Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)

Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)

Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.38475 - TeamViewer)

TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)

WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.02 - NCH Software)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.0 - VideoLAN)

Xfire (remove only) (HKLM-x32\...\Xfire) (Version: - )

Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

18-10-2015 09:21:09 Installed DirectX

18-10-2015 10:13:38 Driver Booster : AMD Radeon HD 7700 Series

18-10-2015 16:31:52 Chrome Cleanup Tool

25-10-2015 02:19:45 avast! antivirus system restore point

25-10-2015 02:35:41 Removed USB Network Driver

25-10-2015 02:37:36 Chrome Cleanup Tool

25-10-2015 15:55:57 Zemana AntiMalware 2015-10-25 15:55:54

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2015-10-26 16:43 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0DE26489-879A-42D5-AB05-EDEE24FDCB62} - System32\Tasks\Smart Defender Cleaner => C:\Program Files (x86)\Smart Defender\SmartDefender.exe <==== ATTENTION

Task: {0EBB2A20-A08F-4899-BB7F-64E79AD6E61D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION

Task: {28DD8671-D4FC-4D2E-A8A8-6A27D74E143C} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION

Task: {368B4A87-28D4-44E2-B529-5CBC0FED2F9B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-10-16] (Adobe Systems Incorporated)

Task: {39F22AA6-B6D8-48D4-BC6F-CA3C6E66AB3E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-857740524-2325024319-2471581936-1000Core => C:\Users\xristof\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-10-21] (Facebook Inc.)

Task: {3A619F43-B3EA-4122-9CD6-7C12D860D000} - System32\Tasks\Driver Booster SkipUAC (xristof) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2015-07-06] (IObit)

Task: {581DE18F-F30E-4FD0-AC9C-02E74FA45101} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION

Task: {7D1643F1-E5DD-4FA3-A468-E0D58CFE97EF} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2015-07-06] (IObit)

Task: {8BC92EBE-466C-426E-A70A-46A5E8A7BA8A} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION

Task: {8F557325-627A-41C3-8F91-FB3EFC3E906A} - \Optimize Start Menu Cache Files-S-1-5-21-857740524-2325024319-2471581936-1001 -> No File <==== ATTENTION

Task: {94F668CA-E1A4-4ABC-B493-E7C8EE6D07E2} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe

Task: {964975CF-339F-416E-98FA-9802CAFDD5E3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-17] (Google Inc.)

Task: {9A1E0D6B-C205-4017-861E-4D550CB36C61} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-17] (Google Inc.)

Task: {B74EEE6E-F880-480D-9D88-D1C4725FE0E7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION

Task: {C67D7AE3-BC8B-40FD-9094-1A52E73E9612} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

Task: {CEEE3B4B-8A4E-496B-85FD-B44312926132} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2015-07-06] (IObit)

Task: {CF5FA0F0-0D7E-40F2-B5F9-5ED00EC36D84} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe

Task: {D1F0B9E1-FCF2-43D0-A9CC-73AEC5E9C050} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-25] (AVAST Software)

Task: {D3E1BE99-7C97-4061-A818-9419ACD35486} - System32\Tasks\GoogleUpdateTaskMachineCore1cfe9787df78063 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-17] (Google Inc.)

Task: {D54153D9-FFE0-4A95-AB60-013AAF6681E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION

Task: {DEDBA11F-6647-4BB8-802C-2CBE75681EFB} - System32\Tasks\GoogleUpdateTaskMachineUA1cfe9787f0d7542 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-17] (Google Inc.)

Task: {F5EC6470-86F0-4687-87E5-C1256035042C} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-857740524-2325024319-2471581936-1000UA => C:\Users\xristof\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-10-21] (Facebook Inc.)

Task: {FFC10614-9816-47D8-A775-77325AE44B6A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-857740524-2325024319-2471581936-1000Core.job => C:\Users\xristof\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-857740524-2325024319-2471581936-1000UA.job => C:\Users\xristof\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cfe9787df78063.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cfe9787f0d7542.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2014-09-19 02:35 - 2014-09-19 02:35 - 00137584 _____ () C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe

2012-01-17 11:24 - 2012-01-17 11:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe

2015-10-25 02:21 - 2015-10-25 02:21 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll

2015-10-25 02:21 - 2015-10-25 02:21 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll

2015-10-26 15:32 - 2015-10-26 15:32 - 02997616 _____ () C:\Program Files\AVAST Software\Avast\defs\15102601\algo.dll

2014-09-19 02:35 - 2014-09-19 02:35 - 00625000 _____ () C:\Program Files (x86)\AMD\OverDrive\Device.dll

2014-09-19 02:35 - 2014-09-19 02:35 - 03860848 _____ () C:\Program Files (x86)\AMD\OverDrive\Platform.dll

2014-09-19 02:35 - 2014-09-19 02:35 - 01587560 _____ () C:\Program Files (x86)\AMD\OverDrive\QtCore4.dll

2014-09-19 02:35 - 2014-09-19 02:35 - 06441320 _____ () C:\Program Files (x86)\AMD\OverDrive\QtGui4.dll

2014-09-19 02:35 - 2014-09-19 02:35 - 00362856 _____ () C:\Program Files (x86)\AMD\OverDrive\QtXml4.dll

2012-09-10 11:37 - 2012-09-10 11:37 - 00192512 _____ () C:\Program Files (x86)\ASUS\GPU Tweak\Vender.dll

2012-09-27 11:08 - 2012-09-27 11:08 - 00049152 _____ () C:\Program Files (x86)\ASUS\GPU Tweak\Exeio.dll

2015-10-25 02:21 - 2015-10-25 02:21 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd

2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd

2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd

2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd

2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd

2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll

2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd

2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd

2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd

2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll

2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd

2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd

2014-08-14 02:37 - 2014-08-14 02:37 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll

2014-08-14 02:37 - 2014-08-14 02:37 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll

2015-06-27 01:09 - 2015-06-27 01:09 - 00271872 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll

2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll

2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd

2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd

2015-04-01 14:01 - 2015-10-20 16:08 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libglesv2.dll

2015-04-01 14:01 - 2015-10-20 16:08 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libegl.dll

2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd

2014-06-18 02:56 - 2014-06-18 02:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd

2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll

2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll

2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll

2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll

2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll

2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll

2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll

2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll

2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll

2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll

2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll

2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll

2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll

2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\d3dcompiler_46.dll:BDU

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\20793299.sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\20793299.sys => ""="Driver"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\ma-config.com -> hxxp://ma-config.com

IE trusted site: HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\ma-config.com -> hxxps://ma-config.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\xristof\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\windows photo viewer wallpaper.jpg

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "Bdagent"

HKLM\...\StartupApproved\Run: => "MouseDriver"

HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"

HKLM\...\StartupApproved\Run32: => "StartCCC"

HKLM\...\StartupApproved\Run32: => "ChangeFilterMerit"

HKLM\...\StartupApproved\Run32: => "IR_SERVER"

HKLM\...\StartupApproved\Run32: => "Presto! PVR Monitor"

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\StartupApproved\StartupFolder: => "Rainmeter.lnk"

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\StartupApproved\Run: => "Bitdefender Wallet Application Agent"

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\StartupApproved\Run: => "Bitdefender Wallet Agent"

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\StartupApproved\Run: => "MK LOL"

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\StartupApproved\Run: => "msnmsgr"

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\StartupApproved\Run: => "Facebook Update"

HKU\S-1-5-21-857740524-2325024319-2471581936-1000\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139

FirewallRules: [uDP Query User{D65B0856-FE33-42F3-9760-76F541E5D619}C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe] => (Block) C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe

FirewallRules: [TCP Query User{57CD3034-C09B-4EDB-A991-700A83C94642}C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe] => (Block) C:\program files (x86)\r.g. mechanics\far cry 4\bin\ige_wpf64.exe

FirewallRules: [{F1C0985A-F4A7-481D-A854-505C5B29D377}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe

FirewallRules: [{B4ADE872-FC91-4DAD-8359-4F9CEEF842F3}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe

FirewallRules: [{835812AD-00C7-4E0A-B388-BA405A105D26}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe

FirewallRules: [{90B0470B-F5F9-4682-B1AF-03977D0D350D}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe

FirewallRules: [uDP Query User{B4DBF32B-DFF7-48EA-99FB-F4F394A9D9B6}C:\games\counter-strike global offensive\csgo.exe] => (Allow) C:\games\counter-strike global offensive\csgo.exe

FirewallRules: [TCP Query User{0CBC05A5-9628-4DBC-BF12-052BD6619765}C:\games\counter-strike global offensive\csgo.exe] => (Allow) C:\games\counter-strike global offensive\csgo.exe

FirewallRules: [{8989C8B9-1DB3-45D5-B59F-1E1E0F5B15B5}] => (Allow) %systemroot%\system32\alg.exe

FirewallRules: [uDP Query User{18A0B770-C7C3-41AA-A522-02876F51D7A4}C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe

FirewallRules: [TCP Query User{D78A550B-7020-4A32-9BF8-C47E926C355C}C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\gbr_eng\tera\tera-launcher.exe

FirewallRules: [{F58A8FA1-807A-47B0-84FE-3C61F534480A}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe

FirewallRules: [uDP Query User{6F968C41-6DF7-4B89-A978-6152938F416F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [TCP Query User{08670E33-47B0-4565-8B88-AC6E0DCD90D8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe

FirewallRules: [{C1708C4C-121C-4AAE-BB66-07BB6EDCA0CD}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe

FirewallRules: [{EB3EE04E-ECC9-42F5-8737-AD9FC4B2E1BD}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe

FirewallRules: [{563E8B70-1E52-42B7-AEC1-E09EA87B30F1}] => (Allow) LPort=48114

FirewallRules: [{07219EFF-4CC0-4FDF-8CE3-97DA98A396ED}] => (Allow) LPort=48113

FirewallRules: [{D57EBFC3-39BF-40A1-ADEC-E21086549F44}] => (Allow) C:\Program Files\360\360 Internet Security\safemon\360Tray.exe

FirewallRules: [{D8AD8617-F549-4CEE-BD93-2E8E0ACFFDE5}] => (Allow) C:\Program Files\360\360 Internet Security\safemon\360Tray.exe

FirewallRules: [{E7D1BA3B-C245-4EEE-998F-12DCF718C686}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{35523AF5-5012-445D-B164-7CE3F637FAAF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

FirewallRules: [{5423AB81-5E62-4B05-A260-5386816179EF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [{975F033D-A6AD-400E-A334-679BC60B64B3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe

FirewallRules: [uDP Query User{91CF2247-40F8-4CBA-87EC-528F22B9B718}C:\users\xristof\desktop\l2bot\l2tower.exe] => (Allow) C:\users\xristof\desktop\l2bot\l2tower.exe

FirewallRules: [TCP Query User{B00C207B-07DC-4477-A1C8-4A336EB08968}C:\users\xristof\desktop\l2bot\l2tower.exe] => (Allow) C:\users\xristof\desktop\l2bot\l2tower.exe

FirewallRules: [uDP Query User{D2CE079F-A914-4B48-92E0-DDD0AFCE68BE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe

FirewallRules: [TCP Query User{13D2A094-46A5-4958-AFE9-73783CC15F35}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe

FirewallRules: [uDP Query User{13EA76A6-05AD-4951-9869-7677AFBFD98A}C:\users\xristof\desktop\l2net\l2net.exe] => (Allow) C:\users\xristof\desktop\l2net\l2net.exe

FirewallRules: [TCP Query User{625F0A4C-7CBB-481C-AF61-260A2C7A6A3A}C:\users\xristof\desktop\l2net\l2net.exe] => (Allow) C:\users\xristof\desktop\l2net\l2net.exe

FirewallRules: [uDP Query User{CC46941F-4986-43EA-8044-0CA36D4D392E}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe

FirewallRules: [TCP Query User{AA19E6E6-AE5E-4C49-A0AA-924E9D32B3BB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe

FirewallRules: [uDP Query User{90FDF8EE-9982-4D48-A0E7-069891DEB805}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe

FirewallRules: [TCP Query User{5F05B3A0-AD44-4FFB-B3A0-97DC4620F0E0}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe

FirewallRules: [uDP Query User{08D2CCD6-4A7A-4D47-937A-2A0A9B1B9394}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe

FirewallRules: [TCP Query User{1353F429-5FEA-4E85-98BC-BFF12E0BCA06}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe

FirewallRules: [uDP Query User{295DFF94-E85A-4F84-BA71-1289092E4EAD}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe

FirewallRules: [TCP Query User{693714A9-B9B4-4FCD-AB8A-94F1195973A7}C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\r.g. mechanics\far cry 4\bin\farcry4.exe

FirewallRules: [uDP Query User{301CAF99-A465-425C-BF11-BCAD0763FD40}C:\program files (x86)\xfire\xfire.exe] => (Allow) C:\program files (x86)\xfire\xfire.exe

FirewallRules: [TCP Query User{EEB7F01D-6053-43C8-A974-DEC7415AB0DD}C:\program files (x86)\xfire\xfire.exe] => (Allow) C:\program files (x86)\xfire\xfire.exe

FirewallRules: [{3BF349D9-FB67-4995-952D-CACD68D83A8C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [{665DD5A5-B4C6-40E4-AC21-B3D16367BDD0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe

FirewallRules: [uDP Query User{276CE78C-A266-4DCD-8691-353C42175570}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe

FirewallRules: [TCP Query User{E5051A85-93BC-4403-98EB-1F060773167C}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Allow) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe

FirewallRules: [{E3E35792-2954-472E-896C-4AB1520AC63C}] => (Allow) C:\Users\xristof\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe

FirewallRules: [{ABFF2EA6-091E-461F-B3B1-2A34B471F11A}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

FirewallRules: [{EC9AF6A5-9E3E-4615-92D0-2C801EF39E04}] => (Allow) LPort=1900

FirewallRules: [{ADA3AD68-D636-4A57-B352-8DEE7F3FE8A3}] => (Allow) LPort=2869

FirewallRules: [{36FF9E88-00CD-4E95-9FE6-9E663F1BEE0D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{403E74B2-52D4-4DFC-B8D9-21D942480613}] => (Allow) C:\Users\xristof\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{DFBBDCB9-B24F-4F35-B7B7-FBA8D1223CFA}] => (Allow) C:\Users\xristof\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{26BABF44-A5DB-4921-9B93-98A40751E606}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe

FirewallRules: [{FB6B4992-F5C5-4560-9948-C92BEFD0AEF6}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe

FirewallRules: [TCP Query User{D4B732E6-39E8-4174-8B20-D71A4253806D}C:\program files (x86)\r.g. freedom\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files (x86)\r.g. freedom\pro evolution soccer 2016\pes2016.exe

FirewallRules: [uDP Query User{5FB55AC5-DD08-447A-8150-372F2C10DCA0}C:\program files (x86)\r.g. freedom\pro evolution soccer 2016\pes2016.exe] => (Allow) C:\program files (x86)\r.g. freedom\pro evolution soccer 2016\pes2016.exe

FirewallRules: [TCP Query User{C1379B13-45FC-4347-9C4C-D9F330BA3A0E}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe

FirewallRules: [uDP Query User{14E94B7D-2E73-4EF7-8200-BFF29AC25136}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe

FirewallRules: [{093FC3EC-27AF-4339-ACCD-37D621385DE8}] => (Allow) C:\Program Files (x86)\FreeFileViewer\FFVCheckForUpdates.exe

FirewallRules: [TCP Query User{E45FD2E2-5F63-4166-A378-0875065C0A8B}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe

FirewallRules: [uDP Query User{05F3CD00-835D-4C1D-B67C-483759E161FE}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe

FirewallRules: [{308268E8-D51F-4A31-96A2-48F23BF847CE}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe

FirewallRules: [{567ACD5E-EAE7-4752-98AC-92746E1823DD}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe

FirewallRules: [{2AA44844-4211-4CE6-AB04-2FD593AAEAD8}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe

FirewallRules: [{75B71B9D-56DF-47D7-B78A-D298160FB1CF}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe

FirewallRules: [{090767A3-DE96-4293-A0F0-DD8F73231480}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:

==================

Error: (10/26/2015 04:22:46 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: rsUI.exe, version: 1.1.0.0, time stamp: 0x561f0cac

Faulting module name: LSASRV.dll, version: 6.3.9600.16408, time stamp: 0x523d3751

Exception code: 0xc0000005

Fault offset: 0x000000000005bb06

Faulting process id: 0x890

Faulting application start time: 0xrsUI.exe0

Faulting application path: rsUI.exe1

Faulting module path: rsUI.exe2

Report Id: rsUI.exe3

Faulting package full name: rsUI.exe4

Faulting package-relative application ID: rsUI.exe5

Error: (10/26/2015 04:19:30 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: rsUI.exe, version: 1.1.0.0, time stamp: 0x561f0cac

Faulting module name: LSASRV.dll, version: 6.3.9600.16408, time stamp: 0x523d3751

Exception code: 0xc0000005

Fault offset: 0x000000000005bb06

Faulting process id: 0x890

Faulting application start time: 0xrsUI.exe0

Faulting application path: rsUI.exe1

Faulting module path: rsUI.exe2

Report Id: rsUI.exe3

Faulting package full name: rsUI.exe4

Faulting package-relative application ID: rsUI.exe5

Error: (10/26/2015 04:19:28 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: rsUI.exe, version: 1.1.0.0, time stamp: 0x561f0cac

Faulting module name: LSASRV.dll, version: 6.3.9600.16408, time stamp: 0x523d3751

Exception code: 0xc0000005

Fault offset: 0x000000000005bb06

Faulting process id: 0x890

Faulting application start time: 0xrsUI.exe0

Faulting application path: rsUI.exe1

Faulting module path: rsUI.exe2

Report Id: rsUI.exe3

Faulting package full name: rsUI.exe4

Faulting package-relative application ID: rsUI.exe5

Error: (10/26/2015 04:18:59 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: rsUI.exe, version: 1.1.0.0, time stamp: 0x561f0cac

Faulting module name: LSASRV.dll, version: 6.3.9600.16408, time stamp: 0x523d3751

Exception code: 0xc0000005

Fault offset: 0x000000000005bb06

Faulting process id: 0x890

Faulting application start time: 0xrsUI.exe0

Faulting application path: rsUI.exe1

Faulting module path: rsUI.exe2

Report Id: rsUI.exe3

Faulting package full name: rsUI.exe4

Faulting package-relative application ID: rsUI.exe5

Error: (10/26/2015 04:15:41 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: rsUI.exe, version: 1.1.0.0, time stamp: 0x561f0cac

Faulting module name: LSASRV.dll, version: 6.3.9600.16408, time stamp: 0x523d3751

Exception code: 0xc0000005

Fault offset: 0x000000000005bb06

Faulting process id: 0x890

Faulting application start time: 0xrsUI.exe0

Faulting application path: rsUI.exe1

Faulting module path: rsUI.exe2

Report Id: rsUI.exe3

Faulting package full name: rsUI.exe4

Faulting package-relative application ID: rsUI.exe5

Error: (10/26/2015 04:14:11 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Faulting application name: rsUI.exe, version: 1.1.0.0, time stamp: 0x561f0cac

Faulting module name: LSASRV.dll, version: 6.3.9600.16408, time stamp: 0x523d3751

Exception code: 0xc0000005

Fault offset: 0x000000000005bb06

Faulting process id: 0x890

Faulting application start time: 0xrsUI.exe0

Faulting application path: rsUI.exe1

Faulting module path: rsUI.exe2

Report Id: rsUI.exe3

Faulting package full name: rsUI.exe4

Faulting package-relative application ID: rsUI.exe5

Error: (10/26/2015 04:12:36 PM) (Source: Perflib) (EventID: 1008) (User: )

Description: aspnet_stateaspnet_counters.dll8

Error: (10/26/2015 04:12:36 PM) (Source: Perflib) (EventID: 1008) (User: )

Description: ASP.NET_4.0.30319aspnet_counters.dll8

Error: (10/26/2015 04:12:36 PM) (Source: Perflib) (EventID: 1017) (User: )

Description: ASP.NET_2.0.50727

Error: (10/26/2015 04:12:36 PM) (Source: Perflib) (EventID: 1021) (User: )

Description: ASP.NET_2.0.507278

System errors:

=============

Error: (10/26/2015 05:09:13 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/26/2015 05:09:13 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/26/2015 03:49:57 PM) (Source: Service Control Manager) (EventID: 7022) (User: )

Description: The Software Protection service hung on starting.

Error: (10/26/2015 03:45:53 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/26/2015 03:45:53 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/26/2015 03:32:11 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/26/2015 03:32:11 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/25/2015 03:37:31 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/25/2015 03:37:31 PM) (Source: ipnathlp) (EventID: 1233) (User: )

Description:

Error: (10/25/2015 03:36:40 PM) (Source: DCOM) (EventID: 10010) (User: XRISTOF-PC)

Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

CodeIntegrity:

===================================

Date: 2015-10-18 18:06:05.144

Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Elex-tech\YAC\iSafeSrvMon64.dll that did not meet the Windows signing level requirements.

Date: 2015-04-05 18:23:15.082