Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

I can't download anything [Closed]

Started by Klimbo , Nov 17 2013 07:00 PM

  • This topic is locked This topic is locked

#1
Klimbo
Posted 17 November 2013 - 07:00 PM

Klimbo

    New Member

  • Member
  • Pip
  • 1 posts
OTL logfile created on: 11/17/2013 4:53:34 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kai\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16736)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.95 Gb Total Physical Memory | 5.41 Gb Available Physical Memory | 68.03% Memory free
15.89 Gb Paging File | 12.51 Gb Available in Paging File | 78.73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 844.87 Gb Free Space | 90.71% Space Free | Partition Type: NTFS

Computer Name: KAI-PC | User Name: Kai | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/17 04:53:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kai\Downloads\OTL.exe
PRC - [2013/11/14 03:29:33 | 000,863,184 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013/11/08 12:46:18 | 001,028,384 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013/11/08 12:45:42 | 001,914,656 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/11/08 12:45:41 | 001,224,480 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
PRC - [2013/11/05 10:11:20 | 000,631,808 | ---- | M] () -- C:\Program Files (x86)\GorillaPrice\GorillaPrice.exe
PRC - [2013/11/05 06:01:58 | 000,070,144 | ---- | M] () -- C:\ProgramData\GorillaPrice\WatGorp.exe
PRC - [2013/10/30 11:25:56 | 000,566,696 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2013/10/30 11:25:54 | 001,820,584 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2013/10/23 03:02:32 | 000,414,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013/10/17 16:30:56 | 000,442,200 | ---- | M] (Razer Inc.) -- C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
PRC - [2013/10/09 10:58:16 | 003,275,136 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2013/09/05 06:04:00 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/05/20 20:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccsvchst.exe
PRC - [2012/07/19 09:53:16 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012/07/19 09:53:10 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012/07/05 13:23:34 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2012/05/20 08:26:26 | 000,291,648 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2011/12/08 16:53:32 | 008,364,288 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe
PRC - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe


========== Modules (No Company Name) ==========

MOD - [2013/11/14 03:29:31 | 000,399,312 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppgooglenaclpluginchrome.dll
MOD - [2013/11/14 03:29:30 | 013,582,800 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll
MOD - [2013/11/14 03:29:29 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll
MOD - [2013/11/14 03:28:37 | 000,702,416 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libglesv2.dll
MOD - [2013/11/14 03:28:36 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\libegl.dll
MOD - [2013/11/14 03:28:34 | 001,619,408 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ffmpegsumo.dll
MOD - [2013/11/10 11:08:52 | 001,218,560 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\6c422db78c17838c3eb9f9fcc01ca63f\System.Management.ni.dll
MOD - [2013/11/10 11:08:33 | 001,801,728 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\4d277a8481c203a35c58bd277a2e71df\System.Xaml.ni.dll
MOD - [2013/11/10 11:08:21 | 001,021,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\10ef07233e429503b5bc942aa6194fe8\System.Runtime.DurableInstancing.ni.dll
MOD - [2013/11/10 11:08:20 | 002,659,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\10519c5a16fab95707f40b55941647b5\System.Runtime.Serialization.ni.dll
MOD - [2013/11/10 11:08:20 | 000,143,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\af7d7a2e47e0ac57b4f0fe5e0c1cda9a\SMDiagnostics.ni.dll
MOD - [2013/11/10 11:08:18 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\f58dc6b661c4fb91c68945da9b701135\System.Xml.Linq.ni.dll
MOD - [2013/11/10 08:21:27 | 018,003,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\464a76a3fdc9ee7456cb4baaea3e503a\PresentationFramework.ni.dll
MOD - [2013/11/10 08:21:18 | 013,199,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\e40d894a772b2cff5ffd5a84ef20d2d4\System.Windows.Forms.ni.dll
MOD - [2013/11/10 08:21:18 | 011,451,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\b5b66869081b909d238fdea083cf3179\PresentationCore.ni.dll
MOD - [2013/11/10 08:21:14 | 007,070,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dac1208781fdd0b960afc12efff42944\System.Core.ni.dll
MOD - [2013/11/10 08:21:13 | 001,667,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\3a3fc0216674bdea0be809b305517c98\System.Drawing.ni.dll
MOD - [2013/11/10 08:21:12 | 005,628,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\884bcbd22130ebeb1211bc7bcc3910c9\System.Xml.ni.dll
MOD - [2013/11/10 08:21:12 | 000,595,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\228b114c79c5d9024bdb4cc580e32c09\PresentationFramework.Aero.ni.dll
MOD - [2013/11/10 08:21:11 | 003,858,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\0b37b2bafc33ef52282b9d7b217cabaf\WindowsBase.ni.dll
MOD - [2013/11/10 08:21:10 | 001,014,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\71d887ce964fb69b7f03c4fe7a3f28ff\System.Configuration.ni.dll
MOD - [2013/11/10 08:21:09 | 009,099,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\de853615c8224ba5d9aa9b76276c6d98\System.ni.dll
MOD - [2013/11/10 08:14:50 | 014,416,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\cf58670896c5313b9b52f026f4455a5d\mscorlib.ni.dll
MOD - [2013/10/30 11:25:56 | 001,123,240 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2013/10/24 09:45:32 | 000,691,200 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
MOD - [2013/10/23 12:07:26 | 020,625,832 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2013/06/14 15:49:12 | 001,100,800 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll
MOD - [2013/06/14 15:49:12 | 000,192,000 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll
MOD - [2013/06/14 15:49:12 | 000,124,416 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll
MOD - [2013/03/07 21:17:18 | 001,425,920 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll
MOD - [2013/03/07 21:17:18 | 000,188,416 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-52.dll
MOD - [2013/03/07 21:17:18 | 000,096,256 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\swresample-0.dll
MOD - [2013/03/07 21:17:05 | 000,336,896 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll
MOD - [2013/03/07 21:17:04 | 007,816,192 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll
MOD - [2012/05/29 22:51:08 | 000,699,280 | R--- | M] () -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\wincfi39.dll
MOD - [2011/12/08 16:53:32 | 008,364,288 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe
MOD - [2011/09/13 16:57:20 | 000,282,624 | ---- | M] () -- C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvcLib.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/11/08 12:47:21 | 015,125,280 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013/05/26 21:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012/06/19 19:10:34 | 000,634,632 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV:64bit: - [2010/04/06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV - [2013/11/10 01:04:21 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/11/08 12:45:42 | 001,914,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/11/05 10:11:20 | 000,631,808 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\GorillaPrice\GorillaPrice.exe -- (GorillaPrice)
SRV - [2013/11/05 06:01:58 | 000,070,144 | ---- | M] () [Auto | Running] -- C:\ProgramData\GorillaPrice\WatGorp.exe -- (WatGorp)
SRV - [2013/10/30 11:25:56 | 000,566,696 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/10/25 17:53:33 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/10/24 23:08:20 | 000,032,960 | ---- | M] (Razer, Inc.) [Auto | Running] -- C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe -- (RzOvlMon)
SRV - [2013/10/23 03:02:32 | 000,414,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013/10/09 10:58:16 | 003,275,136 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/09/05 10:34:30 | 000,171,680 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/09/05 06:04:00 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/05/20 20:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe -- (NIS)
SRV - [2012/07/19 09:53:16 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/19 09:53:10 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/05 13:23:34 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe -- (WSWNA3100)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/11/10 11:48:39 | 000,177,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2013/10/27 09:12:42 | 000,196,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2013/10/24 22:57:01 | 000,129,472 | ---- | M] (Razer, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RzDxgk.sys -- (RzDxgk)
DRV:64bit: - [2013/10/24 22:57:01 | 000,074,432 | ---- | M] (Razer, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\RzFilter.sys -- (RzFilter)
DRV:64bit: - [2013/10/16 18:27:10 | 000,143,016 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzudd.sys -- (rzudd)
DRV:64bit: - [2013/10/13 18:17:22 | 000,039,080 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzendpt.sys -- (rzendpt)
DRV:64bit: - [2013/09/27 15:01:44 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013/05/22 21:25:28 | 001,139,800 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symefa64.sys -- (SymEFA)
DRV:64bit: - [2013/05/20 21:02:00 | 000,493,656 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symds64.sys -- (SymDS)
DRV:64bit: - [2013/05/15 21:02:14 | 000,796,760 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2013/04/24 16:43:56 | 000,433,752 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symnets.sys -- (SymNetS)
DRV:64bit: - [2013/04/15 18:41:14 | 000,169,048 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1404000.028\ccsetx64.sys -- (ccSet_NIS)
DRV:64bit: - [2013/03/04 17:40:08 | 000,224,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1404000.028\ironx64.sys -- (SymIRON)
DRV:64bit: - [2013/03/04 17:21:35 | 000,036,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtspx64.sys -- (SRTSPX)
DRV:64bit: - [2012/10/25 09:01:20 | 000,022,680 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2012/08/23 06:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 06:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/02 15:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/05/20 08:25:32 | 000,789,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012/05/20 08:25:32 | 000,357,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012/05/20 08:25:32 | 000,019,264 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/12 17:42:00 | 001,256,192 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bcmwlhigh664.sys -- (BCMH43XX)
DRV:64bit: - [2011/09/29 01:30:34 | 000,646,248 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/07/22 10:33:48 | 000,025,056 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV:64bit: - [2011/03/10 22:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 22:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 05:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/02/03 11:21:56 | 000,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2013/11/10 00:22:01 | 002,099,288 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20131116.006\ex64.sys -- (NAVEX15)
DRV - [2013/11/10 00:22:01 | 000,484,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2013/11/10 00:22:01 | 000,140,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2013/11/10 00:22:01 | 000,126,040 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20131116.006\eng64.sys -- (NAVENG)
DRV - [2013/11/09 06:32:12 | 000,025,640 | ---- | M] (Windows ® Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2013/11/08 17:15:44 | 000,521,816 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20131115.001\IDSviA64.sys -- (IDSVia64)
DRV - [2013/11/01 23:45:56 | 001,524,824 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20131101.003\BHDrvx64.sys -- (BHDrvx64)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearc...r=397173908&ir=
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://start.mysearc...r=397173908&ir=
IE:64bit: - HKLM\..\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearc...r=397173908&ir=
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 46 42 7F C3 F1 DD CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...1I7NDKB_enUS561
IE - HKCU\..\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}: "URL" = http://www.google.co...1I7NDKB_enUS561
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8080

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Mysearchdial"
FF - prefs.js..extensions.enabledAddons: %7B635abd67-4fe9-1b23-4f01-e679fa7484c1%7D:3.1.0.20130818030116
FF - prefs.js..extensions.enabledAddons: %7Bad9a41d2-9a49-4fa6-a79e-71a0785364c8%7D:9.5.3
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0


FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\IPSFF [2013/11/10 00:22:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\coFFPlgn\ [2013/11/16 20:56:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013/11/16 07:04:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kai\AppData\Roaming\Mozilla\Extensions
[2013/11/17 03:59:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\dkk7uagh.default\extensions
[2013/11/16 07:04:25 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\dkk7uagh.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2013/11/17 03:59:47 | 000,000,000 | ---D | M] ("MySearchDial NewTab") -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\dkk7uagh.default\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
[2013/11/17 03:59:48 | 000,002,389 | ---- | M] () -- C:\Users\Kai\AppData\Roaming\Mozilla\Firefox\Profiles\dkk7uagh.default\searchplugins\Mysearchdial.xml
[2013/11/16 07:02:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/11/16 07:02:36 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/11/16 07:02:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions
[2013/11/16 07:02:34 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - Extension: Google Drive = C:\Users\Kai\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Kai\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Kai\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google Wallet = C:\Users\Kai\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Gmail = C:\Users\Kai\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 13:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [Razer Synapse] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc.)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
O4:64bit: - HKLM..\RunOnce: [1117_444119814177] C:\Users\Kai\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp_r.bat ()
O4 - HKLM..\RunOnce: [Del23816267] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O4 - HKCU..\RunOnce: [Del23816267] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{23E6075E-0B4F-4251-8A73-8DC7441B3003}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/17 04:13:30 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\LogMeIn Rescue Applet
[2013/11/17 03:31:18 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\mysearchdial
[2013/11/16 07:04:18 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Mozilla
[2013/11/16 07:04:18 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Mozilla
[2013/11/16 07:02:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013/11/16 07:02:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013/11/16 07:02:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/11/13 05:51:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
[2013/11/13 05:04:01 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\NVIDIA Corporation
[2013/11/12 10:32:51 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Open Download Manager
[2013/11/12 10:31:00 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2013/11/12 10:30:56 | 000,000,000 | ---D | C] -- C:\ProgramData\GorillaPrice
[2013/11/12 10:30:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GorillaPrice
[2013/11/12 10:28:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenDownloaderManager
[2013/11/12 09:18:56 | 000,000,000 | ---D | C] -- C:\Users\Kai\Documents\WB Games
[2013/11/12 09:18:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD
[2013/11/12 09:18:47 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Downloaded Installations
[2013/11/11 09:59:40 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2013/11/10 20:30:51 | 000,074,432 | ---- | C] (Razer, Inc.) -- C:\Windows\SysNative\drivers\RzFilter.sys
[2013/11/10 20:30:50 | 000,129,472 | ---- | C] (Razer, Inc.) -- C:\Windows\SysNative\drivers\RzDxgk.sys
[2013/11/10 20:30:36 | 000,000,000 | ---D | C] -- C:\Windows\Razer Core
[2013/11/10 20:30:27 | 000,000,000 | ---D | C] -- C:\fa107bc49f7d511894b5bb
[2013/11/10 20:29:21 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Programs
[2013/11/10 20:23:32 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\CrashDumps
[2013/11/10 20:21:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
[2013/11/10 20:21:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Razer
[2013/11/10 20:19:47 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Razer
[2013/11/10 20:19:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Razer
[2013/11/10 20:13:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2013/11/10 20:13:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2013/11/10 20:13:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2013/11/10 20:11:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2013/11/10 20:10:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2013/11/10 20:08:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2013/11/10 20:08:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft ActiveSync
[2013/11/10 20:08:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2013/11/10 20:07:47 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2013/11/10 20:07:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2013/11/10 20:01:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2013/11/10 20:01:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2013/11/10 20:01:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2013/11/10 18:43:20 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\LolClient
[2013/11/10 10:09:50 | 001,139,800 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symefa64.sys
[2013/11/10 10:09:50 | 000,796,760 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtsp64.sys
[2013/11/10 10:09:50 | 000,493,656 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symds64.sys
[2013/11/10 10:09:50 | 000,433,752 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symnets.sys
[2013/11/10 10:09:50 | 000,224,416 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\ironx64.sys
[2013/11/10 10:09:50 | 000,169,048 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\ccsetx64.sys
[2013/11/10 10:09:50 | 000,036,952 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtspx64.sys
[2013/11/10 10:09:50 | 000,023,448 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symelam.sys
[2013/11/10 10:09:44 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NISx64\1404000.028
[2013/11/10 10:06:06 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/11/10 09:58:40 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2013/11/10 09:58:16 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013/11/10 09:57:44 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2013/11/10 09:10:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2013/11/10 09:09:54 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\OBS
[2013/11/10 09:09:53 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2013/11/10 09:09:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2013/11/10 09:07:00 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Skype
[2013/11/10 09:06:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/11/10 09:06:39 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2013/11/10 09:06:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/11/10 09:06:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/11/10 09:02:14 | 000,000,000 | ---D | C] -- C:\Riot Games
[2013/11/10 09:02:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
[2013/11/10 08:59:20 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Macromedia
[2013/11/10 08:59:19 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\SplitMediaLabs
[2013/11/10 08:58:45 | 000,000,000 | ---D | C] -- C:\ProgramData\SplitMediaLabs
[2013/11/10 08:58:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SplitMediaLabs
[2013/11/10 08:58:01 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\SplitMediaLabs
[2013/11/10 08:54:07 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2013/11/10 08:11:04 | 000,000,000 | ---D | C] -- C:\ProgramData\APN
[2013/11/10 08:09:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013/11/10 08:09:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013/11/10 08:09:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/11/10 08:08:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013/11/10 08:08:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013/11/10 08:08:13 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2013/11/10 07:32:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2013/11/10 07:32:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2013/11/10 07:30:41 | 000,116,224 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2013/11/10 07:30:37 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2013/11/10 07:15:20 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Blizzard
[2013/11/10 07:11:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2013/11/10 07:11:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2013/11/10 06:43:38 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\PMB Files
[2013/11/10 06:43:36 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2013/11/10 05:51:01 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\WindowsUpdate
[2013/11/10 01:33:16 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\ElevatedDiagnostics
[2013/11/10 01:28:48 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Adobe
[2013/11/10 01:28:34 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Google
[2013/11/10 01:20:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/11/10 01:04:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013/11/10 01:04:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2013/11/10 01:04:33 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Google
[2013/11/10 01:04:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2013/11/10 01:04:20 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2013/11/10 01:04:18 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2013/11/10 01:04:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
[2013/11/10 01:04:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hearthstone
[2013/11/10 01:01:23 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Adobe
[2013/11/10 01:00:30 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\NVIDIA
[2013/11/10 01:00:28 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Blizzard Entertainment
[2013/11/10 01:00:22 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Battle.net
[2013/11/10 01:00:22 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Battle.net
[2013/11/10 01:00:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2013/11/10 01:00:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2013/11/10 01:00:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
[2013/11/10 01:00:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battle.net
[2013/11/10 00:55:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2013/11/10 00:54:40 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2013/11/10 00:54:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2013/11/10 00:53:40 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Riot Games
[2013/11/10 00:22:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2013/11/10 00:19:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2013/11/09 23:45:35 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\NVIDIA
[2013/11/09 23:40:03 | 000,281,104 | ---- | C] (CACE Technologies, Inc.) -- C:\Windows\SysWow64\wpcap.dll
[2013/11/09 23:40:03 | 000,096,784 | ---- | C] (CACE Technologies, Inc.) -- C:\Windows\SysWow64\Packet.dll
[2013/11/09 23:40:03 | 000,047,632 | ---- | C] (CACE Technologies, Inc.) -- C:\Windows\SysNative\drivers\npf.sys
[2013/11/09 23:40:02 | 000,025,056 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\Windows\SysNative\drivers\SCMNdisP.sys
[2013/11/09 23:40:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA3100 Genie
[2013/11/09 23:40:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NETGEAR
[2013/11/09 06:50:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2013/11/09 06:49:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2013/11/09 06:47:34 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2013/11/09 06:47:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2013/11/09 06:46:53 | 000,061,216 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2013/11/09 06:46:53 | 000,053,024 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2013/11/09 06:46:50 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2013/11/09 06:46:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2013/11/09 06:44:53 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2013/11/09 06:31:29 | 000,000,000 | ---D | C] -- C:\Program Files\GIGABYTE
[2013/11/09 06:31:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIGABYTE
[2013/11/09 06:30:24 | 000,646,248 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2013/11/09 06:29:22 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2013/11/09 06:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2013/11/09 06:29:10 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2013/11/09 06:29:10 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2013/11/09 06:29:10 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2013/11/09 06:29:10 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2013/11/09 06:29:10 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2013/11/09 06:29:08 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2013/11/09 06:29:08 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2013/11/09 06:29:08 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2013/11/09 06:29:08 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2013/11/09 06:29:07 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2013/11/09 06:29:07 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2013/11/09 06:29:03 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2013/11/09 06:29:03 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2013/11/09 06:29:03 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2013/11/09 06:28:59 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2013/11/09 06:28:57 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2013/11/09 06:28:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2013/11/09 06:28:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2013/11/09 06:28:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2013/11/09 06:28:48 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2013/11/09 06:28:21 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2013/11/09 06:28:20 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2013/11/09 06:28:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
[2013/11/09 06:28:14 | 000,000,000 | ---D | C] -- C:\Intel
[2013/11/09 06:28:05 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2013/11/09 06:28:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2013/11/09 06:28:05 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\InstallShield
[2013/11/09 06:28:02 | 000,177,312 | ---- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2013/11/09 06:28:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2013/11/09 06:28:02 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2013/11/09 06:27:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NISx64
[2013/11/09 06:27:28 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
[2013/11/09 06:27:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Internet Security
[2013/11/09 06:27:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2013/11/09 06:26:54 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2013/11/09 06:26:31 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2013/11/09 06:26:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2013/11/09 06:18:01 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Diagnostics
[2013/11/09 06:09:48 | 000,000,000 | R--D | C] -- C:\Users\Kai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013/11/09 06:09:48 | 000,000,000 | R--D | C] -- C:\Users\Kai\Searches
[2013/11/09 06:09:48 | 000,000,000 | R--D | C] -- C:\Users\Kai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013/11/09 06:09:48 | 000,000,000 | -H-D | C] -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2013/11/09 06:09:41 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Identities
[2013/11/09 06:09:40 | 000,000,000 | R--D | C] -- C:\Users\Kai\Contacts
[2013/11/09 06:09:39 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\VirtualStore
[2013/11/09 06:07:35 | 000,000,000 | --SD | C] -- C:\Users\Kai\AppData\Roaming\Microsoft
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Videos
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Saved Games
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Pictures
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Music
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Links
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Favorites
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Downloads
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Documents
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\Desktop
[2013/11/09 06:07:35 | 000,000,000 | R--D | C] -- C:\Users\Kai\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\AppData\Local\Temporary Internet Files
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Templates
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Start Menu
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\SendTo
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Recent
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\PrintHood
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\NetHood
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Documents\My Videos
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Documents\My Pictures
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Documents\My Music
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\My Documents
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Local Settings
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\AppData\Local\History
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Cookies
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\Application Data
[2013/11/09 06:07:35 | 000,000,000 | -HSD | C] -- C:\Users\Kai\AppData\Local\Application Data
[2013/11/09 06:07:35 | 000,000,000 | -H-D | C] -- C:\Users\Kai\AppData
[2013/11/09 06:07:35 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Temp
[2013/11/09 06:07:35 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Local\Microsoft
[2013/11/09 06:07:35 | 000,000,000 | ---D | C] -- C:\Users\Kai\AppData\Roaming\Media Center Programs
[2013/11/09 06:07:31 | 000,000,000 | -HSD | C] -- C:\Recovery
[2013/10/23 00:37:20 | 000,823,296 | ---- | C] (Razer Inc) -- C:\Windows\SysWow64\rzdevicedll.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/11/17 04:49:59 | 000,000,134 | ---- | M] () -- C:\Users\Kai\Desktop\Internet Explorer Troubleshooting.url
[2013/11/17 04:39:39 | 000,002,283 | ---- | M] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/11/17 04:39:39 | 000,002,259 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/17 04:31:00 | 000,000,284 | ---- | M] () -- C:\Windows\tasks\MySearchDial.job
[2013/11/17 04:21:00 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/17 04:20:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/17 03:31:18 | 000,351,124 | ---- | M] () -- C:\Users\Kai\AppData\Local\mysearchdial-speeddial.crx
[2013/11/17 02:21:01 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/17 02:20:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/16 21:02:16 | 000,016,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/11/16 21:02:16 | 000,016,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/11/16 21:00:40 | 000,778,834 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/11/16 21:00:40 | 000,660,068 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/11/16 21:00:40 | 000,120,996 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/11/16 20:54:46 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2013/11/16 20:54:38 | 2104,807,423 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/16 07:02:47 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/11/16 05:17:41 | 002,104,915 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\Cat.DB
[2013/11/13 05:51:12 | 000,001,133 | ---- | M] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\XSplit Broadcaster.lnk
[2013/11/13 05:51:12 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\XSplit Broadcaster.lnk
[2013/11/12 03:20:00 | 000,349,320 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/11/12 03:02:41 | 000,001,135 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Works.lnk
[2013/11/11 10:39:33 | 000,000,222 | ---- | M] () -- C:\Users\Kai\Desktop\Batman Arkham City GOTY.url
[2013/11/11 10:00:01 | 000,000,220 | ---- | M] () -- C:\Users\Kai\Desktop\Garry's Mod.url
[2013/11/11 09:59:40 | 000,000,219 | ---- | M] () -- C:\Users\Kai\Desktop\Counter-Strike Source.url
[2013/11/10 20:33:05 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_rzendpt_01009.Wdf
[2013/11/10 20:32:41 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_rzudd_01009.Wdf
[2013/11/10 20:30:54 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_RzFilter_01009.Wdf
[2013/11/10 20:13:51 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2013/11/10 20:09:30 | 000,000,376 | ---- | M] () -- C:\Windows\ODBC.INI
[2013/11/10 20:08:44 | 000,002,675 | ---- | M] () -- C:\Users\Kai\Desktop\Microsoft Office Word 2003.lnk
[2013/11/10 20:01:24 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/11/10 15:49:19 | 000,002,501 | ---- | M] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2013/11/10 11:48:39 | 000,177,312 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2013/11/10 11:48:39 | 000,007,631 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2013/11/10 11:48:39 | 000,000,854 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2013/11/10 10:01:42 | 000,041,962 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2013/11/10 10:01:42 | 000,041,962 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013/11/10 09:06:41 | 000,002,697 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/11/10 09:02:16 | 000,001,613 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013/11/10 08:25:18 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/11/10 08:25:18 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/11/10 08:17:26 | 000,772,558 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/11/10 05:58:23 | 000,001,441 | ---- | M] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/11/10 01:04:06 | 000,000,900 | ---- | M] () -- C:\Users\Public\Desktop\Hearthstone.lnk
[2013/11/09 23:41:47 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_bcmwlhigh664_01009.Wdf
[2013/11/09 23:40:01 | 000,000,912 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk
[2013/11/09 23:40:01 | 000,000,894 | ---- | M] () -- C:\Users\Public\Desktop\NETGEAR WNA3100 Genie.lnk
[2013/11/09 06:50:30 | 000,001,351 | ---- | M] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2013/11/09 06:31:25 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
[2013/11/09 06:23:07 | 000,000,010 | ---- | M] () -- C:\Windows\GSetup.ini
[2013/10/27 09:12:54 | 000,061,216 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2013/10/27 09:12:54 | 000,053,024 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2013/10/27 09:12:44 | 000,023,287 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2013/10/24 22:57:01 | 000,129,472 | ---- | M] (Razer, Inc.) -- C:\Windows\SysNative\drivers\RzDxgk.sys
[2013/10/24 22:57:01 | 000,074,432 | ---- | M] (Razer, Inc.) -- C:\Windows\SysNative\drivers\RzFilter.sys
[2013/10/23 00:37:20 | 000,823,296 | ---- | M] (Razer Inc) -- C:\Windows\SysWow64\rzdevicedll.dll
[2013/10/23 00:20:03 | 003,426,956 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/11/17 04:36:40 | 000,000,134 | ---- | C] () -- C:\Users\Kai\Desktop\Internet Explorer Troubleshooting.url
[2013/11/17 03:31:25 | 000,000,284 | ---- | C] () -- C:\Windows\tasks\MySearchDial.job
[2013/11/17 03:31:22 | 000,351,124 | ---- | C] () -- C:\Users\Kai\AppData\Local\mysearchdial-speeddial.crx
[2013/11/16 07:02:47 | 000,001,151 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/11/16 07:02:45 | 000,001,163 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013/11/13 05:51:12 | 000,001,133 | ---- | C] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\XSplit Broadcaster.lnk
[2013/11/13 05:51:10 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\XSplit Broadcaster.lnk
[2013/11/11 10:39:33 | 000,000,222 | ---- | C] () -- C:\Users\Kai\Desktop\Batman Arkham City GOTY.url
[2013/11/11 10:00:01 | 000,000,220 | ---- | C] () -- C:\Users\Kai\Desktop\Garry's Mod.url
[2013/11/11 09:59:40 | 000,000,219 | ---- | C] () -- C:\Users\Kai\Desktop\Counter-Strike Source.url
[2013/11/10 20:33:05 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_rzendpt_01009.Wdf
[2013/11/10 20:32:41 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_rzudd_01009.Wdf
[2013/11/10 20:30:54 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_RzFilter_01009.Wdf
[2013/11/10 20:13:51 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2013/11/10 20:12:18 | 000,002,557 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Viewer 2007.lnk
[2013/11/10 20:11:55 | 000,001,147 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Task Launcher.lnk
[2013/11/10 20:11:55 | 000,001,135 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Works.lnk
[2013/11/10 20:09:30 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2013/11/10 20:08:44 | 000,002,675 | ---- | C] () -- C:\Users\Kai\Desktop\Microsoft Office Word 2003.lnk
[2013/11/10 20:01:23 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013/11/10 20:01:22 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013/11/10 15:49:22 | 002,104,915 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\Cat.DB
[2013/11/10 10:09:50 | 000,009,670 | R--- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symelam64.cat
[2013/11/10 10:09:50 | 000,008,067 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symnet64.cat
[2013/11/10 10:09:50 | 000,007,667 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\ccsetx64.cat
[2013/11/10 10:09:50 | 000,007,593 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\iron.cat
[2013/11/10 10:09:50 | 000,007,589 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtspx64.cat
[2013/11/10 10:09:50 | 000,007,587 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symefa64.cat
[2013/11/10 10:09:50 | 000,003,434 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symefa.inf
[2013/11/10 10:09:50 | 000,002,852 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symds.inf
[2013/11/10 10:09:50 | 000,001,440 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symnet.inf
[2013/11/10 10:09:50 | 000,001,437 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtsp64.inf
[2013/11/10 10:09:50 | 000,001,420 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtspx64.inf
[2013/11/10 10:09:50 | 000,000,996 | R--- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symelam.inf
[2013/11/10 10:09:50 | 000,000,853 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\ccsetx64.inf
[2013/11/10 10:09:50 | 000,000,767 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\iron.inf
[2013/11/10 10:09:44 | 000,014,818 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symvtcer.dat
[2013/11/10 10:09:44 | 000,008,067 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\srtsp64.cat
[2013/11/10 10:09:44 | 000,008,063 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\symds64.cat
[2013/11/10 10:09:44 | 000,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NISx64\1404000.028\isolate.ini
[2013/11/10 10:01:35 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013/11/10 10:01:32 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013/11/10 09:58:16 | 2104,807,423 | -HS- | C] () -- C:\hiberfil.sys
[2013/11/10 09:06:40 | 000,002,697 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2013/11/10 09:02:15 | 000,001,613 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2013/11/10 08:25:18 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/11/10 08:25:18 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013/11/10 07:31:01 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2013/11/10 07:30:34 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2013/11/10 07:30:31 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2013/11/10 07:30:31 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2013/11/10 07:30:28 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2013/11/10 06:41:34 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013/11/10 01:20:08 | 000,002,283 | ---- | C] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013/11/10 01:20:08 | 000,002,259 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/10 01:04:36 | 000,000,892 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/10 01:04:35 | 000,000,888 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/10 01:04:24 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/10 01:04:06 | 000,000,900 | ---- | C] () -- C:\Users\Public\Desktop\Hearthstone.lnk
[2013/11/10 00:26:26 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013/11/09 23:41:47 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_bcmwlhigh664_01009.Wdf
[2013/11/09 23:40:03 | 000,053,299 | ---- | C] () -- C:\Windows\SysWow64\pthreadVC.dll
[2013/11/09 23:40:01 | 000,000,912 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk
[2013/11/09 23:40:01 | 000,000,894 | ---- | C] () -- C:\Users\Public\Desktop\NETGEAR WNA3100 Genie.lnk
[2013/11/09 06:58:46 | 000,001,441 | ---- | C] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/11/09 06:50:30 | 000,001,351 | ---- | C] () -- C:\Users\Public\Desktop\GeForce Experience.lnk
[2013/11/09 06:49:59 | 000,772,558 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/11/09 06:47:03 | 003,426,956 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2013/11/09 06:46:39 | 000,023,287 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2013/11/09 06:35:52 | 000,065,536 | ---- | C] () -- C:\Windows\SysNative\Ikeext.etl
[2013/11/09 06:31:29 | 000,031,272 | ---- | C] () -- C:\Windows\SysNative\AppleChargerSrv.exe
[2013/11/09 06:31:29 | 000,022,680 | ---- | C] () -- C:\Windows\SysNative\drivers\AppleCharger.sys
[2013/11/09 06:31:25 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
[2013/11/09 06:30:12 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2013/11/09 06:29:07 | 000,293,889 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2013/11/09 06:28:02 | 000,007,631 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2013/11/09 06:28:02 | 000,000,854 | ---- | C] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2013/11/09 06:27:58 | 000,002,501 | ---- | C] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2013/11/09 06:23:07 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2013/11/09 06:07:35 | 000,000,290 | ---- | C] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013/11/09 06:07:35 | 000,000,272 | ---- | C] () -- C:\Users\Kai\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012/06/19 18:52:42 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/25 18:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/25 17:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 04:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/11/10 01:02:54 | 000,000,000 | ---D | M] -- C:\Users\Kai\AppData\Roaming\Battle.net
[2013/11/10 18:43:20 | 000,000,000 | ---D | M] -- C:\Users\Kai\AppData\Roaming\LolClient
[2013/11/17 03:34:07 | 000,000,000 | ---D | M] -- C:\Users\Kai\AppData\Roaming\mysearchdial
[2013/11/10 09:09:54 | 000,000,000 | ---D | M] -- C:\Users\Kai\AppData\Roaming\OBS
[2013/11/13 09:34:42 | 000,000,000 | ---D | M] -- C:\Users\Kai\AppData\Roaming\Open Download Manager
[2013/11/10 06:43:25 | 000,000,000 | ---D | M] -- C:\Users\Kai\AppData\Roaming\Riot Games
[2013/11/10 08:58:01 | 000,000,000 | ---D | M] -- C:\Users\Kai\AppData\Roaming\SplitMediaLabs

========== Purity Check ==========



< End of report >
  • 0

Advertisements

#2
Satchfan
Posted 18 November 2013 - 03:24 AM

Satchfan

    Trusted Helper

  • Malware Removal
  • 624 posts
Hello Klimbo and welcome to GeeksToGo .

My name is Satchfan and I would be glad to help you with your computer problem.

Please read the following guidelines which will help to make cleaning your machine easier:

  • please follow all instructions in the order posted
  • please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear
  • all logs/reports, etc. must be posted in Notepad. Please ensure that word wrap is unchecked. In Notepad click Format, uncheck Word wrap if it is checked
  • if you don't understand something, please don't hesitate to ask for clarification before proceeding
  • the fixes are specific to your problem and should only be used for this issue on this machine.
  • please reply within 3 days. If you do not reply within this period I will post a reminder but topics with no reply in 4 days will be closed!
IMPORTANT:

Please DO NOT install/uninstall any programs unless asked to.
Please DO NOT run any scans other than those requested

===================================================

Download and run AdwCleaner

Download AdwCleaner from here and save it to your desktop.

  • run AdwCleaner
  • when it has finished, select Clean
  • if it asks to reboot, allow the reboot
  • on reboot a log will be produced; please attach the content of the log to your next reply.
===================================================

Download and run Junkware Removal Tool

Posted Image Please download Junkware Removal Tool to your desktop.

  • shut down your protection software now to avoid potential conflicts.
  • run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator"
  • the tool will open and start scanning your system
  • please be patient as this can take a while to complete depending on your system's specifications
  • on completion, a log (JRT.txt) is saved to your desktop and will automatically open
  • post the contents of JRT.txt into your next message.

Please run OTL again after you’ve completed the above.

Logs to include in the next post:

AdwCleaner log
JRT.txt
New OTL log

Please also include Extras.txt which was produced with the first run of OTL. It can be found at C:\Users\Kai\Downloads

Thanks

Satchfan
  • 0

#3
Satchfan
Posted 21 November 2013 - 05:22 AM

Satchfan

    Trusted Helper

  • Malware Removal
  • 624 posts
Hi

It has been a few days since I replied to your request for help with your computer problems.

Please let me know if you are having problems and still need help.

Thanks

Satchfan
  • 0

#4
Satchfan
Posted 22 November 2013 - 05:09 PM

Satchfan

    Trusted Helper

  • Malware Removal
  • 624 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP