Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

co.puter freezes before I can even post here... forget any removal sof


  • This topic is locked This topic is locked

#1
Meboubou

Meboubou

    Member

  • Member
  • PipPip
  • 63 posts
I'm currently typing from my phone after 6 attempts of doing this from my PC... I've been having issues and suspected spyware so I ran a super anti spyware quick scan. At the very end when it was removing found items, my computer froze and has been ususable for more than 5 minutes since.

Currently on my PC are super anti spyware. Malwarbytes, OTL, AVG. All were updated about an hour ago. I seem to be able to run my computer on safe mode but I'm afraid to run any scans from there without prior consultation with you guys :-)

**Edit**

I managed to keep my computer open on safe mode with networking long enough to think it's safe.... Running malwarebytes as I type this (I just hope the stability keeps up)

Edited by Meboubou, 18 December 2013 - 01:07 PM.

  • 0

Advertisements


#2
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Though safemode is a lot more stable and permits me to use my PC 'normally'. I am unable to perform a scan without my computer freezing.
  • 0

#3
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,017 posts
Hello Meboubou,

I am unable to perform a scan without my computer freezing.


See if you can run this tool:

If not, tell me, and we will take another approach.

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called (FRST.txt) in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run, it makes also another log (Addition.txt). Please also paste that into your reply.

  • 0

#4
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Managed it after 3 tries in safemode without networking.

-----------

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-12-2013 05
Ran by Marie-Eve (administrator) on MARIE-EVE-PC on 19-12-2013 11:01:15
Running from C:\Users\Marie-Eve\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)

==================== Processes (Whitelisted) =================

(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)
HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-30] ()
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-09-16] (Intel® Corporation)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [DellStage] - C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj [207845 2011-04-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [CUCore Agent] - C:\Users\Marie-Eve\AppData\Local\Radvision\Conference Client\7.17.000.99\ConfAgent.exe [100464 2013-12-02] (RADVISION Ltd.)
HKCU\...\Run: [GoogleChromeAutoLaunch_D59F3F62524715BB4BAD95FFF8677072] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863184 2013-12-04] (Google Inc.)
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6562584 2013-12-18] (SUPERAntiSpyware)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-26] (Dell, Inc.)
HKLM-x32\...\Run: [Search Protection] - C:\ProgramData\Search Protection\SearchProtection.exe [943016 2013-06-14] (Lavasoft)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.eblcu.com/
SearchScopes: HKCU - DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://securedsearch...q={searchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://securedsearch...q={searchTerms}
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - No File
Handler-x32: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 02 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 03 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 04 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 16 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9-x64 01 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 02 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 03 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 04 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 16 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Tcpip\Parameters: [DhcpNameServer] 202.99.224.67 202.99.224.68

FireFox:
========
FF ProfilePath: C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default
FF DefaultSearchEngine: SecureSearch
FF SelectedSearchEngine: SecureSearch
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @alipay.com/npAliSecCtrl - C:\windows\SysWOW64\aliedit\3.6.0.0\npAliSecCtrl64.dll (Alipay.com Inc. )
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @alipay.com/npalidcp - C:\windows\system32\aliedit\3.6.0.0\npalidcp.dll No File
FF Plugin-x32: @alipay.com/npaliedit - C:\windows\system32\aliedit\3.6.0.0\npaliedit.dll No File
FF Plugin-x32: @alipay.com/npAliSecCtrl - C:\windows\system32\aliedit\3.6.0.0\npAliSecCtrl.dll No File
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pptv.com/plugin - C:\Program Files (x86)\Internet Explorer\PPLite\plugin\npplugin2.dll (PPLive Corporation)
FF Plugin-x32: @qq.com/npqscall - C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll (Tencent)
FF Plugin-x32: @qq.com/TXSSO - C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.1.38\Bin\npSSOAxCtrlForPTLogin.dll ()
FF Plugin-x32: @sony.com/eBookLibrary - C:\Program Files (x86)\Sony\Reader\Data\bin\npebldetectmoz.dll (Sony Corporation)
FF Plugin-x32: @sony.com/ReaderDesktop - C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @radvision.com/ConfClient - C:\Users\Marie-Eve\AppData\Local\Radvision\Installer\1.5.0.4\npclientinstmgr.dll (RADVISION Ltd.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Marie-Eve\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\adawaretb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: Astrill Proxy Switcher - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\[email protected]
FF Extension: British English Dictionary (Updated) - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\[email protected]
FF Extension: Dictionnaires français - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\[email protected]
FF Extension: Garmin Communicator - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{940C851B-F716-11E1-8270-B8AC6F996F26}] - C:\Users\Marie-Eve\AppData\Local\{940C851B-F716-11E1-8270-B8AC6F996F26}\

Chrome:
=======
CHR DefaultSearchKeyword: securesearch
CHR DefaultSearchProvider: SecureSearch
CHR DefaultSearchURL: http://securedsearch...q={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Google Docs) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Hangouts) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd\2013.1211.433.2_0
CHR Extension: (Google Wallet) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0
CHR Extension: (Lavasoft NewTab) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole\0.12_0
CHR Extension: (Gmail) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
S2 AlipaySecSvc; C:\Program Files (x86)\alipay\alieditplus\AlipaySecSvc.exe [512896 2013-09-23] (Alipay Inc. )
S3 ASOVPNHelper; C:\Program Files (x86)\Astrill\ASOvpnSvc.exe [434928 2012-05-25] (Astrill)
S3 ASProxy; C:\Program Files (x86)\Astrill\ASProxy.exe [1918888 2013-02-19] (Astrill)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S3 GoToAssist Remote Support Customer; C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\594\g2ax_service.exe [610376 2013-12-19] (Citrix Online, a division of Citrix Systems, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-09-16] ()

==================== Drivers (Whitelisted) ====================

S3 asvpndrv; C:\Windows\System32\DRIVERS\asvpndrv.sys [31744 2012-02-29] (Astrill)
S1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
S3 Pcouffin64; C:\Windows\System32\Drivers\pcouffin64a.sys [54816 2012-04-02] (VSO Software)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-19 10:47 - 2013-12-19 10:47 - 00030866 _____ C:\Users\Marie-Eve\Downloads\Addition.txt
2013-12-19 10:45 - 2013-12-19 11:01 - 00000000 _____ C:\Users\Marie-Eve\Downloads\FRST.txt
2013-12-19 10:45 - 2013-12-19 10:45 - 00000000 ____D C:\FRST
2013-12-19 10:44 - 2013-12-19 10:44 - 02192805 _____ (Farbar) C:\Users\Marie-Eve\Downloads\FRST64.exe
2013-12-19 02:59 - 2013-12-19 02:59 - 00000000 ____D C:\windows\Sun
2013-12-19 02:48 - 2013-12-19 02:48 - 00001582 _____ C:\Users\Marie-Eve\Desktop\GoToAssist Customer.lnk
2013-12-19 02:48 - 2013-12-19 02:48 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrix
2013-12-19 01:58 - 2013-12-19 01:58 - 00602112 _____ (OldTimer Tools) C:\Users\Marie-Eve\Downloads\OTL.exe
2013-12-19 01:51 - 2013-12-19 10:41 - 00000616 _____ C:\windows\setupact.log
2013-12-19 01:51 - 2013-12-19 01:51 - 00000000 _____ C:\windows\setuperr.log
2013-12-19 00:25 - 2013-12-19 00:25 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\SUPERAntiSpyware.com
2013-12-19 00:24 - 2013-12-19 00:25 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-12-19 00:24 - 2013-12-19 00:24 - 00001810 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-12-19 00:24 - 2013-12-19 00:24 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-12-19 00:23 - 2013-12-19 00:24 - 13670584 _____ (Microsoft Corporation) C:\Users\Marie-Eve\Downloads\mseinstall.exe
2013-12-19 00:22 - 2013-12-19 00:24 - 29067456 _____ (SUPERAntiSpyware) C:\Users\Marie-Eve\Downloads\SUPERAntiSpyware.exe
2013-12-13 15:01 - 2013-12-13 15:01 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\AVG2014
2013-12-13 15:00 - 2013-12-13 15:00 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-12-13 15:00 - 2013-12-13 15:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\TuneUp Software
2013-12-13 14:59 - 2013-12-13 15:01 - 00000000 ____D C:\ProgramData\AVG2014
2013-12-13 14:59 - 2013-12-13 14:59 - 00000000 ___HD C:\$AVG
2013-12-13 14:58 - 2013-12-13 14:58 - 00000000 ____D C:\Program Files (x86)\AVG
2013-12-13 14:54 - 2013-12-19 10:47 - 00000000 ____D C:\ProgramData\MFAData
2013-12-13 14:54 - 2013-12-13 15:03 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Avg2014
2013-12-13 14:54 - 2013-12-13 14:54 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\MFAData
2013-12-13 14:53 - 2013-12-13 14:54 - 04436944 _____ (AVG Technologies) C:\Users\Marie-Eve\Downloads\avg_free_stb_all_2014_4259_cnet.exe
2013-12-12 03:04 - 2013-05-10 13:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2013-12-12 03:04 - 2013-05-10 13:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2013-12-12 03:04 - 2013-05-10 12:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2013-12-12 03:04 - 2013-05-10 12:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2013-12-12 03:03 - 2013-11-26 19:54 - 23183360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-12-12 03:03 - 2013-11-26 18:19 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-12-12 03:03 - 2013-11-26 18:18 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2013-12-12 03:03 - 2013-11-26 17:48 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-12-12 03:03 - 2013-11-26 17:46 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2013-12-12 03:03 - 2013-11-26 17:41 - 02764288 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-12-12 03:03 - 2013-11-26 17:29 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-12-12 03:03 - 2013-11-26 17:27 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-12-12 03:03 - 2013-11-26 17:23 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-12-12 03:03 - 2013-11-26 17:21 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-12-12 03:03 - 2013-11-26 17:18 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2013-12-12 03:03 - 2013-11-26 17:18 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2013-12-12 03:03 - 2013-11-26 17:16 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2013-12-12 03:03 - 2013-11-26 16:57 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-12 03:03 - 2013-11-26 16:38 - 02166784 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-12 03:03 - 2013-11-26 16:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-12-12 03:03 - 2013-11-26 16:32 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-12-12 03:03 - 2013-11-26 16:28 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2013-12-12 03:03 - 2013-11-26 16:02 - 01995264 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-12-12 03:03 - 2013-11-26 15:32 - 01928192 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-12-12 03:03 - 2013-11-26 15:07 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-12 03:03 - 2013-11-26 14:40 - 01395200 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-12 03:03 - 2013-11-26 14:34 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2013-12-12 03:03 - 2013-11-26 14:34 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2013-12-12 03:03 - 2013-11-26 14:33 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-12 03:03 - 2013-11-26 14:27 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-12 03:02 - 2013-11-26 18:11 - 17112576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-12 03:02 - 2013-11-26 16:35 - 05769216 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-12 03:02 - 2013-11-26 16:16 - 04243968 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-12 03:02 - 2013-11-26 15:48 - 12996608 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-12 03:02 - 2013-11-26 15:26 - 11221504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-11 21:29 - 2013-12-18 01:16 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Nataly and Maxim
2013-12-11 13:39 - 2013-12-11 15:39 - 09293192 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2013-12-11 13:31 - 2013-10-30 10:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-11 13:31 - 2013-10-30 10:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-11 13:30 - 2013-11-24 02:26 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-11 13:30 - 2013-11-24 01:47 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-11 13:30 - 2013-10-30 09:24 - 03155968 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-11 13:30 - 2013-10-19 10:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-11 13:30 - 2013-10-19 09:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-11 13:26 - 2013-11-12 10:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2013-12-11 13:26 - 2013-11-12 10:07 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2013-12-11 13:26 - 2013-10-04 10:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2013-12-11 13:26 - 2013-10-04 09:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-11 13:25 - 2013-12-11 13:25 - 00056379 _____ C:\Users\Marie-Eve\Downloads\Enquete - 2013-12-05 - Drogues de syntheses - VFQ HDTV XviD - {bLinKkY}.avi.torrent
2013-12-11 13:25 - 2013-10-12 10:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-11 13:25 - 2013-10-12 10:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-11 13:25 - 2013-10-12 10:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2013-12-11 13:25 - 2013-10-12 10:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-11 13:25 - 2013-10-12 09:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2013-12-11 13:25 - 2013-10-12 09:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-11 13:25 - 2013-10-12 09:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2013-12-11 13:25 - 2013-10-12 09:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-10 12:09 - 2013-12-10 12:09 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup (1).exe
2013-12-10 12:06 - 2013-12-10 12:06 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup.exe
2013-12-05 22:12 - 2013-12-05 22:13 - 00014913 _____ C:\Users\Marie-Eve\Downloads\Louis.Cyr.2013.FRENCH.DVDRiP.X264-HMiDiMADRiDi.avi.torrent
2013-12-03 12:57 - 2013-12-03 12:57 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT (1).torrent
2013-12-03 12:45 - 2013-12-03 12:45 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT.torrent
2013-12-02 18:36 - 2013-12-02 18:36 - 00034278 _____ C:\Users\Marie-Eve\Downloads\jagten-the-hunt_english-708134.zip
2013-12-02 01:00 - 2013-12-02 01:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Conference Client
2013-12-02 00:59 - 2013-12-02 00:59 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Conference Client
2013-12-02 00:58 - 2013-12-02 00:59 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Radvision
2013-12-02 00:57 - 2013-12-02 00:57 - 01024624 _____ (RADVISION Ltd.) C:\Users\Marie-Eve\Downloads\MgrInst.exe
2013-11-28 22:46 - 2013-11-28 22:46 - 00014948 _____ C:\Users\Marie-Eve\Downloads\waytomanag_se_asia_budget_calculator.xlsx
2013-11-27 22:06 - 2013-11-27 22:23 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Jelena
2013-11-27 09:41 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2013-11-27 09:39 - 2013-11-27 09:39 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-11-27 09:39 - 2013-11-27 09:39 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-11-19 19:02 - 2013-11-19 19:02 - 00021941 _____ C:\Users\Marie-Eve\Downloads\[kickass.to]insanity.workout.torrent

==================== One Month Modified Files and Folders =======

2013-12-19 11:01 - 2013-12-19 10:45 - 00000000 _____ C:\Users\Marie-Eve\Downloads\FRST.txt
2013-12-19 10:52 - 2009-07-14 11:20 - 00000000 ____D C:\windows\tracing
2013-12-19 10:50 - 2009-07-14 12:45 - 00020928 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-19 10:50 - 2009-07-14 12:45 - 00020928 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-19 10:48 - 2012-09-10 08:46 - 00000904 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-19 10:47 - 2013-12-19 10:47 - 00030866 _____ C:\Users\Marie-Eve\Downloads\Addition.txt
2013-12-19 10:47 - 2013-12-13 14:54 - 00000000 ____D C:\ProgramData\MFAData
2013-12-19 10:46 - 2012-01-28 17:35 - 01458514 _____ C:\windows\WindowsUpdate.log
2013-12-19 10:45 - 2013-12-19 10:45 - 00000000 ____D C:\FRST
2013-12-19 10:44 - 2013-12-19 10:44 - 02192805 _____ (Farbar) C:\Users\Marie-Eve\Downloads\FRST64.exe
2013-12-19 10:42 - 2013-08-30 13:21 - 00065536 _____ C:\windows\system32\Ikeext.etl
2013-12-19 10:42 - 2012-09-10 08:46 - 00000900 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-19 10:42 - 2012-08-26 12:25 - 00000440 _____ C:\windows\system32\Drivers\etc\hosts.ics
2013-12-19 10:42 - 2012-01-28 18:29 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-12-19 10:42 - 2012-01-28 18:29 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-12-19 10:42 - 2012-01-28 18:18 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-12-19 10:42 - 2009-07-14 13:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-19 10:41 - 2013-12-19 01:51 - 00000616 _____ C:\windows\setupact.log
2013-12-19 03:16 - 2013-08-25 14:44 - 00003930 _____ C:\windows\SysWOW64\ASProxy.ini
2013-12-19 03:16 - 2013-08-25 14:44 - 00002368 _____ C:\windows\SysWOW64\ASProxyOff.ini
2013-12-19 03:16 - 2013-08-25 14:44 - 00002368 _____ C:\windows\system32\ASProxyOff.ini
2013-12-19 02:59 - 2013-12-19 02:59 - 00000000 ____D C:\windows\Sun
2013-12-19 02:48 - 2013-12-19 02:48 - 00001582 _____ C:\Users\Marie-Eve\Desktop\GoToAssist Customer.lnk
2013-12-19 02:48 - 2013-12-19 02:48 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrix
2013-12-19 02:48 - 2012-10-08 08:41 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Citrix
2013-12-19 02:48 - 2012-04-19 02:10 - 00000000 ____D C:\Program Files (x86)\Citrix
2013-12-19 01:58 - 2013-12-19 01:58 - 00602112 _____ (OldTimer Tools) C:\Users\Marie-Eve\Downloads\OTL.exe
2013-12-19 01:53 - 2012-01-28 18:02 - 00000000 ____D C:\ProgramData\Sonic
2013-12-19 01:51 - 2013-12-19 01:51 - 00000000 _____ C:\windows\setuperr.log
2013-12-19 01:39 - 2012-04-08 05:29 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-12-19 01:36 - 2012-02-15 11:14 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Media Player Classic
2013-12-19 01:34 - 2012-04-09 00:32 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Azureus
2013-12-19 01:34 - 2011-02-23 21:08 - 00000000 ____D C:\windows\Panther
2013-12-19 00:25 - 2013-12-19 00:25 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\SUPERAntiSpyware.com
2013-12-19 00:25 - 2013-12-19 00:24 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-12-19 00:24 - 2013-12-19 00:24 - 00001810 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-12-19 00:24 - 2013-12-19 00:24 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-12-19 00:24 - 2013-12-19 00:23 - 13670584 _____ (Microsoft Corporation) C:\Users\Marie-Eve\Downloads\mseinstall.exe
2013-12-19 00:24 - 2013-12-19 00:22 - 29067456 _____ (SUPERAntiSpyware) C:\Users\Marie-Eve\Downloads\SUPERAntiSpyware.exe
2013-12-18 23:53 - 2012-02-06 11:30 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Skype
2013-12-18 23:11 - 2012-02-04 04:09 - 00000000 ____D C:\Users\Marie-Eve\Documents\My Received Files
2013-12-18 22:39 - 2012-10-25 06:54 - 00000944 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000UA.job
2013-12-18 22:39 - 2012-10-25 06:54 - 00000922 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000Core.job
2013-12-18 16:46 - 2013-05-22 06:11 - 00003440 _____ C:\windows\System32\Tasks\PCDEventLauncherTask
2013-12-18 13:18 - 2012-02-04 03:28 - 00000000 ____D C:\Users\Marie-Eve
2013-12-18 12:11 - 2009-07-14 13:13 - 00778834 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-18 04:03 - 2013-11-04 22:19 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\vlc
2013-12-18 01:16 - 2013-12-11 21:29 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Nataly and Maxim
2013-12-16 16:07 - 2009-07-14 13:08 - 00032586 _____ C:\windows\Tasks\SCHEDLGU.TXT
2013-12-15 00:49 - 2013-07-21 05:46 - 00000000 ____D C:\windows\system32\MRT
2013-12-15 00:47 - 2012-02-07 20:09 - 90708896 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-12-13 22:00 - 2013-10-09 02:13 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\LavasoftStatistics
2013-12-13 21:11 - 2013-10-08 21:08 - 00000000 ___RD C:\Users\Marie-Eve\Desktop\here
2013-12-13 21:11 - 2012-04-01 09:37 - 00000000 ____D C:\windows\Minidump
2013-12-13 18:33 - 2009-07-14 11:20 - 00000000 ____D C:\windows\rescache
2013-12-13 16:53 - 2013-05-22 06:09 - 00000000 ____D C:\Program Files\My Dell
2013-12-13 16:53 - 2012-02-11 00:00 - 00000000 ____D C:\ProgramData\PCDr
2013-12-13 15:03 - 2013-12-13 14:54 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Avg2014
2013-12-13 15:01 - 2013-12-13 15:01 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\AVG2014
2013-12-13 15:01 - 2013-12-13 14:59 - 00000000 ____D C:\ProgramData\AVG2014
2013-12-13 15:00 - 2013-12-13 15:00 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-12-13 15:00 - 2013-12-13 15:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\TuneUp Software
2013-12-13 14:59 - 2013-12-13 14:59 - 00000000 ___HD C:\$AVG
2013-12-13 14:58 - 2013-12-13 14:58 - 00000000 ____D C:\Program Files (x86)\AVG
2013-12-13 14:54 - 2013-12-13 14:54 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\MFAData
2013-12-13 14:54 - 2013-12-13 14:53 - 04436944 _____ (AVG Technologies) C:\Users\Marie-Eve\Downloads\avg_free_stb_all_2014_4259_cnet.exe
2013-12-12 12:41 - 2009-07-14 13:09 - 00000000 ____D C:\windows\System32\Tasks\WPD
2013-12-12 03:23 - 2009-07-14 12:45 - 00465768 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-12 03:04 - 2012-02-04 03:35 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-11 21:09 - 2013-11-14 19:17 - 00000000 ____D C:\Users\Marie-Eve\Desktop\C11
2013-12-11 15:39 - 2013-12-11 13:39 - 09293192 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2013-12-11 15:39 - 2012-04-08 05:29 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 15:39 - 2012-04-08 05:29 - 00003768 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 15:39 - 2012-01-28 17:46 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 13:25 - 2013-12-11 13:25 - 00056379 _____ C:\Users\Marie-Eve\Downloads\Enquete - 2013-12-05 - Drogues de syntheses - VFQ HDTV XviD - {bLinKkY}.avi.torrent
2013-12-10 13:14 - 2012-09-10 08:46 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Google
2013-12-10 12:09 - 2013-12-10 12:09 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup (1).exe
2013-12-10 12:06 - 2013-12-10 12:06 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup.exe
2013-12-09 19:43 - 2012-09-10 08:46 - 00003900 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-09 19:43 - 2012-09-10 08:46 - 00003648 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-06 20:07 - 2013-10-17 23:15 - 00000000 ____D C:\Users\Marie-Eve\Desktop\xéna
2013-12-05 22:13 - 2013-12-05 22:12 - 00014913 _____ C:\Users\Marie-Eve\Downloads\Louis.Cyr.2013.FRENCH.DVDRiP.X264-HMiDiMADRiDi.avi.torrent
2013-12-04 16:55 - 2012-04-02 07:03 - 00011264 _____ C:\Users\Marie-Eve\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-03 12:57 - 2013-12-03 12:57 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT (1).torrent
2013-12-03 12:45 - 2013-12-03 12:45 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT.torrent
2013-12-02 22:18 - 2012-09-10 20:07 - 00000000 ____D C:\windows\System32\Tasks\NCH Software
2013-12-02 18:36 - 2013-12-02 18:36 - 00034278 _____ C:\Users\Marie-Eve\Downloads\jagten-the-hunt_english-708134.zip
2013-12-02 01:00 - 2013-12-02 01:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Conference Client
2013-12-02 00:59 - 2013-12-02 00:59 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Conference Client
2013-12-02 00:59 - 2013-12-02 00:58 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Radvision
2013-12-02 00:57 - 2013-12-02 00:57 - 01024624 _____ (RADVISION Ltd.) C:\Users\Marie-Eve\Downloads\MgrInst.exe
2013-11-29 17:51 - 2013-03-05 05:13 - 00000000 _____ C:\END
2013-11-29 17:51 - 2012-04-09 00:26 - 00000000 ____D C:\Program Files (x86)\Vuze
2013-11-29 16:03 - 2013-03-05 11:35 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-29 16:03 - 2012-01-28 18:12 - 00000000 ____D C:\ProgramData\Skype
2013-11-28 22:46 - 2013-11-28 22:46 - 00014948 _____ C:\Users\Marie-Eve\Downloads\waytomanag_se_asia_budget_calculator.xlsx
2013-11-28 21:55 - 2013-07-08 00:53 - 00001419 _____ C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-28 11:02 - 2009-07-14 11:20 - 00000000 ____D C:\windows\PolicyDefinitions
2013-11-28 11:00 - 2013-10-08 22:46 - 00000000 ____D C:\ProgramData\Search Protection
2013-11-27 22:23 - 2013-11-27 22:06 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Jelena
2013-11-27 09:39 - 2013-11-27 09:39 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-11-27 09:39 - 2013-11-27 09:39 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-11-26 19:54 - 2013-12-12 03:03 - 23183360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-11-26 18:19 - 2013-12-12 03:03 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-11-26 18:18 - 2013-12-12 03:03 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2013-11-26 18:11 - 2013-12-12 03:02 - 17112576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-11-26 17:48 - 2013-12-12 03:03 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-11-26 17:46 - 2013-12-12 03:03 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2013-11-26 17:41 - 2013-12-12 03:03 - 02764288 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-11-26 17:29 - 2013-12-12 03:03 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-11-26 17:27 - 2013-12-12 03:03 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-11-26 17:23 - 2013-12-12 03:03 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-11-26 17:21 - 2013-12-12 03:03 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-11-26 17:18 - 2013-12-12 03:03 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2013-11-26 17:18 - 2013-12-12 03:03 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2013-11-26 17:16 - 2013-12-12 03:03 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2013-11-26 16:57 - 2013-12-12 03:03 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-11-26 16:38 - 2013-12-12 03:03 - 02166784 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-11-26 16:38 - 2013-12-12 03:03 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-11-26 16:35 - 2013-12-12 03:02 - 05769216 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-11-26 16:32 - 2013-12-12 03:03 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-11-26 16:28 - 2013-12-12 03:03 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2013-11-26 16:16 - 2013-12-12 03:02 - 04243968 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-11-26 16:02 - 2013-12-12 03:03 - 01995264 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-11-26 15:48 - 2013-12-12 03:02 - 12996608 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-11-26 15:32 - 2013-12-12 03:03 - 01928192 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-11-26 15:26 - 2013-12-12 03:02 - 11221504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-11-26 15:07 - 2013-12-12 03:03 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-11-26 14:40 - 2013-12-12 03:03 - 01395200 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-11-26 14:34 - 2013-12-12 03:03 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2013-11-26 14:34 - 2013-12-12 03:03 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2013-11-26 14:33 - 2013-12-12 03:03 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-11-26 14:27 - 2013-12-12 03:03 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-11-24 02:26 - 2013-12-11 13:30 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-11-24 01:47 - 2013-12-11 13:30 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-11-23 22:11 - 2013-10-01 14:03 - 00000000 ____D C:\Users\Marie-Eve\Documents\Tencent Files
2013-11-19 19:02 - 2013-11-19 19:02 - 00021941 _____ C:\Users\Marie-Eve\Downloads\[kickass.to]insanity.workout.torrent

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-11 11:21

==================== End Of Log ============================
  • 0

#5
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,017 posts
Hi Meboubou,

By any chance did you get an Addition.txt report from Farbar Recovery Scan Tool?

If you did please post it. :)
  • 0

#6
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Yes, sorry I missed that:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-12-2013 05
Ran by Marie-Eve at 2013-12-19 10:47:03
Running from C:\Users\Marie-Eve\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}

==================== Installed Programs ======================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Accidental Damage Services Agreement (x32 Version: 2.0.0)
Adobe AIR (x32 Version: 2.6.0.19120)
Adobe Digital Editions 2.0 (x32 Version: 2.0.1)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Adobe Reader X (10.1.8) MUI (x32 Version: 10.1.8)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638)
Advanced Audio FX Engine (x32 Version: 1.12.05)
Alipay security control 3.6.0.0 (x32 Version: 3.6.0.0)
AlipayDHC 1.1.0.0 (x32 Version: 1.1.0.0)
Astrill
AVG 2014 (Version: 14.0.3658)
AVG 2014 (Version: 14.0.4259)
AVG 2014 (Version: 2014.0.4259)
Banctec Service Agreement (x32 Version: 2.0.0)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95)
Blackhawk Striker 2 (x32 Version: 2.2.0.95)
Blio (x32 Version: 2.3.7140)
Bounce Symphony (x32 Version: 2.2.0.95)
Build-a-lot 2 (x32 Version: 2.2.0.95)
Cake Mania (x32 Version: 2.2.0.95)
CCleaner (Version: 4.06)
Chuzzle Deluxe (x32 Version: 2.2.0.95)
Cisco WebEx Meeting Center for Firefox or Chrome (x32 Version: 28.12.1.16851)
Complete Care Business Service Agreement (x32 Version: 2.0.0)
Consumer In-Home Service Agreement (x32 Version: 2.0.0)
Cozi (x32 Version: 1.0.6505.38692)
D3DX10 (x32 Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Dell DataSafe Local Backup - Support Software (x32 Version: 9.4.60)
Dell DataSafe Local Backup (x32 Version: 9.4.60)
Dell DataSafe Online (x32 Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (x32 Version: 1.00.0000)
Dell Home Systems Service Agreement (x32 Version: 2.0.0)
Dell MusicStage (x32 Version: 1.5.201.0)
Dell PhotoStage (x32 Version: 1.5.0.65)
Dell Stage (x32 Version: 1.5.201.0)
Dell Touchpad (Version: 7.1209.101.204)
Dell VideoStage (x32 Version: 1.2.0.1712)
Dell Webcam Central (x32 Version: 2.00.44)
DimSum 0.7.9 (x32)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95)
DirectX 9 Runtime (x32 Version: 1.00.0000)
DivX Setup (x32 Version: 2.6.1.9)
Dora's World Adventure (x32 Version: 2.2.0.95)
Escape Whisper Valley ™ (x32 Version: 2.2.0.95)
Express Zip (x32)
Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)
Farm Frenzy (x32 Version: 2.2.0.95)
FATE (x32 Version: 2.2.0.95)
Final Drive Fury (x32 Version: 2.2.0.95)
Final Drive Nitro (x32 Version: 2.2.0.95)
Google Chrome (x32 Version: 31.0.1650.63)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.22.3)
GoToMeeting 5.2.0.952 (HKCU Version: 5.2.0.952)
HPDiagnosticAlert (x32 Version: 1.00.0000)
IDT Audio (x32 Version: 1.0.6324.0)
Intel PROSet Wireless
Intel PROSet Wireless (x32)
Intel® Control Center (x32 Version: 1.2.1.1007)
Intel® Management Engine Components (x32 Version: 7.0.0.1118)
Intel® Processor Graphics (x32 Version: 8.15.10.2361)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.2.0.0587)
Intel® PROSet/Wireless WiFi Software (Version: 14.2.1000)
Intel® Rapid Storage Technology (x32 Version: 10.1.0.1008)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® WiDi (x32 Version: 2.1.41.0)
Java 7 Update 45 (64-bit) (Version: 7.0.450)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Jewel Quest (x32 Version: 2.2.0.95)
Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
K-Lite Codec Pack 8.3.2 (Full) (x32 Version: 8.3.2)
Luxor (x32 Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Mozilla Firefox 24.0 (x86 en-GB) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
My Dell (Version: 3.5.6422.14)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95)
Ö§¸¶±¦°²È«¿Ø¼þ 3.16.0.0 (x32 Version: 3.16.0.0)
Panda USB Vaccine 1.0.1.4 (x32)
Penguins! (x32 Version: 2.2.0.95)
PhotoShowExpress (x32 Version: 2.0.063)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95)
PlayReady PC Runtime x86 (x32 Version: 1.3.0)
Poker Superstars III (x32 Version: 2.2.0.95)
Polar Bowler (x32 Version: 2.2.0.95)
Polar Golfer (x32 Version: 2.2.0.95)
Premium Service Agreement (x32 Version: 2.0.0)
QualxServ Service Agreement (x32 Version: 2.0.0)
Quickset64 (Version: 10.09.25)
RADVISION Conference Client (HKCU)
RBVirtualFolder64Inst (Version: 1.00.0000)
Reader for PC (x32 Version: 1.1.05.13310)
Reader Library by Sony (x32 Version: 3.3.00.07130)
Realtek Ethernet Controller Driver (x32 Version: 7.31.1025.2010)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30126)
Rosetta Stone Version 3 (x32 Version: 3.4.5.0)
Roxio Activation Module (x32 Version: 1.0)
Roxio BackOnTrack (x32 Version: 1.3.3)
Roxio Burn (x32 Version: 1.8)
Roxio Creator Starter (x32 Version: 1.0.439)
Roxio Creator Starter (x32 Version: 12.1.77.0)
Roxio Creator Starter (x32 Version: 5.0.0)
Roxio Express Labeler 3 (x32 Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
SafeTransaction 5.8.0.0 (x32 Version: 5.8.0.0)
Samantha Swift (x32 Version: 2.2.0.95)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Skype™ 6.11 (x32 Version: 6.11.102)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0)
SUPERAntiSpyware (Version: 5.7.1014)
Switch Sound File Converter (x32)
swMSM (x32 Version: 12.0.0.1)
System Requirements Lab CYRI (x32 Version: 4.5.1.0)
TeamViewer 8 (x32 Version: 8.0.22298)
Tencent QQ (x32 Version: 1.75.2739.0)
TI USB 3.0 Host Controller Driver (x32 Version: 1.12.14.0)
TI USB3 Host Driver (x32 Version: 1.12.14.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2494150) (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (x32)
Update Installer for WildTangent Games App (x32)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (x32 Version: 14.0.0.1)
VLC media player 2.1.0 (x32 Version: 2.1.0)
Vuze (x32 Version: 5.2.0.0)
War2Combat 3.05 (x32 Version: 3.05)
Wedding Dash - Ready, Aim, Love! (x32 Version: 2.2.0.95)
WildTangent Games (x32 Version: 1.0.2.5)
WildTangent Games App (Dell Games) (x32 Version: 4.0.10.5)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
WinRAS 2012.01vf (x32)
Zuma Deluxe (x32 Version: 2.2.0.95)

==================== Restore Points =========================


==================== Hosts content: ==========================

2009-07-14 10:34 - 2012-09-11 19:37 - 00000098 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {0BAF41A9-B559-4386-9FC6-867FBB484407} - System32\Tasks\LaunchApp => C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
Task: {1701C053-E7BC-4560-863C-024F1CCDEEB5} - System32\Tasks\shut down => C:\Windows\System32\shutdown.exe [2009-07-14] (Microsoft Corporation)
Task: {24437601-A8F9-40D2-9F99-CA4DA2C10B85} - System32\Tasks\hpUrlLauncher.exe_{D1168BDA-764F-49EB-9A17-F53BC7CBB76D} => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\utils\hpUrlLauncher.exe
Task: {77F45AEB-8D11-49E3-AB0C-0ECEA85743D2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-10] (Google Inc.)
Task: {88AEFAA1-9366-4650-94B7-8694FC3DD699} - System32\Tasks\NCH Software\ExpressZipReminder => C:\Program Files (x86)\NCH Software\ExpressZip\expresszip.exe [2012-09-26] (NCH Software)
Task: {95963124-4395-4082-90CA-C994396FAE21} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-09-10] (Google Inc.)
Task: {9DB6D36C-80DE-4679-AE8E-55AC5FDD8701} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-20] (Piriform Ltd)
Task: {A1281383-0A66-482F-8844-FE8C09A01831} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {A69DA88D-58D4-4C2E-AB23-D4DF2A4DA08E} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-24] ()
Task: {A950B92C-1FC5-472A-87B2-0B1A11A929C2} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2013-09-06] (PC-Doctor, Inc.)
Task: {BD1FFDC4-446E-4CFB-B9BA-3AC65AF09C35} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000UA => C:\Users\Marie-Eve\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-25] (Facebook Inc.)
Task: {C3EC2C24-3DC0-48BA-8847-C7749FF8CA84} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {EA87CE92-7D35-4D81-8716-16B67BCCAE44} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {EFE1AAC4-B0CB-4B5C-9292-EFE6F47E5A28} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000Core => C:\Users\Marie-Eve\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-25] (Facebook Inc.)
Task: {F6539712-487A-4868-AAA3-99ABEC39829A} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2013-12-07] (PC-Doctor, Inc.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000Core.job => C:\Users\Marie-Eve\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000UA.job => C:\Users\Marie-Eve\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-01-28 19:12 - 2011-04-11 02:40 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-09-16 07:46 - 2011-09-16 07:46 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2013-12-02 00:59 - 2013-12-02 00:59 - 07983104 _____ () C:\Users\Marie-Eve\AppData\Local\Radvision\Conference Client\7.17.000.99\RVVIDEOCODEC.dll
2013-12-02 00:59 - 2013-12-02 00:59 - 00843776 _____ () C:\Users\Marie-Eve\AppData\Local\Radvision\Conference Client\7.17.000.99\RVVIDEOCHANNEL.dll
2013-12-05 22:38 - 2013-12-04 10:47 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-05 22:38 - 2013-12-04 10:47 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-05 22:38 - 2013-12-04 10:48 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-05 22:38 - 2013-12-04 10:48 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-05 22:38 - 2013-12-04 10:47 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
2013-12-18 12:09 - 2013-12-18 12:09 - 00181760 _____ () C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd\2013.1211.433.2_0\plugin\ace.dll
2013-08-20 19:39 - 2013-08-20 19:39 - 00169472 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\eb4812681f6ab4406053f3a1803e6da0\IsdiInterop.ni.dll
2012-01-28 17:45 - 2010-11-06 13:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ASProxy => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist Remote Support Customer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/19/2013 10:42:23 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 10:41:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 03:17:22 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:58:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:43:31 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:40:37 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:38:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:37:23 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:34:11 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:17:03 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (12/19/2013 10:43:27 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/19/2013 10:43:11 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (12/19/2013 10:42:41 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (12/19/2013 10:42:28 AM) (Source: ipnathlp) (User: )
Description: 192.168.1.101192.168.137.0255.255.255.0

Error: (12/19/2013 10:42:28 AM) (Source: ipnathlp) (User: )
Description:

Error: (12/19/2013 10:41:09 AM) (Source: ipnathlp) (User: )
Description: 192.168.1.101192.168.137.0255.255.255.0

Error: (12/19/2013 10:41:09 AM) (Source: ipnathlp) (User: )
Description:

Error: (12/19/2013 03:17:59 AM) (Source: Service Control Manager) (User: )
Description: The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1068

Error: (12/19/2013 03:16:14 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (12/19/2013 03:16:14 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (12/19/2013 10:42:23 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 10:41:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 03:17:22 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:58:34 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:43:31 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:40:37 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:38:34 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:37:23 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:34:11 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/19/2013 02:17:03 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
Date: 2013-12-19 10:41:48.460
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 10:41:48.398
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 10:40:25.641
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 10:40:25.578
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 02:41:57.342
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 02:41:57.280
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 02:39:42.046
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 02:39:41.983
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 02:38:04.137
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2013-12-19 02:38:04.075
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\pcouffin64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 40%
Total physical RAM: 6050.05 MB
Available physical RAM: 3598.35 MB
Total Pagefile: 12098.29 MB
Available Pagefile: 9432.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:176.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 3B771577)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS)

==================== End Of Log ============================
  • 0

#7
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,017 posts
Hello Meboubou,

Please go to the link below and follow the instructions on how to reset Google Chrome browser settings:

https://support.goog...r/3296214?hl=en

Next

Download attached fixlist.txt file and save it to the Desktop.

NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST/FRST64 and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

After that

Please run a scan with Farbar Recovery Scan Tool and post back the FRST.txt log it generates.

So when you return please post
  • Fixlog.txt
  • FRST.txt

  • 0

#8
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 20-12-2013
Ran by Marie-Eve at 2013-12-20 08:45:21 Run:1
Running from C:\Users\Marie-Eve\Desktop
Boot Mode: Safe Mode (with Networking)
==============================================

Content of fixlist:
*****************
HKLM-x32\...\Run: [Search Protection] - C:\ProgramData\Search Protection\SearchProtection.exe [943016 2013-06-14] (Lavasoft)
C:\ProgramData\Search Protection
SearchScopes: HKCU - DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://securedsearch...q={searchTerms}
SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://securedsearch...q={searchTerms}
FF ProfilePath: C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default
FF DefaultSearchEngine: SecureSearch
FF SelectedSearchEngine: SecureSearch
FF Plugin-x32: @alipay.com/npalidcp - C:\windows\system32\aliedit\3.6.0.0\npalidcp.dll No File
FF Plugin-x32: @alipay.com/npaliedit - C:\windows\system32\aliedit\3.6.0.0\npaliedit.dll No File
FF Plugin-x32: @alipay.com/npAliSecCtrl - C:\windows\system32\aliedit\3.6.0.0\npAliSecCtrl.dll No File
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Search Protection => Value deleted successfully.
C:\ProgramData\Search Protection => Moved successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} => Key deleted successfully.
HKCR\CLSID\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} => Key not found.
C:\ProgramData\Search Protection => Should not be moved.
Firefox DefaultSearchEngine deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
HKLM\Software\Wow6432Node\MozillaPlugins\@alipay.com/npalidcp => Key deleted successfully.
C:\windows\system32\aliedit\3.6.0.0\npalidcp.dll not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@alipay.com/npaliedit => Key deleted successfully.
C:\windows\system32\aliedit\3.6.0.0\npaliedit.dll not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@alipay.com/npAliSecCtrl => Key deleted successfully.
C:\windows\system32\aliedit\3.6.0.0\npAliSecCtrl.dll not found.

==== End of Fixlog ====
  • 0

#9
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-12-2013
Ran by Marie-Eve (administrator) on MARIE-EVE-PC on 20-12-2013 08:48:26
Running from C:\Users\Marie-Eve\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Safe Mode (with Networking)

==================== Processes (Whitelisted) =================

(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-25] (IDT, Inc.)
HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [609144 2011-04-13] (Alps Electric Co., Ltd.)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-30] ()
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-09-16] (Intel® Corporation)
HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [DellStage] - C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj [207845 2011-04-30] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [CUCore Agent] - C:\Users\Marie-Eve\AppData\Local\Radvision\Conference Client\7.17.000.99\ConfAgent.exe [100464 2013-12-02] (RADVISION Ltd.)
HKCU\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6562584 2013-12-18] (SUPERAntiSpyware)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-26] (Dell, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.eblcu.com/
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - No File
Handler-x32: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll (Cozi Group, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 02 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 03 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 04 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9 16 C:\windows\SysWOW64\ASProxy.dll [352168] (Astrill)
Winsock: Catalog9-x64 01 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 02 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 03 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 04 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Winsock: Catalog9-x64 16 C:\windows\system32\ASProxy64.dll [468904] (Astrill)
Tcpip\Parameters: [DhcpNameServer] 202.99.224.67 202.99.224.68

FireFox:
========
FF ProfilePath: C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @alipay.com/npAliSecCtrl - C:\windows\SysWOW64\aliedit\3.6.0.0\npAliSecCtrl64.dll (Alipay.com Inc. )
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pptv.com/plugin - C:\Program Files (x86)\Internet Explorer\PPLite\plugin\npplugin2.dll (PPLive Corporation)
FF Plugin-x32: @qq.com/npqscall - C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll (Tencent)
FF Plugin-x32: @qq.com/TXSSO - C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.1.38\Bin\npSSOAxCtrlForPTLogin.dll ()
FF Plugin-x32: @sony.com/eBookLibrary - C:\Program Files (x86)\Sony\Reader\Data\bin\npebldetectmoz.dll (Sony Corporation)
FF Plugin-x32: @sony.com/ReaderDesktop - C:\Program Files (x86)\Sony\ReaderDesktop\npreaderdetectmoz.dll (Sony Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @radvision.com/ConfClient - C:\Users\Marie-Eve\AppData\Local\Radvision\Installer\1.5.0.4\npclientinstmgr.dll (RADVISION Ltd.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Marie-Eve\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\adawaretb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-en-GB.xml
FF Extension: Astrill Proxy Switcher - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\[email protected]
FF Extension: British English Dictionary (Updated) - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\[email protected]
FF Extension: Dictionnaires français - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\[email protected]
FF Extension: Garmin Communicator - C:\Users\Marie-Eve\AppData\Roaming\Mozilla\Firefox\Profiles\d18vzumr.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{940C851B-F716-11E1-8270-B8AC6F996F26}] - C:\Users\Marie-Eve\AppData\Local\{940C851B-F716-11E1-8270-B8AC6F996F26}\

Chrome:
=======
CHR DefaultSearchKeyword: google.com.hk
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Extension: (Google Docs) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Hangouts) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd\2013.1211.433.2_0
CHR Extension: (Google Wallet) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0
CHR Extension: (Lavasoft NewTab) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole\0.12_0
CHR Extension: (Gmail) - C:\Users\Marie-Eve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx

==================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-11] (SUPERAntiSpyware.com)
S2 AlipaySecSvc; C:\Program Files (x86)\alipay\alieditplus\AlipaySecSvc.exe [512896 2013-09-23] (Alipay Inc. )
S3 ASOVPNHelper; C:\Program Files (x86)\Astrill\ASOvpnSvc.exe [434928 2012-05-25] (Astrill)
S3 ASProxy; C:\Program Files (x86)\Astrill\ASProxy.exe [1918888 2013-02-19] (Astrill)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
S3 GoToAssist Remote Support Customer; C:\Program Files (x86)\Citrix\GoToAssist Remote Support Customer\594\g2ax_service.exe [610376 2013-12-19] (Citrix Online, a division of Citrix Systems, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-09-16] ()

==================== Drivers (Whitelisted) ====================

R3 asvpndrv; C:\Windows\System32\DRIVERS\asvpndrv.sys [31744 2012-02-29] (Astrill)
S1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
S3 Pcouffin64; C:\Windows\System32\Drivers\pcouffin64a.sys [54816 2012-04-02] (VSO Software)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-20 08:45 - 2013-12-20 08:45 - 00000000 ____D C:\Users\Marie-Eve\Desktop\FRST-OlderVersion
2013-12-20 08:44 - 2013-12-20 08:44 - 00000000 ____D C:\Users\Marie-Eve\Desktop\crap
2013-12-20 08:31 - 2013-12-20 08:31 - 00000852 _____ C:\Users\Marie-Eve\Downloads\fixlist.txt
2013-12-19 11:03 - 2013-12-20 08:48 - 00000778 _____ C:\Users\Marie-Eve\Desktop\FRST.txt
2013-12-19 10:47 - 2013-12-19 10:47 - 00030866 _____ C:\Users\Marie-Eve\Downloads\Addition.txt
2013-12-19 10:45 - 2013-12-20 08:45 - 00000000 ____D C:\FRST
2013-12-19 10:45 - 2013-12-19 11:03 - 00059996 _____ C:\Users\Marie-Eve\Downloads\FRST.txt
2013-12-19 10:44 - 2013-12-20 08:45 - 02192957 _____ (Farbar) C:\Users\Marie-Eve\Desktop\FRST64.exe
2013-12-19 02:59 - 2013-12-19 02:59 - 00000000 ____D C:\windows\Sun
2013-12-19 02:48 - 2013-12-19 02:48 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrix
2013-12-19 01:58 - 2013-12-19 01:58 - 00602112 _____ (OldTimer Tools) C:\Users\Marie-Eve\Downloads\OTL.exe
2013-12-19 01:51 - 2013-12-20 08:23 - 00000840 _____ C:\windows\setupact.log
2013-12-19 01:51 - 2013-12-19 01:51 - 00000000 _____ C:\windows\setuperr.log
2013-12-19 00:25 - 2013-12-19 00:25 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\SUPERAntiSpyware.com
2013-12-19 00:24 - 2013-12-20 08:44 - 00001979 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-12-19 00:24 - 2013-12-19 00:25 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-12-19 00:24 - 2013-12-19 00:24 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-12-19 00:23 - 2013-12-19 00:24 - 13670584 _____ (Microsoft Corporation) C:\Users\Marie-Eve\Downloads\mseinstall.exe
2013-12-19 00:22 - 2013-12-19 00:24 - 29067456 _____ (SUPERAntiSpyware) C:\Users\Marie-Eve\Downloads\SUPERAntiSpyware.exe
2013-12-13 15:01 - 2013-12-13 15:01 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\AVG2014
2013-12-13 15:00 - 2013-12-13 15:00 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-12-13 15:00 - 2013-12-13 15:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\TuneUp Software
2013-12-13 14:59 - 2013-12-13 15:01 - 00000000 ____D C:\ProgramData\AVG2014
2013-12-13 14:59 - 2013-12-13 14:59 - 00000000 ___HD C:\$AVG
2013-12-13 14:58 - 2013-12-13 14:58 - 00000000 ____D C:\Program Files (x86)\AVG
2013-12-13 14:54 - 2013-12-19 20:05 - 00000000 ____D C:\ProgramData\MFAData
2013-12-13 14:54 - 2013-12-13 15:03 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Avg2014
2013-12-13 14:54 - 2013-12-13 14:54 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\MFAData
2013-12-13 14:53 - 2013-12-13 14:54 - 04436944 _____ (AVG Technologies) C:\Users\Marie-Eve\Downloads\avg_free_stb_all_2014_4259_cnet.exe
2013-12-12 03:04 - 2013-05-10 13:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2013-12-12 03:04 - 2013-05-10 13:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2013-12-12 03:04 - 2013-05-10 12:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2013-12-12 03:04 - 2013-05-10 12:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2013-12-12 03:03 - 2013-11-26 19:54 - 23183360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-12-12 03:03 - 2013-11-26 18:19 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-12-12 03:03 - 2013-11-26 18:18 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2013-12-12 03:03 - 2013-11-26 17:48 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-12-12 03:03 - 2013-11-26 17:46 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2013-12-12 03:03 - 2013-11-26 17:41 - 02764288 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-12-12 03:03 - 2013-11-26 17:29 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-12-12 03:03 - 2013-11-26 17:27 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-12-12 03:03 - 2013-11-26 17:23 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-12-12 03:03 - 2013-11-26 17:21 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-12-12 03:03 - 2013-11-26 17:18 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2013-12-12 03:03 - 2013-11-26 17:18 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2013-12-12 03:03 - 2013-11-26 17:16 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2013-12-12 03:03 - 2013-11-26 16:57 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-12 03:03 - 2013-11-26 16:38 - 02166784 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-12 03:03 - 2013-11-26 16:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-12-12 03:03 - 2013-11-26 16:32 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-12-12 03:03 - 2013-11-26 16:28 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2013-12-12 03:03 - 2013-11-26 16:02 - 01995264 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-12-12 03:03 - 2013-11-26 15:32 - 01928192 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-12-12 03:03 - 2013-11-26 15:07 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-12 03:03 - 2013-11-26 14:40 - 01395200 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-12 03:03 - 2013-11-26 14:34 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2013-12-12 03:03 - 2013-11-26 14:34 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2013-12-12 03:03 - 2013-11-26 14:33 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-12 03:03 - 2013-11-26 14:27 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-12 03:02 - 2013-11-26 18:11 - 17112576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-12 03:02 - 2013-11-26 16:35 - 05769216 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-12 03:02 - 2013-11-26 16:16 - 04243968 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-12 03:02 - 2013-11-26 15:48 - 12996608 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-12 03:02 - 2013-11-26 15:26 - 11221504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-11 21:29 - 2013-12-18 01:16 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Nataly and Maxim
2013-12-11 13:39 - 2013-12-11 15:39 - 09293192 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2013-12-11 13:31 - 2013-10-30 10:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-11 13:31 - 2013-10-30 10:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-11 13:30 - 2013-11-24 02:26 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-11 13:30 - 2013-11-24 01:47 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-11 13:30 - 2013-10-30 09:24 - 03155968 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-11 13:30 - 2013-10-19 10:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-11 13:30 - 2013-10-19 09:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-11 13:26 - 2013-11-12 10:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2013-12-11 13:26 - 2013-11-12 10:07 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2013-12-11 13:26 - 2013-10-04 10:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2013-12-11 13:26 - 2013-10-04 09:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-11 13:25 - 2013-12-11 13:25 - 00056379 _____ C:\Users\Marie-Eve\Downloads\Enquete - 2013-12-05 - Drogues de syntheses - VFQ HDTV XviD - {bLinKkY}.avi.torrent
2013-12-11 13:25 - 2013-10-12 10:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-11 13:25 - 2013-10-12 10:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-11 13:25 - 2013-10-12 10:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2013-12-11 13:25 - 2013-10-12 10:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-11 13:25 - 2013-10-12 09:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2013-12-11 13:25 - 2013-10-12 09:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-11 13:25 - 2013-10-12 09:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2013-12-11 13:25 - 2013-10-12 09:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-10 12:09 - 2013-12-10 12:09 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup (1).exe
2013-12-10 12:06 - 2013-12-10 12:06 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup.exe
2013-12-05 22:12 - 2013-12-05 22:13 - 00014913 _____ C:\Users\Marie-Eve\Downloads\Louis.Cyr.2013.FRENCH.DVDRiP.X264-HMiDiMADRiDi.avi.torrent
2013-12-03 12:57 - 2013-12-03 12:57 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT (1).torrent
2013-12-03 12:45 - 2013-12-03 12:45 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT.torrent
2013-12-02 18:36 - 2013-12-02 18:36 - 00034278 _____ C:\Users\Marie-Eve\Downloads\jagten-the-hunt_english-708134.zip
2013-12-02 01:00 - 2013-12-02 01:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Conference Client
2013-12-02 00:59 - 2013-12-02 00:59 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Conference Client
2013-12-02 00:58 - 2013-12-02 00:59 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Radvision
2013-12-02 00:57 - 2013-12-02 00:57 - 01024624 _____ (RADVISION Ltd.) C:\Users\Marie-Eve\Downloads\MgrInst.exe
2013-11-28 22:46 - 2013-11-28 22:46 - 00014948 _____ C:\Users\Marie-Eve\Downloads\waytomanag_se_asia_budget_calculator.xlsx
2013-11-27 22:06 - 2013-11-27 22:23 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Jelena
2013-11-27 09:41 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2013-11-27 09:39 - 2013-11-27 09:39 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-11-27 09:39 - 2013-11-27 09:39 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe

==================== One Month Modified Files and Folders =======

2013-12-20 08:48 - 2013-12-19 11:03 - 00000778 _____ C:\Users\Marie-Eve\Desktop\FRST.txt
2013-12-20 08:45 - 2013-12-20 08:45 - 00000000 ____D C:\Users\Marie-Eve\Desktop\FRST-OlderVersion
2013-12-20 08:45 - 2013-12-19 10:45 - 00000000 ____D C:\FRST
2013-12-20 08:45 - 2013-12-19 10:44 - 02192957 _____ (Farbar) C:\Users\Marie-Eve\Desktop\FRST64.exe
2013-12-20 08:44 - 2013-12-20 08:44 - 00000000 ____D C:\Users\Marie-Eve\Desktop\crap
2013-12-20 08:44 - 2013-12-19 00:24 - 00001979 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2013-12-20 08:44 - 2013-10-08 21:22 - 00000993 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-12-20 08:38 - 2013-08-30 13:21 - 00000000 _____ C:\windows\system32\Ikeext.etl
2013-12-20 08:33 - 2009-07-14 12:45 - 00020928 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-20 08:33 - 2009-07-14 12:45 - 00020928 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-20 08:31 - 2013-12-20 08:31 - 00000852 _____ C:\Users\Marie-Eve\Downloads\fixlist.txt
2013-12-20 08:27 - 2012-01-28 18:29 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-12-20 08:27 - 2012-01-28 18:29 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-12-20 08:27 - 2012-01-28 18:18 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-12-20 08:26 - 2012-09-10 08:46 - 00000900 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-20 08:24 - 2012-08-26 12:25 - 00000440 _____ C:\windows\system32\Drivers\etc\hosts.ics
2013-12-20 08:23 - 2013-12-19 01:51 - 00000840 _____ C:\windows\setupact.log
2013-12-20 08:23 - 2009-07-14 13:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-19 22:11 - 2013-08-25 14:44 - 00003930 _____ C:\windows\SysWOW64\ASProxy.ini
2013-12-19 22:11 - 2013-08-25 14:44 - 00002368 _____ C:\windows\SysWOW64\ASProxyOff.ini
2013-12-19 22:11 - 2013-08-25 14:44 - 00002368 _____ C:\windows\system32\ASProxyOff.ini
2013-12-19 20:08 - 2012-01-28 17:35 - 01517801 _____ C:\windows\WindowsUpdate.log
2013-12-19 20:05 - 2013-12-13 14:54 - 00000000 ____D C:\ProgramData\MFAData
2013-12-19 20:01 - 2009-07-14 11:20 - 00000000 ____D C:\windows\tracing
2013-12-19 19:55 - 2012-02-06 11:30 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Skype
2013-12-19 11:04 - 2012-09-10 08:46 - 00000904 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-19 11:03 - 2013-12-19 10:45 - 00059996 _____ C:\Users\Marie-Eve\Downloads\FRST.txt
2013-12-19 10:47 - 2013-12-19 10:47 - 00030866 _____ C:\Users\Marie-Eve\Downloads\Addition.txt
2013-12-19 02:59 - 2013-12-19 02:59 - 00000000 ____D C:\windows\Sun
2013-12-19 02:48 - 2013-12-19 02:48 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citrix
2013-12-19 02:48 - 2012-10-08 08:41 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Citrix
2013-12-19 02:48 - 2012-04-19 02:10 - 00000000 ____D C:\Program Files (x86)\Citrix
2013-12-19 01:58 - 2013-12-19 01:58 - 00602112 _____ (OldTimer Tools) C:\Users\Marie-Eve\Downloads\OTL.exe
2013-12-19 01:53 - 2012-01-28 18:02 - 00000000 ____D C:\ProgramData\Sonic
2013-12-19 01:51 - 2013-12-19 01:51 - 00000000 _____ C:\windows\setuperr.log
2013-12-19 01:39 - 2012-04-08 05:29 - 00000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-12-19 01:36 - 2012-02-15 11:14 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Media Player Classic
2013-12-19 01:34 - 2012-04-09 00:32 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Azureus
2013-12-19 01:34 - 2011-02-23 21:08 - 00000000 ____D C:\windows\Panther
2013-12-19 00:25 - 2013-12-19 00:25 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\SUPERAntiSpyware.com
2013-12-19 00:25 - 2013-12-19 00:24 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2013-12-19 00:24 - 2013-12-19 00:24 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2013-12-19 00:24 - 2013-12-19 00:23 - 13670584 _____ (Microsoft Corporation) C:\Users\Marie-Eve\Downloads\mseinstall.exe
2013-12-19 00:24 - 2013-12-19 00:22 - 29067456 _____ (SUPERAntiSpyware) C:\Users\Marie-Eve\Downloads\SUPERAntiSpyware.exe
2013-12-18 23:11 - 2012-02-04 04:09 - 00000000 ____D C:\Users\Marie-Eve\Documents\My Received Files
2013-12-18 22:39 - 2012-10-25 06:54 - 00000944 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000UA.job
2013-12-18 22:39 - 2012-10-25 06:54 - 00000922 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2444817551-2258911842-2084099832-1000Core.job
2013-12-18 16:46 - 2013-05-22 06:11 - 00003440 _____ C:\windows\System32\Tasks\PCDEventLauncherTask
2013-12-18 13:18 - 2012-02-04 03:28 - 00000000 ____D C:\Users\Marie-Eve
2013-12-18 12:11 - 2009-07-14 13:13 - 00778834 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-18 04:03 - 2013-11-04 22:19 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\vlc
2013-12-18 01:16 - 2013-12-11 21:29 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Nataly and Maxim
2013-12-16 16:07 - 2009-07-14 13:08 - 00032586 _____ C:\windows\Tasks\SCHEDLGU.TXT
2013-12-15 00:49 - 2013-07-21 05:46 - 00000000 ____D C:\windows\system32\MRT
2013-12-15 00:47 - 2012-02-07 20:09 - 90708896 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2013-12-13 22:00 - 2013-10-09 02:13 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\LavasoftStatistics
2013-12-13 21:11 - 2013-10-08 21:08 - 00000000 ___RD C:\Users\Marie-Eve\Desktop\here
2013-12-13 21:11 - 2012-04-01 09:37 - 00000000 ____D C:\windows\Minidump
2013-12-13 18:33 - 2009-07-14 11:20 - 00000000 ____D C:\windows\rescache
2013-12-13 16:53 - 2013-05-22 06:09 - 00000000 ____D C:\Program Files\My Dell
2013-12-13 16:53 - 2012-02-11 00:00 - 00000000 ____D C:\ProgramData\PCDr
2013-12-13 15:03 - 2013-12-13 14:54 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Avg2014
2013-12-13 15:01 - 2013-12-13 15:01 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\AVG2014
2013-12-13 15:01 - 2013-12-13 14:59 - 00000000 ____D C:\ProgramData\AVG2014
2013-12-13 15:00 - 2013-12-13 15:00 - 00000967 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-12-13 15:00 - 2013-12-13 15:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\TuneUp Software
2013-12-13 14:59 - 2013-12-13 14:59 - 00000000 ___HD C:\$AVG
2013-12-13 14:58 - 2013-12-13 14:58 - 00000000 ____D C:\Program Files (x86)\AVG
2013-12-13 14:54 - 2013-12-13 14:54 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\MFAData
2013-12-13 14:54 - 2013-12-13 14:53 - 04436944 _____ (AVG Technologies) C:\Users\Marie-Eve\Downloads\avg_free_stb_all_2014_4259_cnet.exe
2013-12-12 12:41 - 2009-07-14 13:09 - 00000000 ____D C:\windows\System32\Tasks\WPD
2013-12-12 03:23 - 2009-07-14 12:45 - 00465768 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-12 03:04 - 2012-02-04 03:35 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-11 21:09 - 2013-11-14 19:17 - 00000000 ____D C:\Users\Marie-Eve\Desktop\C11
2013-12-11 15:39 - 2013-12-11 13:39 - 09293192 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2013-12-11 15:39 - 2012-04-08 05:29 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 15:39 - 2012-04-08 05:29 - 00003768 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 15:39 - 2012-01-28 17:46 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 13:25 - 2013-12-11 13:25 - 00056379 _____ C:\Users\Marie-Eve\Downloads\Enquete - 2013-12-05 - Drogues de syntheses - VFQ HDTV XviD - {bLinKkY}.avi.torrent
2013-12-10 13:14 - 2012-09-10 08:46 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Google
2013-12-10 12:09 - 2013-12-10 12:09 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup (1).exe
2013-12-10 12:06 - 2013-12-10 12:06 - 00819160 _____ (Google Inc.) C:\Users\Marie-Eve\Downloads\GoogleVoiceAndVideoSetup.exe
2013-12-09 19:43 - 2012-09-10 08:46 - 00003900 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-09 19:43 - 2012-09-10 08:46 - 00003648 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-06 20:07 - 2013-10-17 23:15 - 00000000 ____D C:\Users\Marie-Eve\Desktop\xéna
2013-12-05 22:13 - 2013-12-05 22:12 - 00014913 _____ C:\Users\Marie-Eve\Downloads\Louis.Cyr.2013.FRENCH.DVDRiP.X264-HMiDiMADRiDi.avi.torrent
2013-12-04 16:55 - 2012-04-02 07:03 - 00011264 _____ C:\Users\Marie-Eve\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-12-03 12:57 - 2013-12-03 12:57 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT (1).torrent
2013-12-03 12:45 - 2013-12-03 12:45 - 00045717 _____ C:\Users\Marie-Eve\Downloads\Engrenages.S01.FRENCH.720p.BluRay.x264-JMT.torrent
2013-12-02 22:18 - 2012-09-10 20:07 - 00000000 ____D C:\windows\System32\Tasks\NCH Software
2013-12-02 18:36 - 2013-12-02 18:36 - 00034278 _____ C:\Users\Marie-Eve\Downloads\jagten-the-hunt_english-708134.zip
2013-12-02 01:00 - 2013-12-02 01:00 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Conference Client
2013-12-02 00:59 - 2013-12-02 00:59 - 00000000 ____D C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Conference Client
2013-12-02 00:59 - 2013-12-02 00:58 - 00000000 ____D C:\Users\Marie-Eve\AppData\Local\Radvision
2013-12-02 00:57 - 2013-12-02 00:57 - 01024624 _____ (RADVISION Ltd.) C:\Users\Marie-Eve\Downloads\MgrInst.exe
2013-11-29 17:51 - 2013-03-05 05:13 - 00000000 _____ C:\END
2013-11-29 17:51 - 2012-04-09 00:26 - 00000000 ____D C:\Program Files (x86)\Vuze
2013-11-29 16:03 - 2013-03-05 11:35 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-29 16:03 - 2012-01-28 18:12 - 00000000 ____D C:\ProgramData\Skype
2013-11-28 22:46 - 2013-11-28 22:46 - 00014948 _____ C:\Users\Marie-Eve\Downloads\waytomanag_se_asia_budget_calculator.xlsx
2013-11-28 21:55 - 2013-07-08 00:53 - 00001419 _____ C:\Users\Marie-Eve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-28 11:02 - 2009-07-14 11:20 - 00000000 ____D C:\windows\PolicyDefinitions
2013-11-27 22:23 - 2013-11-27 22:06 - 00000000 ____D C:\Users\Marie-Eve\Desktop\Jelena
2013-11-27 09:39 - 2013-11-27 09:39 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-11-27 09:39 - 2013-11-27 09:39 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-11-27 09:38 - 2013-11-27 09:38 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-11-27 09:38 - 2013-11-27 09:38 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-11-27 09:38 - 2013-11-27 09:38 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-11-27 09:38 - 2013-11-27 09:38 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-11-27 09:38 - 2013-11-27 09:38 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-11-26 19:54 - 2013-12-12 03:03 - 23183360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2013-11-26 18:19 - 2013-12-12 03:03 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2013-11-26 18:18 - 2013-12-12 03:03 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2013-11-26 18:11 - 2013-12-12 03:02 - 17112576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-11-26 17:48 - 2013-12-12 03:03 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2013-11-26 17:46 - 2013-12-12 03:03 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2013-11-26 17:41 - 2013-12-12 03:03 - 02764288 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2013-11-26 17:29 - 2013-12-12 03:03 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2013-11-26 17:27 - 2013-12-12 03:03 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2013-11-26 17:23 - 2013-12-12 03:03 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2013-11-26 17:21 - 2013-12-12 03:03 - 00574976 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2013-11-26 17:18 - 2013-12-12 03:03 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2013-11-26 17:18 - 2013-12-12 03:03 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2013-11-26 17:16 - 2013-12-12 03:03 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2013-11-26 16:57 - 2013-12-12 03:03 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-11-26 16:38 - 2013-12-12 03:03 - 02166784 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-11-26 16:38 - 2013-12-12 03:03 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-11-26 16:35 - 2013-12-12 03:02 - 05769216 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-11-26 16:32 - 2013-12-12 03:03 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-11-26 16:28 - 2013-12-12 03:03 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2013-11-26 16:16 - 2013-12-12 03:02 - 04243968 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-11-26 16:02 - 2013-12-12 03:03 - 01995264 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-11-26 15:48 - 2013-12-12 03:02 - 12996608 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-11-26 15:32 - 2013-12-12 03:03 - 01928192 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-11-26 15:26 - 2013-12-12 03:02 - 11221504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-11-26 15:07 - 2013-12-12 03:03 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-11-26 14:40 - 2013-12-12 03:03 - 01395200 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-11-26 14:34 - 2013-12-12 03:03 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2013-11-26 14:34 - 2013-12-12 03:03 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2013-11-26 14:33 - 2013-12-12 03:03 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-11-26 14:27 - 2013-12-12 03:03 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-11-24 02:26 - 2013-12-11 13:30 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-11-24 01:47 - 2013-12-11 13:30 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-11-23 22:11 - 2013-10-01 14:03 - 00000000 ____D C:\Users\Marie-Eve\Documents\Tencent Files

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-11 11:21

==================== End Of Log ============================
  • 0

#10
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,017 posts
If you haven't already done so please reboot your computer and tell me if it starts normally.
  • 0

Advertisements


#11
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Computer froze after about 10 minutes. Also received a new message on start up about my power adapter. I joined a picture of my screen.

Attached Thumbnails

  • IMG_20131220_092745.jpg

Edited by Meboubou, 19 December 2013 - 07:46 PM.

  • 0

#12
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,017 posts
That screen picture shows what I think is a hardware problem, that is your battery seems not to be charging because the computer can't detect the adapter.

Was the adapter connected?

Also

Turning to my original question, are you able to boot up your computer normally now?
  • 0

#13
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Booting normally was never an issue- it's after 5-10 minutes, everything freezes... So... Yes BUT it freezes after 5-10 minutes.

This message never showed before... adapter is plugged in. I'll check that later or have a tech check the battery/adapter later. There's a computer shop across the road that's called : ''For when people curse at their computers'' :lol: (sadly, when the issue is software, they always turn to formatting instead of trying anything else)
  • 0

#14
emeraldnzl

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,017 posts

Though safemode is a lot more stable and permits me to use my PC 'normally'.


I see, my mistake, I misinterpreted what you mentioned in the quote box above.

Might be an overheating issue although that doesn't entirely explain why it works okay in Safe Mode.

Moving on then

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right click JRT.exe and "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

  • 0

#15
Meboubou

Meboubou

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Having lived in exceptionally hot places, I can say with 100% certainty that over heating is not the issue. It's the first thing I check when something goes wrong. I also have a cooling pad for those times I end up in hot places again...

Following the steps now.

Many thanks for your help, as a college student who relies 100% on her computer for classes, not having a computer is horrible :\
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP