Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

General slowness & Flash Crashes


  • Please log in to reply

#1
Izzy1665

Izzy1665

    Member

  • Member
  • PipPip
  • 49 posts
I posted results on my wifes computer here last night but have not been able to load the "Run Fix" text posted in OTL reply yet. Figured if she buggered hers up, maybe she got mine too even though mine is not acting up the same way hers is. I try to keep her off mine but I also know she needs another PC for extra coupons.

I regularly run AVG, Advanced System Care, and prior to running OTL, I ran the Combofix and ADWCleaner too.

Here are the results of the OTL scan:

OTL logfile created on: 12/21/2013 12:40:35 AM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Living Room\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16750)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.25 Gb Total Physical Memory | 1.31 Gb Available Physical Memory | 40.28% Memory free
6.49 Gb Paging File | 4.38 Gb Available in Paging File | 67.43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 508.38 Gb Total Space | 112.11 Gb Free Space | 22.05% Space Free | Partition Type: NTFS
Drive E: | 205.61 Gb Total Space | 181.73 Gb Free Space | 88.39% Space Free | Partition Type: NTFS
Drive F: | 100.00 Mb Total Space | 36.66 Mb Free Space | 36.66% Space Free | Partition Type: NTFS
Drive Z: | 217.42 Gb Total Space | 105.93 Gb Free Space | 48.72% Space Free | Partition Type: NTFS

Computer Name: LIVINGROOM-PC | User Name: Living Room | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/12/15 23:53:59 | 001,168,896 | ---- | M] (Spotify Ltd) -- C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
PRC - [2013/12/09 22:41:59 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013/12/02 14:22:24 | 002,562,368 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
PRC - [2013/12/01 17:53:58 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Living Room\Downloads\OTL.exe
PRC - [2013/11/30 19:16:16 | 000,223,112 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
PRC - [2013/11/29 14:59:02 | 000,770,368 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
PRC - [2013/11/28 17:56:40 | 000,646,976 | ---- | M] (IOBit) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCAvSvc.exe
PRC - [2013/11/18 21:59:36 | 000,590,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exe
PRC - [2013/11/15 11:25:24 | 000,886,592 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
PRC - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe
PRC - [2013/11/07 22:03:50 | 004,956,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgui.exe
PRC - [2013/11/07 22:00:48 | 000,680,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgemcx.exe
PRC - [2013/10/28 23:24:02 | 000,729,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgrsx.exe
PRC - [2013/10/28 23:17:36 | 000,892,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
PRC - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2013/10/23 14:55:28 | 000,948,440 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2013/10/17 10:29:13 | 000,107,008 | ---- | M] () -- C:\Program Files\Real\RealPlayer\RPDS\Tools\ffmpeg\ffprobe.exe
PRC - [2013/10/17 10:29:09 | 001,418,336 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
PRC - [2013/10/17 10:29:09 | 000,877,664 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
PRC - [2013/10/17 10:29:05 | 000,295,512 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2013/10/09 09:58:16 | 003,275,136 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2013/09/27 12:39:50 | 000,313,120 | ---- | M] (Skillbrains) -- C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
PRC - [2013/09/25 14:48:30 | 000,029,320 | ---- | M] () -- C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
PRC - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe
PRC - [2013/09/23 22:24:58 | 000,039,056 | ---- | M] () -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/07/27 03:51:57 | 014,592,288 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2013/07/27 03:42:15 | 001,028,896 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013/07/27 03:36:26 | 001,889,568 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/06/21 04:52:52 | 000,875,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013/06/21 04:52:51 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2013/06/21 04:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013/06/20 10:29:38 | 000,173,192 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
PRC - [2013/05/13 12:20:52 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files\BlueStacks\HD-LogRotatorService.exe
PRC - [2013/05/13 12:20:32 | 000,393,032 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files\BlueStacks\HD-Service.exe
PRC - [2013/05/13 12:20:28 | 000,366,408 | ---- | M] (BlueStack Systems) -- C:\Program Files\BlueStacks\HD-SharedFolder.exe
PRC - [2013/05/13 12:20:20 | 000,260,424 | ---- | M] (BlueStack Systems) -- C:\Program Files\BlueStacks\HD-BlockDevice.exe
PRC - [2013/05/13 12:20:16 | 000,376,648 | ---- | M] (BlueStack Systems) -- C:\Program Files\BlueStacks\HD-Network.exe
PRC - [2013/05/11 05:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 13:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/03/06 18:29:30 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/10/30 19:10:48 | 000,196,624 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
PRC - [2012/10/23 17:58:52 | 000,120,728 | ---- | M] () -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
PRC - [2012/10/23 17:58:40 | 000,694,168 | ---- | M] () -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
PRC - [2012/02/21 07:53:43 | 003,046,224 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe
PRC - [2011/07/29 14:31:40 | 001,249,064 | ---- | M] () -- C:\ProgramData\TVersity\Media Server\MediaServer.exe
PRC - [2011/07/28 17:06:32 | 008,247,264 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
PRC - [2011/07/28 17:06:20 | 000,297,440 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
PRC - [2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007/05/25 09:41:54 | 000,099,248 | ---- | M] (Lexmark International, Inc.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
PRC - [2007/05/25 09:41:38 | 000,537,520 | ---- | M] ( ) -- C:\Windows\System32\lxddcoms.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/15 18:48:26 | 000,348,992 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\madexcept_.bpl
MOD - [2013/01/15 18:48:26 | 000,051,008 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\maddisAsm_.bpl
MOD - [2013/01/15 18:48:24 | 000,183,616 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\madbasic_.bpl
MOD - [2013/01/15 18:47:56 | 000,893,248 | ---- | M] () -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\webres.dll
MOD - [2012/10/23 17:58:40 | 000,694,168 | ---- | M] () -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
MOD - [2012/02/20 20:29:04 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/02/20 20:28:42 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/07/28 17:06:32 | 008,247,264 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
MOD - [2009/08/28 16:50:18 | 000,282,624 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WifiSvcLib.dll


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe -- (vToolbarUpdater17.2.0)
SRV - [2013/12/20 08:11:42 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/10 22:06:19 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/12/02 10:58:48 | 002,151,232 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
SRV - [2013/11/28 17:56:40 | 000,646,976 | ---- | M] (IOBit) [Auto | Running] -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCAvSvc.exe -- (ASCAntivirusSrv)
SRV - [2013/11/15 11:25:24 | 000,886,592 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe -- (AdvancedSystemCareService7)
SRV - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/10/23 15:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013/10/23 15:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/10/17 10:29:09 | 001,418,336 | ---- | M] (RealNetworks, Inc.) [Auto | Running] -- C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe -- (RealPlayer Desktop Service)
SRV - [2013/10/09 09:58:16 | 003,275,136 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/09/25 14:48:30 | 000,029,320 | ---- | M] () [Auto | Running] -- C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2013/09/23 22:24:58 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/07/27 03:51:57 | 014,592,288 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2013/07/27 03:36:26 | 001,889,568 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/06/21 04:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013/06/20 10:29:38 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe -- (BingDesktopUpdate)
SRV - [2013/05/26 23:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/05/13 12:20:52 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files\BlueStacks\HD-LogRotatorService.exe -- (BstHdLogRotatorSvc)
SRV - [2013/05/13 12:20:32 | 000,393,032 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files\BlueStacks\HD-Service.exe -- (BstHdAndroidSvc)
SRV - [2013/05/11 05:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/02/28 17:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/10/30 19:10:48 | 000,196,624 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe -- (NitroReaderDriverReadSpool3)
SRV - [2012/10/23 17:58:52 | 000,120,728 | ---- | M] () [Auto | Running] -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe -- (Motorola Device Manager)
SRV - [2012/09/25 01:06:14 | 000,195,400 | ---- | M] (NETGEAR) [Auto | Stopped] -- C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe -- (NETGEARGenieDaemon)
SRV - [2012/02/21 07:53:43 | 003,046,224 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe -- (a2AntiMalware)
SRV - [2011/07/29 14:31:40 | 001,249,064 | ---- | M] () [Auto | Running] -- C:\ProgramData\TVersity\Media Server\MediaServer.exe -- (TVersityMediaServer)
SRV - [2011/07/28 17:06:20 | 000,297,440 | ---- | M] () [Auto | Running] -- C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe -- (WSWNA1100)
SRV - [2011/03/07 23:19:23 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/11/20 07:21:36 | 000,351,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2010/03/22 20:05:40 | 000,960,992 | ---- | M] (Atheros Communications, Inc.) [On_Demand | Stopped] -- C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe -- (jswpsapi)
SRV - [2009/07/13 20:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 20:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007/05/25 09:41:54 | 000,099,248 | ---- | M] () [Auto | Running] -- C:\Windows\System32\spool\DRIVERS\W32X86\3\\lxddserv.exe -- (lxddCATSCustConnectService)
SRV - [2007/05/25 09:41:38 | 000,537,520 | ---- | M] ( ) [Auto | Running] -- C:\Windows\System32\lxddcoms.exe -- (lxdd_device)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- system32\DRIVERS\vpcnfltr.sys -- (vpcnfltr)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\myueyqsz.sys -- (myueyqsz)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS -- (MRESP50)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS -- (MREMP50)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\motoandroid.sys -- (motandroidusb)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\LIVING~1\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2013/11/10 15:31:34 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2013/11/05 21:50:48 | 000,120,600 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
DRV - [2013/11/04 21:57:30 | 000,209,176 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2013/10/31 23:00:28 | 000,176,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2013/10/31 22:30:08 | 000,222,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
DRV - [2013/10/24 22:28:32 | 000,147,768 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2013/10/01 00:49:38 | 000,102,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2013/09/27 09:53:06 | 000,104,768 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2013/09/17 00:57:26 | 000,022,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2013/09/10 00:43:20 | 000,027,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2013/08/20 06:02:14 | 000,182,680 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2013/08/20 06:02:14 | 000,084,248 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2013/08/01 15:08:52 | 000,193,848 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2013/06/21 07:02:43 | 009,069,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2013/06/20 19:07:34 | 000,153,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2013/06/20 19:07:34 | 000,136,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2013/06/20 19:07:34 | 000,130,248 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd)
DRV - [2013/06/20 19:07:34 | 000,017,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2013/05/14 14:28:30 | 000,034,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2013/05/13 12:20:38 | 000,063,816 | ---- | M] (BlueStack Systems) [Kernel | Auto | Running] -- C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys -- (BstHdDrv)
DRV - [2013/04/04 13:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/08/23 09:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 09:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012/07/26 06:31:44 | 000,281,344 | ---- | M] (D-vitec) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dvitdcnt.sys -- (D-Vitec)
DRV - [2011/11/02 10:13:28 | 000,034,768 | ---- | M] (Emsi Software GmbH) [File_System | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys -- (a2injectiondriver)
DRV - [2011/11/02 10:13:12 | 000,051,632 | ---- | M] (Emsi Software GmbH) [File_System | On_Demand | Stopped] -- C:\Program Files\Emsisoft Anti-Malware\a2accx86.sys -- (a2acc)
DRV - [2011/07/22 10:35:16 | 000,021,472 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV - [2011/05/19 13:10:34 | 000,017,904 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys -- (A2DDA)
DRV - [2011/01/13 02:17:18 | 000,106,752 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zghsdiag.sys -- (zghsdiag)
DRV - [2010/11/20 07:30:17 | 000,296,064 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vpcvmm.sys -- (vpcvmm)
DRV - [2010/11/20 07:30:17 | 000,172,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vpchbus.sys -- (vpcbus)
DRV - [2010/11/20 07:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 07:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 07:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 05:50:38 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vpcusb.sys -- (vpcusb)
DRV - [2010/11/20 04:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 04:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 04:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/10/11 00:09:00 | 001,564,160 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athur.sys -- (athur)
DRV - [2010/06/01 23:33:42 | 000,049,904 | ---- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2010/05/05 08:40:32 | 000,011,776 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2util32.sys -- (a2util)
DRV - [2009/07/13 19:18:07 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2009/07/13 18:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2008/05/15 02:28:00 | 000,020,384 | ---- | M] (Atheros Communications, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\jswpslwf.sys -- (jswpslwf)
DRV - [2007/04/09 09:50:34 | 000,009,600 | ---- | M] (Waytech Development, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UsbFltr.sys -- (UsbFltr)
DRV - [2006/11/02 07:57:08 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\irsir.sys -- (irsir)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0A 32 E1 B7 2A 7F CD 01 [binary data]
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\SearchScopes,DefaultScope = {E9BBD11B-78CC-4566-A14B-155FB7D9F531}
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\SearchScopes\{442CF095-5D34-49AC-843F-8C19EA99DAFF}: "URL" = http://www.mysearchr...q={searchTerms}
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\SearchScopes\{E9BBD11B-78CC-4566-A14B-155FB7D9F531}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\SearchScopes\DFEF316A7DF840789BE026CF4E2A55C1: "URL" = http://www.google.co...utputEncoding?}
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;192.168.*.*

IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1009\..\SearchScopes,DefaultScope =

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.google.com/ig"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@MagellanGPS.com/CommunicationPlugin: C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2011/08/18 10:14:03 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nielsen/FirefoxTracker: C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll File not found
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=17.0.1.181: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.6.14: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.5.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.5.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.5.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=17.0.1.181: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Users\Living Room\AppData\Local\Roblox\Versions\version-28a069d7dccb4f92\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\CouponNetwork.com/CMDUniversalCouponPrintActivator: C:\Users\LIVING~1\AppData\Roaming\CATALI~2\NPBCSK~1.DLL (Catalina Marketing Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\[email protected]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/07/07 22:07:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/10/17 10:30:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/11/15 16:10:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/11/15 16:10:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.8\extensions\\Components: C:\Program Files\SeaMonkey\components [2012/12/15 06:25:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.8\extensions\\Plugins: C:\Program Files\SeaMonkey\plugins [2013/10/17 10:29:41 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/11/15 16:10:03 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/11/15 16:10:04 | 000,000,000 | ---D | M]

[2011/04/14 19:31:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Extensions
[2013/12/21 00:32:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions
[2013/12/21 00:32:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\4qub62kd.default\extensions
[2013/12/21 00:32:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\t0hqx41u.default\extensions
[2013/11/06 20:55:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions
[2013/06/19 12:02:04 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2013/06/19 12:02:03 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions\[email protected]
[2013/11/06 20:55:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions\staged
[2013/07/08 12:00:14 | 000,017,842 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions\[email protected]
[2013/10/10 10:35:00 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/12/15 10:45:44 | 000,287,503 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2009/07/13 18:11:12 | 000,004,804 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\4qub62kd.default\extensions\[email protected]
[2013/12/21 00:32:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/11/15 16:10:03 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/11/15 16:10:02 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/11/15 16:10:02 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/12/20 08:11:43 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\PROGRAMDATA\AVG SECURE SEARCH\FIREFOXEXT\17.2.0.38
File not found (No name found) -- C:\PROGRAMDATA\CODECCHECK\FIREFOX
[2013/10/17 10:30:25 | 000,000,000 | ---D | M] (RealDownloader) -- C:\PROGRAMDATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT
File not found (No name found) -- C:\USERS\LIVING ROOM\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3Z8PPDUY.DEFAULT-1373299741357\EXTENSIONS\{195A3098-0BD5-4E90-AE22-BA1C540AFD1E}
File not found (No name found) -- C:\USERS\LIVING ROOM\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3Z8PPDUY.DEFAULT-1373299741357\EXTENSIONS\[email protected]
[2013/01/06 12:12:25 | 000,466,944 | ---- | M] (Catalina Marketing Corporation) -- C:\Program Files\mozilla firefox\plugins\NPcol400.dll
[2013/10/17 10:29:25 | 000,124,504 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.msn.com/?...T3DHP&dt=070713
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Windows Live Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Activation Technologies (Enabled) = C:\Windows\system32\Wat\npWatWeb.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - Extension: Angry Birds = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: YouTube = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Swiki = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0\
CHR - Extension: Swiki = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0\.svn\text-base\.svn-base
CHR - Extension: RealPlayer Downloader = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.1_0\
CHR - Extension: Skype Click to Call = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0\
CHR - Extension: Fieldrunners = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0\
CHR - Extension: Advanced SystemCare Surfing Protection = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_1\
CHR - Extension: Google Wallet = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: DivX Plus Web Player HTML5 video = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0\
CHR - Extension: Gmail = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/11/01 09:42:05 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Advanced SystemCare Browser Protection) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001..\Run: [Advanced SystemCare Ultimate] C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe (IObit)
O4 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001..\Run: [LightShot] C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\LightShot.exe ()
O4 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001..\Run: [Spotify] C:\Users\Living Room\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001..\Run: [Spotify Web Helper] C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - HKU\S-1-5-21-21828565-3005677120-1819634571-1009..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\S-1-5-21-21828565-3005677120-1819634571-1009\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra Button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra Button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\cooliris.dll (Cooliris Inc.)
O9 - Extra Button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..Trusted Domains: custhelp.com ([247pearsoned] http in Trusted sites)
O15 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..Trusted Domains: myitlab.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..Trusted Domains: pearsoncmg.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..Trusted Domains: pearsoned.com ([]* in Trusted sites)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{27179872-6506-4CE5-A886-8DC0AECD6550}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\linkscanner - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll (NVIDIA Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/12/21 00:38:19 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/12/21 00:28:17 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/12/18 22:27:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2013/12/18 22:25:21 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2013/12/18 21:24:15 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/12/18 21:24:15 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/12/18 21:24:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/12/18 21:24:14 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/12/18 21:24:12 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013/12/18 21:24:12 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013/12/18 21:24:12 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013/12/18 21:24:11 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013/12/18 21:24:10 | 002,877,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/12/18 21:24:10 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013/12/18 21:23:14 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2013/12/18 21:22:55 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2013/12/18 21:22:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013/12/18 21:22:10 | 002,349,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/12/18 21:21:53 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2013/12/18 21:21:38 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2013/12/18 21:21:38 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2013/12/18 21:03:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2013/12/18 21:03:33 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
[2013/12/18 21:03:32 | 000,000,000 | ---D | C] -- C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
[2013/12/18 21:03:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 7
[2013/12/18 14:43:57 | 000,000,000 | ---D | C] -- C:\Users\Living Room\Desktop\Scanned DD214
[2013/12/15 23:54:12 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Local\Spotify
[2013/12/15 23:53:59 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Roaming\Spotify
[2013/12/14 02:23:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013/12/10 23:21:18 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Local\ElevatedDiagnostics
[2013/12/10 19:42:13 | 000,021,472 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\Windows\System32\drivers\SCMNdisP.sys
[2013/12/10 19:42:13 | 000,020,384 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\jswpslwf.sys
[2013/12/10 19:42:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA1100 Genie
[2013/12/10 19:42:09 | 000,000,000 | ---D | C] -- C:\Program Files\NETGEAR
[2013/12/10 19:36:55 | 000,000,000 | ---D | C] -- C:\Windows\tasks\ImCleanDisabled
[2013/12/09 22:47:47 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013/12/09 22:47:46 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013/12/09 22:47:46 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013/12/09 22:41:59 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013/12/09 22:41:59 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013/12/09 22:41:58 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013/12/09 22:41:58 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013/12/09 22:14:14 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2013/12/09 22:14:14 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2013/12/09 22:11:47 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2013/12/09 22:11:47 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2013/12/09 22:11:17 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2013/12/09 22:11:17 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2013/12/09 22:10:56 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013/12/09 22:10:55 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013/12/09 22:09:59 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013/12/09 22:08:36 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013/12/09 22:08:36 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013/12/09 22:08:17 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013/12/09 22:08:17 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013/12/09 22:08:17 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013/12/09 22:08:17 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013/12/09 22:06:58 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013/12/09 22:03:38 | 000,133,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013/12/09 22:00:34 | 000,024,384 | ---- | C] (IObit) -- C:\Windows\System32\RegistryDefragBootTime.exe
[2013/12/09 21:40:55 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2013/12/09 21:40:54 | 000,000,000 | ---D | C] -- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
[2013/12/09 21:40:40 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2013/12/09 21:40:37 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Roaming\IObit
[2013/12/09 21:40:15 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2013/11/30 20:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\KB824146Scan
[2013/11/26 10:04:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[112 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/12/21 00:46:01 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/12/21 00:46:01 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/12/21 00:45:25 | 000,661,908 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/12/21 00:45:25 | 000,121,826 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/12/21 00:38:51 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/21 00:37:44 | 000,000,501 | ---- | M] () -- C:\Windows\System32\tversity.cookies
[2013/12/21 00:37:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/12/21 00:37:11 | 2615,812,096 | -HS- | M] () -- C:\hiberfil.sys
[2013/12/21 00:21:02 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/21 00:18:34 | 000,048,762 | ---- | M] () -- C:\Users\Living Room\Desktop\jb.jpg
[2013/12/21 00:06:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/12/20 23:48:31 | 000,246,947 | ---- | M] () -- C:\Users\Living Room\Desktop\arpart.png
[2013/12/20 21:43:00 | 000,000,388 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job
[2013/12/20 21:37:00 | 000,000,388 | ---- | M] () -- C:\Windows\tasks\update-sys.job
[2013/12/20 11:36:47 | 000,001,371 | ---- | M] () -- C:\Users\Living Room\Desktop\ROBLOX Studio 2013.lnk
[2013/12/20 08:35:33 | 000,000,171 | ---- | M] () -- C:\Users\Living Room\Desktop\OTL.url
[2013/12/19 16:42:06 | 000,072,477 | ---- | M] () -- C:\Users\Living Room\Desktop\Shim-Jun.png
[2013/12/19 15:02:45 | 000,035,620 | ---- | M] () -- C:\Users\Living Room\Desktop\santahershel.jpg
[2013/12/19 10:32:17 | 000,078,208 | ---- | M] () -- C:\Users\Living Room\Desktop\holoysexybethcheatadmit.png
[2013/12/19 10:10:22 | 003,004,571 | ---- | M] () -- C:\Users\Living Room\Desktop\6 23.png
[2013/12/18 22:36:07 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/12/18 22:14:20 | 000,324,112 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/12/18 21:24:15 | 000,493,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/12/18 21:24:15 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/12/18 21:24:15 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/12/18 21:24:14 | 002,706,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/12/18 21:24:12 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013/12/18 21:24:12 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013/12/18 21:24:12 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013/12/18 21:24:11 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013/12/18 21:24:10 | 002,877,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/12/18 21:24:10 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013/12/18 21:23:14 | 012,625,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2013/12/18 21:22:55 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2013/12/18 21:22:36 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013/12/18 21:22:10 | 002,349,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/12/18 21:21:53 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2013/12/18 21:21:38 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2013/12/18 21:21:38 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2013/12/18 21:13:14 | 000,002,192 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
[2013/12/18 21:03:55 | 000,001,131 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2013/12/18 10:40:43 | 000,005,222 | ---- | M] () -- C:\Users\Living Room\Desktop\lmao.jpg
[2013/12/18 01:22:54 | 000,020,686 | ---- | M] () -- C:\Users\Living Room\Desktop\oh shut up.jpg
[2013/12/18 01:14:05 | 000,010,037 | ---- | M] () -- C:\Users\Living Room\Desktop\STFU.jpg
[2013/12/17 20:14:23 | 000,163,471 | ---- | M] () -- C:\Users\Living Room\Desktop\kaleyscachepic1.jpg
[2013/12/17 20:13:53 | 000,125,750 | ---- | M] () -- C:\Users\Living Room\Desktop\kaleyscachepic.jpg
[2013/12/16 00:44:21 | 002,660,241 | ---- | M] () -- C:\Users\Living Room\Desktop\lotus.png
[2013/12/15 23:54:08 | 000,001,840 | ---- | M] () -- C:\Users\Living Room\Desktop\Spotify.lnk
[2013/12/15 16:14:18 | 662,799,896 | ---- | M] () -- C:\Users\Living Room\Documents\clip0051.avi
[2013/12/15 15:49:15 | 000,644,158 | ---- | M] () -- C:\Users\Living Room\Desktop\Bloodcity 438,497 .jpg
[2013/12/14 09:23:03 | 000,069,195 | ---- | M] () -- C:\Users\Living Room\Desktop\logs.odt
[2013/12/14 02:23:27 | 000,002,130 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/12/13 11:54:32 | 000,056,046 | ---- | M] () -- C:\Users\Living Room\Desktop\geocaching-logo.jpg
[2013/12/10 22:06:18 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013/12/10 22:06:18 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013/12/10 19:42:09 | 000,000,866 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Genie.lnk
[2013/12/10 19:42:09 | 000,000,848 | ---- | M] () -- C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
[2013/12/10 07:28:44 | 000,007,607 | ---- | M] () -- C:\Users\Living Room\AppData\Local\resmon.resmoncfg
[2013/12/09 22:47:47 | 003,969,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013/12/09 22:47:47 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013/12/09 22:47:46 | 003,914,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013/12/09 22:41:59 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013/12/09 22:41:59 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013/12/09 22:41:58 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013/12/09 22:41:58 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013/12/09 22:14:14 | 001,796,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2013/12/09 22:14:14 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2013/12/09 22:11:47 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2013/12/09 22:11:47 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2013/12/09 22:11:17 | 000,656,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2013/12/09 22:11:17 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2013/12/09 22:10:56 | 000,006,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013/12/09 22:10:55 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013/12/09 22:09:59 | 000,434,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013/12/09 22:08:36 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013/12/09 22:08:36 | 000,025,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013/12/09 22:08:17 | 000,295,424 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013/12/09 22:08:17 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013/12/09 22:08:17 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013/12/09 22:08:17 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013/12/09 22:06:58 | 000,102,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013/12/09 22:03:38 | 000,133,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013/12/09 11:59:25 | 041,172,090 | ---- | M] () -- C:\Users\Living Room\Documents\clip0050.avi
[2013/12/08 20:52:18 | 000,003,728 | ---- | M] () -- C:\Program Files\Mozilla Firefoxavg-secure-search.xml
[2013/12/07 23:06:10 | 000,048,024 | ---- | M] () -- C:\Users\Living Room\Desktop\walker [bleep] slap.jpg
[2013/12/06 17:11:37 | 000,025,644 | ---- | M] () -- C:\Users\Living Room\Desktop\urmom.jpg
[2013/12/04 19:49:03 | 000,014,514 | ---- | M] () -- C:\Users\Living Room\Desktop\KALEY.jpg
[2013/12/04 19:47:43 | 000,013,477 | ---- | M] () -- C:\Users\Living Room\Desktop\KALEYS FB.jpg
[2013/12/03 20:23:59 | 000,093,858 | ---- | M] () -- C:\Users\Living Room\Desktop\vcorp stuff.jpg
[2013/12/03 20:23:17 | 000,115,703 | ---- | M] () -- C:\Users\Living Room\Desktop\roundabout#5.jpg
[2013/12/02 11:24:18 | 000,046,243 | ---- | M] () -- C:\Users\Living Room\Desktop\free-cat.jpg
[2013/11/30 20:59:25 | 000,000,925 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/11/27 22:35:13 | 000,075,971 | ---- | M] () -- C:\Users\Living Room\Desktop\2.jpg
[2013/11/26 16:50:01 | 000,001,100 | ---- | M] () -- C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
[2013/11/26 15:28:07 | 000,070,315 | ---- | M] () -- C:\Users\Living Room\Desktop\ROBLOX Studio fb tyler.jpg
[2013/11/25 23:42:18 | 000,017,139 | ---- | M] () -- C:\Users\Living Room\Desktop\nx6stu.jpg
[2013/11/25 11:03:48 | 000,000,188 | ---- | M] () -- C:\Users\Living Room\Desktop\turkey smoker.url
[2013/11/22 13:37:34 | 000,009,507 | ---- | M] () -- C:\Users\Living Room\Desktop\haha.jpg
[2013/11/21 14:55:46 | 000,076,967 | ---- | M] () -- C:\Users\Living Room\Desktop\karma.jpg
[2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[112 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/12/21 00:18:33 | 000,048,762 | ---- | C] () -- C:\Users\Living Room\Desktop\jb.jpg
[2013/12/20 23:48:29 | 000,246,947 | ---- | C] () -- C:\Users\Living Room\Desktop\arpart.png
[2013/12/20 08:35:29 | 000,000,171 | ---- | C] () -- C:\Users\Living Room\Desktop\OTL.url
[2013/12/19 16:41:57 | 000,072,477 | ---- | C] () -- C:\Users\Living Room\Desktop\Shim-Jun.png
[2013/12/19 15:02:31 | 000,035,620 | ---- | C] () -- C:\Users\Living Room\Desktop\santahershel.jpg
[2013/12/19 10:32:16 | 000,078,208 | ---- | C] () -- C:\Users\Living Room\Desktop\holoysexybethcheatadmit.png
[2013/12/19 10:10:21 | 003,004,571 | ---- | C] () -- C:\Users\Living Room\Desktop\6 23.png
[2013/12/18 21:03:55 | 000,001,131 | ---- | C] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk
[2013/12/18 21:03:17 | 000,002,192 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
[2013/12/18 10:40:30 | 000,005,222 | ---- | C] () -- C:\Users\Living Room\Desktop\lmao.jpg
[2013/12/18 01:22:52 | 000,020,686 | ---- | C] () -- C:\Users\Living Room\Desktop\oh shut up.jpg
[2013/12/18 01:13:48 | 000,010,037 | ---- | C] () -- C:\Users\Living Room\Desktop\STFU.jpg
[2013/12/17 20:14:22 | 000,163,471 | ---- | C] () -- C:\Users\Living Room\Desktop\kaleyscachepic1.jpg
[2013/12/17 20:13:50 | 000,125,750 | ---- | C] () -- C:\Users\Living Room\Desktop\kaleyscachepic.jpg
[2013/12/16 00:44:18 | 002,660,241 | ---- | C] () -- C:\Users\Living Room\Desktop\lotus.png
[2013/12/15 23:54:08 | 000,001,840 | ---- | C] () -- C:\Users\Living Room\Desktop\Spotify.lnk
[2013/12/15 23:54:08 | 000,001,826 | ---- | C] () -- C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2013/12/15 16:09:46 | 662,799,896 | ---- | C] () -- C:\Users\Living Room\Documents\clip0051.avi
[2013/12/15 15:49:14 | 000,644,158 | ---- | C] () -- C:\Users\Living Room\Desktop\Bloodcity 438,497 .jpg
[2013/12/14 09:22:53 | 000,069,195 | ---- | C] () -- C:\Users\Living Room\Desktop\logs.odt
[2013/12/14 02:23:27 | 000,002,130 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/12/13 11:52:37 | 000,056,046 | ---- | C] () -- C:\Users\Living Room\Desktop\geocaching-logo.jpg
[2013/12/10 19:42:09 | 000,000,866 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Genie.lnk
[2013/12/10 19:42:09 | 000,000,848 | ---- | C] () -- C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
[2013/12/10 07:13:37 | 000,324,112 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/12/09 11:59:06 | 041,172,090 | ---- | C] () -- C:\Users\Living Room\Documents\clip0050.avi
[2013/12/07 23:05:58 | 000,048,024 | ---- | C] () -- C:\Users\Living Room\Desktop\walker [bleep] slap.jpg
[2013/12/06 17:11:35 | 000,025,644 | ---- | C] () -- C:\Users\Living Room\Desktop\urmom.jpg
[2013/12/04 19:48:52 | 000,014,514 | ---- | C] () -- C:\Users\Living Room\Desktop\KALEY.jpg
[2013/12/04 19:47:54 | 000,013,477 | ---- | C] () -- C:\Users\Living Room\Desktop\KALEYS FB.jpg
[2013/12/03 20:23:57 | 000,093,858 | ---- | C] () -- C:\Users\Living Room\Desktop\vcorp stuff.jpg
[2013/12/03 20:23:08 | 000,115,703 | ---- | C] () -- C:\Users\Living Room\Desktop\roundabout#5.jpg
[2013/12/02 11:24:16 | 000,046,243 | ---- | C] () -- C:\Users\Living Room\Desktop\free-cat.jpg
[2013/11/30 20:59:25 | 000,000,925 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013/11/27 22:35:10 | 000,075,971 | ---- | C] () -- C:\Users\Living Room\Desktop\2.jpg
[2013/11/26 16:50:01 | 000,001,100 | ---- | C] () -- C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
[2013/11/26 15:27:59 | 000,070,315 | ---- | C] () -- C:\Users\Living Room\Desktop\ROBLOX Studio fb tyler.jpg
[2013/11/25 23:42:08 | 000,017,139 | ---- | C] () -- C:\Users\Living Room\Desktop\nx6stu.jpg
[2013/11/25 11:03:41 | 000,000,188 | ---- | C] () -- C:\Users\Living Room\Desktop\turkey smoker.url
[2013/11/22 13:37:32 | 000,009,507 | ---- | C] () -- C:\Users\Living Room\Desktop\haha.jpg
[2013/11/21 14:55:41 | 000,076,967 | ---- | C] () -- C:\Users\Living Room\Desktop\karma.jpg
[2013/09/12 14:49:37 | 000,003,728 | ---- | C] () -- C:\Program Files\Mozilla Firefoxavg-secure-search.xml
[2013/08/06 08:27:51 | 000,001,800 | ---- | C] () -- C:\Users\Living Room\.TransferManager.db
[2013/07/18 12:02:00 | 000,893,239 | ---- | C] () -- C:\Users\Living Room\AppData\Local\a.zip
[2013/07/03 12:08:51 | 000,000,091 | RHS- | C] () -- C:\Windows\System32\CADlink.ini
[2013/07/03 12:07:20 | 000,207,872 | ---- | C] () -- C:\Windows\System32\patchw32.dll
[2013/07/03 12:07:20 | 000,052,474 | ---- | C] () -- C:\Windows\System32\CDLDIB.DRV
[2013/07/03 12:07:16 | 000,084,448 | ---- | C] () -- C:\Windows\System32\PCDLIB.DLL
[2013/06/06 09:04:04 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/06/06 09:04:04 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/06/06 09:04:04 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/06/06 09:04:04 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/06/06 09:04:04 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/04/25 14:22:42 | 000,173,048 | ---- | C] () -- C:\Windows\hpoins46.dat
[2013/04/25 14:22:42 | 000,000,601 | ---- | C] () -- C:\Windows\hpomdl46.dat
[2013/04/18 18:07:00 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2013/04/18 18:06:46 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013/04/18 18:06:46 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013/04/18 18:06:46 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013/04/18 18:06:46 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2013/03/16 00:15:17 | 000,000,632 | RHS- | C] () -- C:\Users\Living Room\ntuser.pol
[2013/01/25 12:24:06 | 000,000,853 | ---- | C] () -- C:\Users\Living Room\AppData\Local\recently-used.xbel
[2013/01/25 12:05:54 | 000,180,624 | ---- | C] () -- C:\Windows\System32\Primomonnt.dll
[2012/10/27 14:12:13 | 000,645,632 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2012/10/27 14:12:13 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2012/10/16 18:19:11 | 000,000,052 | ---- | C] () -- C:\Users\Living Room\jagex_cl_loginapplet_LIVE.dat
[2012/10/16 18:19:11 | 000,000,024 | ---- | C] () -- C:\Users\Living Room\random.dat
[2012/08/20 03:18:30 | 000,602,112 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2012/05/21 23:57:44 | 000,001,056 | ---- | C] () -- C:\Users\Living Room\wxDownloadFast.ini
[2012/03/23 08:27:29 | 000,001,152 | ---- | C] () -- C:\Users\Living Room\AppData\Local\UserProducts.xml
[2012/02/05 14:35:02 | 000,000,051 | ---- | C] () -- C:\Users\Living Room\jagex_cl_runescape_LIVE1.dat
[2012/02/05 14:00:34 | 000,000,032 | ---- | C] () -- C:\Users\Living Room\jagex_cl_runescape_LIVE.dat
[2012/01/24 09:19:27 | 000,070,477 | ---- | C] () -- C:\Users\Living Room\FCAT Test Schedule 2012.pdf
[2012/01/16 19:47:40 | 000,000,616 | ---- | C] () -- C:\Windows\eReg.dat
[2011/12/15 21:43:33 | 000,001,328 | -HS- | C] () -- C:\Users\Living Room\AppData\Local\mtqktr4u2mpa0nks1ulk7p652q8l
[2011/12/15 21:43:33 | 000,001,328 | -HS- | C] () -- C:\ProgramData\mtqktr4u2mpa0nks1ulk7p652q8l
[2011/12/02 23:46:54 | 000,005,632 | ---- | C] () -- C:\Users\Living Room\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/11/04 10:00:17 | 000,356,694 | ---- | C] () -- C:\Users\Living Room\FCAT Practice_GR4_TheRedFox.pdf
[2011/10/28 09:53:35 | 000,242,564 | ---- | C] () -- C:\Users\Living Room\Q2 Intensive Reading Checklist.pdf
[2011/10/28 09:53:15 | 000,287,596 | ---- | C] () -- C:\Users\Living Room\Good Readers_Ten Pegs.pdf
[2011/08/10 21:19:43 | 000,000,053 | ---- | C] () -- C:\ProgramData\lxdd
[2011/05/14 12:59:14 | 000,007,607 | ---- | C] () -- C:\Users\Living Room\AppData\Local\resmon.resmoncfg
[2011/05/06 10:08:31 | 000,020,485 | ---- | C] () -- C:\Users\Living Room\word-wizard.pdf
[2011/05/06 10:08:22 | 000,019,723 | ---- | C] () -- C:\Users\Living Room\story-connector.pdf
[2011/03/18 21:02:32 | 000,000,522 | RHS- | C] () -- C:\ProgramData\ntuser.pol

========== ZeroAccess Check ==========

[2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/12/09 22:04:04 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 20:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:96D0C06F

< End of report >
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
Copy the text in the code box by highlighting and Ctrl + c

:OTL
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe -- (vToolbarUpdater17.2.0)
DRV - File not found [Kernel | System | Stopped] -- system32\DRIVERS\vpcnfltr.sys -- (vpcnfltr)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\myueyqsz.sys -- (myueyqsz)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS -- (MRESP50)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS -- (MREMP50)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\motoandroid.sys -- (motandroidusb)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\LIVING~1\AppData\Local\Temp\catchme.sys -- (catchme)
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-21828565-3005677120-1819634571-1001\..\SearchScopes\{442CF095-5D34-49AC-843F-8C19EA99DAFF}: "URL" = http://www.mysearchr...q={searchTerms}
FF - HKLM\Software\MozillaPlugins\@nielsen/FirefoxTracker: C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\[email protected]
[2009/07/13 18:11:12 | 000,004,804 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\4qub62kd.default\extensions\[email protected]
[2013/11/15 16:10:02 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/12/20 08:11:43 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\PROGRAMDATA\AVG SECURE SEARCH\FIREFOXEXT\17.2.0.38
File not found (No name found) -- C:\PROGRAMDATA\CODECCHECK\FIREFOX
File not found (No name found) -- C:\USERS\LIVING ROOM\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3Z8PPDUY.DEFAULT-1373299741357\EXTENSIONS\{195A3098-0BD5-4E90-AE22-BA1C540AFD1E}
File not found (No name found) -- C:\USERS\LIVING ROOM\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3Z8PPDUY.DEFAULT-1373299741357\EXTENSIONS\ASCSURFINGPROT[email protected]
[2011/12/15 21:43:33 | 000,001,328 | -HS- | C] () -- C:\Users\Living Room\AppData\Local\mtqktr4u2mpa0nks1ulk7p652q8l
[2011/12/15 21:43:33 | 000,001,328 | -HS- | C] () -- C:\ProgramData\mtqktr4u2mpa0nks1ulk7p652q8l

:Commands
[EMPTYFLASH]
[EMPTYJAVA]
[purity]
[Reboot]


then Rightclick on OTL and select Run As Administrator to start. Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the RUN FIX button (NOT THE QUICK SCAN button!) at the top
Let the program run unhindered, OTL will reboot the PC when it is done. Save the log and copy and paste it into a reply.
It appears that Old Timer is now hiding the log in c:\_OTL\MovedFiles\12222013-some number.log so look there if you don't see it.


Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.



Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).
sfc  /scannow

(This will check your critical system files. Does this finish without complaint? IF it says it couldn't fix everything then:

Copy the next two lines:

findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.


Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header to sort things by CPU usage with the big hitters at the top.

Wait a full minute then:

File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.



Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button - Do NOT press the large Start Download button on the upper left!) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Attach the file to your next post.
  • 0

#3
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
Ha, I think I got all of what you requested here.



Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-12-2013 01
Ran by Living Room (administrator) on LIVINGROOM-PC on 22-12-2013 12:35:29
Running from C:\Users\Living Room\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
(IOBit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCAvSvc.exe
(Emsi Software GmbH) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corp.) C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Lexmark International, Inc.) C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
( ) C:\Windows\System32\lxddcoms.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\ProgramData\TVersity\Media Server\MediaServer.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Service.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-Network.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-BlockDevice.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-SharedFolder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Skillbrains) C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
(Spotify Ltd) C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\loggingserver.exe
() C:\Program Files\AVG SafeGuard toolbar\vprot.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\realplay.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\Update\realsched.exe [295512 2013-10-17] (RealNetworks, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [vProt] - C:\Program Files\AVG SafeGuard toolbar\vprot.exe [2471448 2013-12-21] ()
HKLM\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKCU\...\Run: [LightShot] - C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] ()
HKCU\...\Run: [Spotify] - C:\Users\Living Room\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Advanced SystemCare Ultimate] - C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe [2562368 2013-12-02] (IObit)
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_170_Plugin.exe -update plugin [839560 2013-12-10] (Adobe Systems Incorporated)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
AppInit_DLLs: C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [ 2013-07-27] (NVIDIA Corporation)
BootExecute: RegistryDefragBootTime.exeautocheck autochk *

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0A32E1B72A7FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig
URLSearchHook: HKCU - Default Value = {CFBFAE00-17A6-11D0-99CB-00C04FD64497}
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {442CF095-5D34-49AC-843F-8C19EA99DAFF} URL = http://www.mysearchr...q={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg....fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab
Handler: linkscanner - No CLSID Value -
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.2.0\ViProtocol.dll (AVG Secure Search)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357
FF Homepage: hxxp://www.google.com/ig
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.2.0\\npsitesafety.dll (AVG Technologies)
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @MagellanGPS.com/CommunicationPlugin - C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 - C:\Program Files\Virtual Earth 3D\ ()
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nielsen/FirefoxTracker - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll No File
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.6.14 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\Living Room\AppData\Local\Roblox\Versions\version-28a069d7dccb4f92\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: CouponNetwork.com/CMDUniversalCouponPrintActivator - C:\Users\LIVING~1\AppData\Roaming\CATALI~2\NPBCSK~1.DLL (Catalina Marketing Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: Play Pickle TextLinks - C:\Users\Living Room\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]
FF Extension: Geocaching.com GPX Downloader - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\[email protected]
FF Extension: Adblock Plus - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Greasemonkey - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\[email protected]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG2012\Firefox4\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\[email protected]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM\...\Firefox\Extensions: [{1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38

Chrome:
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={3676D089-D678-4B66-9CA8-EB83DE303D18}&mid=d162516e7ece47d6853fd16b2e84a5ca-9a17500a96d428a5cdb8b2643968b9a928fc107f&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=hp
CHR RestoreOnStartup: "hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP&dt=070713", "https://www.google.com/"
CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll No File
CHR Plugin: (AVG Internet Security) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (RealPlayer™ HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks™ Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
CHR Extension: (Angry Birds) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0
CHR Extension: (YouTube) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Swiki) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0
CHR Extension: (RealPlayer Downloader) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.1_0
CHR Extension: (Skype Click to Call) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0
CHR Extension: (Fieldrunners) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0
CHR Extension: (AVG SafeGuard) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.2.0.38_1
CHR Extension: (Google Wallet) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0
CHR Extension: (Gmail) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [gikoeigmfnoggdlhnobkbbbkohiahbko] - C:\Program Files\Swiki\chrome.crx
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM\...\Chrome\Extension: [joflpaafchojilpbjjbebljnikhkdhgf] - C:\ProgramData\wxDfast\joflpaafchojilpbjjbebljnikhkdhgf.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\17.2.0.38\avg.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

========================== Services (Whitelisted) =================

R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [3046224 2012-02-21] (Emsi Software GmbH)
R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe [886592 2013-11-15] (IObit)
R2 ASCAntivirusSrv; C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe [646976 2013-11-28] (IOBit)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 BingDesktopUpdate; C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-05-13] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-05-13] (BlueStack Systems, Inc.)
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151232 2013-12-02] (IObit)
R2 lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [99248 2007-05-25] (Lexmark International, Inc.)
R2 lxdd_device; C:\Windows\system32\lxddcoms.exe [537520 2007-05-25] ( )
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-23] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
S2 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195400 2012-09-25] (NETGEAR)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14592288 2013-07-27] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-09-23] ()
R2 RealPlayer Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1418336 2013-10-17] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [29320 2013-09-25] ()
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
R2 TVersityMediaServer; C:\ProgramData\TVersity\Media Server\MediaServer.exe [1249064 2011-07-29] ()
R2 vToolbarUpdater17.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544 2013-12-21] (AVG Secure Search)
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [297440 2011-07-28] ()

==================== Drivers (Whitelisted) ====================

S3 a2acc; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [51632 2011-11-02] (Emsi Software GmbH)
R1 A2DDA; C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [17904 2011-05-19] (Emsi Software GmbH)
R1 a2injectiondriver; C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [34768 2011-11-02] (Emsi Software GmbH)
R1 a2util; C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [11776 2010-05-05] (Emsi Software GmbH)
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1564160 2010-10-11] (Atheros Communications, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-10] (AVG Technologies)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-05-13] (BlueStack Systems)
S3 D-Vitec; C:\Windows\System32\DRIVERS\dvitdcnt.sys [281344 2012-07-26] (D-vitec)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKslf312406c; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317AE8FF-0FC9-4930-93AB-25652828AF84}\MpKslf312406c.sys [40392 2013-12-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34592 2013-05-14] (NVIDIA Corporation)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21472 2011-07-22] (Windows ® Win 7 DDK provider)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [172416 2010-11-20] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2010-11-20] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [296064 2010-11-20] (Microsoft Corporation)
S3 zghsdiag; C:\Windows\System32\DRIVERS\zghsdiag.sys [106752 2011-01-13] (ZTE Incorporated)
S3 catchme; \??\C:\Users\LIVING~1\AppData\Local\Temp\catchme.sys [x]
S3 motandroidusb; System32\Drivers\motoandroid.sys [x]
S3 MREMP50; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS [x]
S3 MRESP50; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS [x]
S1 myueyqsz; \??\C:\Windows\system32\drivers\myueyqsz.sys [x]
S1 vpcnfltr; system32\DRIVERS\vpcnfltr.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-22 12:35 - 2013-12-22 12:36 - 00032192 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-21 20:51 - 2013-12-21 20:51 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 20:48 - 2013-12-21 20:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\Users\Living Room\AppData\Local\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:24 - 2013-12-21 08:25 - 00003743 _____ C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-21 08:24 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-21 00:37 - 00000388 _____ C:\Windows\PFRO.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000168 _____ C:\Windows\setupact.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:28 - 2013-12-21 00:32 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-20 08:35 - 2013-12-20 08:35 - 00000171 _____ C:\Users\Living Room\Desktop\OTL.url
2013-12-20 08:34 - 2013-12-20 08:33 - 00064830 _____ C:\Users\Living Room\Desktop\Extras.Txt
2013-12-18 23:17 - 2013-12-18 23:43 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:27 - 2013-12-18 22:32 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:25 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:03 - 2013-12-18 21:13 - 00002192 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001131 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 20:54 - 2013-12-18 20:56 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:52 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 14:51 - 2013-12-18 15:03 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:43 - 2013-12-18 14:44 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-15 23:54 - 2013-12-16 02:06 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:53 - 2013-12-21 00:39 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-15 23:51 - 2013-12-15 23:52 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:09 - 2013-12-15 16:14 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 09:22 - 2013-12-14 09:23 - 00069195 _____ C:\Users\Living Room\Desktop\logs.odt
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:20 - 2013-12-11 17:31 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 19:42 - 2013-12-10 19:42 - 00000848 _____ C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2011-07-22 10:35 - 00021472 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\SCMNdisP.sys
2013-12-10 19:42 - 2008-05-15 02:28 - 00020384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\jswpslwf.sys
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:08 - 2013-12-10 08:12 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:13 - 2013-12-18 22:14 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-10 07:12 - 2013-12-18 22:03 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-10 07:11 - 2013-12-18 22:03 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-10 07:11 - 2013-12-18 22:03 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-10 07:11 - 2013-12-18 22:03 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 22:00 - 2013-06-27 18:05 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2013-12-09 21:47 - 2013-12-22 12:21 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\ProductData
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\IObit
2013-12-09 21:40 - 2013-12-18 21:02 - 00000000 ____D C:\Program Files\IObit
2013-12-09 21:40 - 2013-12-09 21:41 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:38 - 2013-12-09 21:39 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:25 - 2013-12-09 17:28 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 10:53 - 2013-12-09 11:09 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-05 23:19 - 2013-12-05 23:24 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-11-30 20:59 - 2013-11-30 20:59 - 00000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url
2013-11-22 12:39 - 2013-12-18 21:01 - 00000138 _____ C:\Users\Living Room\Desktop\Xmas Turkey Orders.txt

==================== One Month Modified Files and Folders =======

2013-12-22 12:36 - 2013-12-22 12:35 - 00032192 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-22 12:21 - 2013-12-09 21:47 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-22 12:21 - 2013-06-06 08:05 - 00000000 ____D C:\Users\Administrator
2013-12-22 12:21 - 2012-05-13 00:21 - 00000000 ____D C:\Users\UpdatusUser.LivingRoom-PC
2013-12-22 12:21 - 2012-02-18 01:19 - 00000000 ____D C:\Users\Mcx1-LIVINGROOM-PC.LivingRoom-PC
2013-12-22 12:21 - 2011-03-22 09:06 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-22 12:21 - 2011-03-18 12:54 - 00000000 ____D C:\Users\Ad
2013-12-22 12:21 - 2011-03-06 19:47 - 00000000 ____D C:\Users\Living Room
2013-12-22 12:06 - 2013-11-01 09:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-22 10:27 - 2013-06-06 09:27 - 01288236 _____ C:\Windows\WindowsUpdate.log
2013-12-22 09:43 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job
2013-12-22 09:37 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-sys.job
2013-12-22 08:23 - 2011-03-07 07:01 - 00000000 ____D C:\ProgramData\MFAData
2013-12-22 00:52 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-22 00:52 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-22 00:00 - 2011-06-04 21:09 - 00583727 _____ C:\Windows\system32\TVersityMediaServer.log
2013-12-21 20:51 - 2013-12-21 20:51 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 20:51 - 2012-07-18 00:01 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-21 20:49 - 2013-12-21 20:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 19:21 - 2011-03-22 09:06 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-21 19:02 - 2012-01-17 23:35 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\.minecraft
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\Users\Living Room\AppData\Local\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:25 - 2013-12-21 08:24 - 00003743 _____ C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-21 08:25 - 2013-12-21 08:24 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-11-15 16:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2013-12-21 07:45 - 2011-03-06 19:50 - 00779306 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:39 - 2013-12-15 23:53 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-21 00:37 - 2013-12-21 00:37 - 00000388 _____ C:\Windows\PFRO.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000168 _____ C:\Windows\setupact.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:37 - 2012-08-20 19:42 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-21 00:37 - 2011-03-08 03:19 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-21 00:37 - 2009-07-13 23:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-21 00:32 - 2013-12-21 00:28 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:32 - 2013-03-14 16:28 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Uniblue
2013-12-21 00:31 - 2013-03-14 16:28 - 00000000 ____D C:\Program Files\Uniblue
2013-12-21 00:26 - 2013-08-27 20:58 - 05155033 _____ (Swearware) C:\Users\Living Room\Downloads\ComboFix.exe
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-20 15:38 - 2013-01-08 18:47 - 00000000 ____D C:\Users\Living Room\AppData\Local\CrashDumps
2013-12-20 14:32 - 2011-03-06 22:00 - 00000000 ____D C:\Windows\Panther
2013-12-20 11:36 - 2013-09-07 13:39 - 00001371 _____ C:\Users\Living Room\Desktop\ROBLOX Studio 2013.lnk
2013-12-20 11:36 - 2013-09-05 16:52 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2013-12-20 08:35 - 2013-12-20 08:35 - 00000171 _____ C:\Users\Living Room\Desktop\OTL.url
2013-12-20 08:33 - 2013-12-20 08:34 - 00064830 _____ C:\Users\Living Room\Desktop\Extras.Txt
2013-12-19 01:20 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\rescache
2013-12-19 01:05 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-12-19 00:38 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-12-18 23:43 - 2013-12-18 23:17 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:36 - 2012-01-02 21:18 - 00001945 _____ C:\Windows\epplauncher.mif
2013-12-18 22:35 - 2013-07-07 18:41 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-18 22:32 - 2013-12-18 22:27 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:14 - 2013-12-10 07:13 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-18 22:03 - 2013-12-10 07:12 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-18 22:03 - 2013-12-10 07:11 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-18 22:03 - 2013-12-10 07:11 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-18 22:03 - 2013-12-10 07:11 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-18 21:27 - 2011-09-02 08:27 - 00000000 ____D C:\Windows\Minidump
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:13 - 2013-12-18 21:03 - 00002192 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\ProductData
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\IObit
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001131 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 21:02 - 2013-12-09 21:40 - 00000000 ____D C:\Program Files\IObit
2013-12-18 21:01 - 2013-11-22 12:39 - 00000138 _____ C:\Users\Living Room\Desktop\Xmas Turkey Orders.txt
2013-12-18 20:56 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:54 - 2013-12-18 20:52 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 15:03 - 2013-12-18 14:51 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:44 - 2013-12-18 14:43 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-18 14:44 - 2013-08-26 15:59 - 00000000 ____D C:\Users\Living Room\Desktop\homework
2013-12-18 14:43 - 2013-10-06 17:13 - 00000000 ____D C:\Users\Living Room\Desktop\Tyler stuff
2013-12-18 14:28 - 2011-05-29 11:46 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\vlc
2013-12-16 02:06 - 2013-12-15 23:54 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:52 - 2013-12-15 23:51 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:14 - 2013-12-15 16:09 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 09:23 - 2013-12-14 09:22 - 00069195 _____ C:\Users\Living Room\Desktop\logs.odt
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-14 02:23 - 2011-03-22 09:06 - 00000000 ____D C:\Program Files\Google
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:31 - 2013-12-11 17:20 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 23:21 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\NDF
2013-12-10 22:06 - 2013-11-01 09:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-12-10 22:06 - 2013-11-01 09:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-12-10 19:42 - 2013-12-10 19:42 - 00000848 _____ C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2012-01-16 19:47 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:12 - 2013-12-10 08:08 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:28 - 2011-05-14 12:59 - 00007607 _____ C:\Users\Living Room\AppData\Local\resmon.resmoncfg
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:19 - 2011-05-15 20:54 - 00000000 ___RD C:\Users\Living Room\Virtual Machines
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:05 - 2011-10-02 08:16 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:41 - 2013-12-09 21:40 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:41 - 2011-06-03 13:10 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Apple Computer
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:39 - 2013-12-09 21:38 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:28 - 2013-12-09 17:25 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 11:09 - 2013-12-09 10:53 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-08 20:52 - 2013-09-12 14:49 - 00003728 _____ C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2013-12-05 23:24 - 2013-12-05 23:19 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-12-01 14:42 - 2011-03-07 23:25 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-30 20:59 - 2013-11-30 20:59 - 00000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-30 20:59 - 2012-05-01 12:46 - 00000000 ____D C:\Program Files\CCleaner
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url

Files to move or delete:
====================
C:\Users\Ad\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_loginapplet_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE1.dat
C:\Users\Living Room\random.dat


Some content of TEMP:
====================
C:\Users\Living Room\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 02:16

==================== End Of Log ============================















Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-12-2013 01
Ran by Living Room at 2013-12-22 12:36:49
Running from C:\Users\Living Room\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: Advanced SystemCare Ultimate (Enabled - Up to date) {1C304DC4-1D72-5DB9-B33A-43B638ECFD30}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 6.1.2)
7-zip v9.20 (Version: v9.20)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Adobe Shockwave Player 12.0 (Version: 12.0.5.146)
Advanced SystemCare Ultimate 7 (Version: 7.0.1)
Aimersoft Video Studio Express(Build 1.2.1.29)
A-PDF Merger
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.3.13 (Unicode)
AVG 2014 (Version: 14.0.3658)
AVG 2014 (Version: 14.0.4259)
AVG 2014 (Version: 2014.0.4259)
AVG SafeGuard toolbar (Version: 17.2.0.38)
Backup Assistant Plus
Bing Desktop (Version: 1.3.171.0)
Bing Maps 3D (Version: 4.0.903.16005)
bitRipper (Version: 1.31)
BlueStacks App Player (Version: 0.7.12.896)
BlueStacks Notification Center (Version: 0.7.12.896)
Bonjour (Version: 3.0.0.10)
Canon MP Navigator EX 3.0
Canon MP250 series MP Drivers
Catalina Savings Printer (Version: 1.0.0)
CCleaner (Version: 4.08)
Cheat Engine 6.3
Combined Community Codec Pack 2011-11-11 (Version: 2011.11.11.0)
Computer Requirements 1.0
Cooliris for Internet Explorer (Version: 1.11.7.32046)
Coupon Printer for Windows (Version: 5.0.0.3)
D3DX10 (Version: 15.4.2368.0902)
DebugMode Wax 2.0
DiskAid 5.14 (Version: 5.14)
DivX Setup (Version: 2.6.1.44)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
DVD Shrink 3.2
DVDFab 8.2.2.0 (16/11/2012) Qt
Emsisoft Anti-Malware (Version: 6.0)
Eraser 6.0.9.2343 (Version: 6.0.2343)
FastStone Image Viewer 4.6 (Version: 4.6)
ffdshow [rev 2527] [2008-12-19] (Version: 1.0)
FlashFXP v4.1 (Version: 4.1.7.1688)
FrostWire 5.6.2 (Version: 5.6.2.1)
Frostwire Toolbar (Version: 12.7.0.2072)
GimpShop 2.8 (Version: 2.8)
Google Chrome (Version: 31.0.1650.63)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
Groundspeak Wherigo Builder (Version: 2.0.5129)
HiJackThis (Version: 1.0.0)
HP Photosmart D110 All-In-One Driver 14.0 Rel. 7 (Version: 14.0)
HyperCam 2 (Version: 2.25.01)
Hyperionics DB Toolbar
ieSpell (Version: 2.6.4 (build 573))
ImgBurn (Version: 2.5.7.0)
inSSIDer (Version: 2.1.1)
Internet TV for Windows Media Center (Version: 4.2.2.0)
IObit Uninstaller (Version: 3.0.4.1099)
iTunes (Version: 11.0.1.12)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Juniper Networks Host Checker (HKCU Version: 6.5.0.17087)
Juniper Networks Setup Client (HKCU Version: 2.1.6.9079)
Junk Mail filter update (Version: 16.4.3505.0912)
Kidzui
K-Lite Codec Pack 7.7.0 (Basic) (Version: 7.7.0)
LearnCNC Game (Version: 1.0.0)
Lexmark 2500 Series
lightshot-4.4.2.10 (Version: 4.4.2.10)
Magellan Communicator (Version: 1.15.020)
Magical Jelly Bean KeyFinder (Version: 2.0.9.8)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Maxthon 3 (Version: )
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Camera Codec Pack (Version: 16.4.1620.0719)
Microsoft Office Excel Viewer (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Works 6-9 Converter (Version: 9.7.0621)
MotoHelper MergeModules (Version: 1.2.0)
Movie Maker (Version: 16.4.3505.0912)
Moyea FLV Editor Lite version: 1.1.1.846
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Netflix in Windows Media Center (Version: 3.3.101.0)
NETGEAR Genie (Version: 2.2.27.1 )
NETGEAR WNA1100 N150 Wireless USB Adapter (Version: 1.0.0.133)
Network (Version: 140.0.212.000)
Nitro Reader 3 (Version: 3.0.6.3)
NVIDIA 3D Vision Controller Driver 320.49 (Version: 320.49)
NVIDIA 3D Vision Driver 320.49 (Version: 320.49)
NVIDIA Control Panel 320.49 (Version: 320.49)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA GeForce Experience 1.6 (Version: 1.6)
NVIDIA Graphics Driver 320.49 (Version: 320.49)
NVIDIA Install Application (Version: 2.1002.131.854)
NVIDIA PhysX (Version: 9.13.0604)
NVIDIA PhysX System Software 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.2049)
NVIDIA Update 7.2.17 (Version: 7.2.17)
NVIDIA Update Components (Version: 7.2.17)
NVIDIA Virtual Audio 1.2.1 (Version: 1.2.1)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Paltalk Messenger 10.4 (Version: 10.4.0)
PDF Printer for Windows 7
PDF Split And Merge Basic (Version: 2.2.2)
Photo Gallery (Version: 16.4.3505.0912)
PrimoPDF -- brought to you by Nitro PDF Software (Version: 5)
PrinterShare 2.3.06 (Version: 2.3.6.0)
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
PVSonyDll (Version: 1.00.0001)
QuickTime (Version: 7.73.80.64)
RealDownloader (Version: 1.5.1)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealUpgrade 1.1 (Version: 1.1.0)
Rekeysoft Windows Password Recovery Standard Trial 5.3.0.0
ROBLOX Player
ROBLOX Player for Living Room
ROBLOX Studio 2013 for Living Room
Samsung Kies (Version: 2.5.3.13043_14)
Samsung Story Album Viewer (Version: 1.0.0.13054_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
Scan (Version: 140.0.77.000)
Scholastic eReader Support Files (Version: 1.1.5010)
SDFormatter (Version: 3.1.0)
SeaMonkey (2.8) (Version: 2.8 (en-US))
SHIELD Streaming (Version: 1.05.19)
SignLab 9.1 Online Trial (E:\CADlink\SignLab 9.1 Trial) (Version: 9.1 Demo)
Skype Click to Call (Version: 6.13.13771)
Skype 6.3 (Version: 6.3.105)
Spotify (HKCU Version: 0.9.6.81.gd359a796)
Storia (Version: 1.1.5010)
Surfing Protection (Version: 1.0)
Swiki version 1.0 (Version: 1.0)
Swiki_IE (Version: 1.0.0.0)
swMSM (Version: 12.0.0.1)
Toolbox (Version: 140.0.424.000)
TVersity Codec Pack 1.7 (Version: 1.7)
TVersity Media Server 1.9.7 (Version: 1.9.7)
TweakNow PowerPack 2012 (Version: 4.1.0)
Unity Web Player (HKCU Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
UpdateService (Version: 1.0.0)
Urwigo (HKCU Version: 1.12.0.135)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Visual Production Manager OnlineTrial (E:\CADlink\SignLab 9.1 Trial\VPM Trial) (Version: 5.01.00)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.0.2 (Version: 2.0.2)
War Thunder Launcher 1.0.1.269
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Mail (Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
Windows Live Writer (Version: 16.4.3505.0912)
Windows Live Writer Resources (Version: 16.4.3505.0912)
Windows Media Center Add-in for Flash (Version: 4.1.2.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows XP Mode (Version: 1.3.7600.16423)
WinHTTrack Website Copier 3.44-1 (Version: 3.44.1)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
Wizard101 (Version: 1.0.0)
World of Tanks v.0.6.3.11
Xiph.Org Open Codecs 0.85.17777 (Version: 0.85.17777)
Xvid Video Codec (Version: 1.3.2)

==================== Restore Points =========================

15-12-2013 06:47:15 Windows Update
19-12-2013 02:20:31 Windows Modules Installer
19-12-2013 03:25:56 Windows Update
19-12-2013 04:09:35 Windows Update
19-12-2013 04:11:53 Windows Update
22-12-2013 05:48:55 Windows Update

==================== Hosts content: ==========================

2009-07-13 21:04 - 2013-11-01 09:42 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {04125BE3-D425-4E2A-81D5-931F58C6E8A8} - System32\Tasks\Maxthon Update => C:\Program Files\Maxthon3\Bin\MxUp.exe [2012-05-29] (Maxthon International ltd.)
Task: {0E18BE3C-290B-427E-9033-A140BF5BE35F} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {13E793C4-9395-4ADF-B591-627151782413} - System32\Tasks\Divx online update program => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-02-12] ()
Task: {1974EA6D-B7A0-4D7C-996D-731B8AFCC7DC} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {19F17239-5DB2-4FEA-8F7F-2604C320B04A} - System32\Tasks\Real Player online update program => C:\Program Files\Real\RealPlayer\Update\realsched.exe [2013-10-17] (RealNetworks, Inc.)
Task: {1AE86625-6A52-479B-AF2C-05C277E928F9} - System32\Tasks\ASC7_PerformanceMonitor => C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe [2013-11-29] (IObit)
Task: {1CE4D6BC-A7B2-4A09-811D-2FDBADB39D24} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {22EC669B-ECA4-4F1F-B94C-A0F51724B6E7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {3C62129F-94BF-4FA0-B5B5-2BE86CEACD8C} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [2013-09-23] (RealNetworks, Inc.)
Task: {469DFA48-BB21-4161-970F-574DB65EC6D1} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {58B8488A-4A96-4CC7-917F-EAE7EB0B9FA1} - System32\Tasks\ASC7U_SkipUac_Living Room => C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASC.exe [2013-12-02] (IObit)
Task: {64B323E3-B85B-4309-82CF-28B29051C797} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {676E793A-7563-466A-8CA9-B6B87B1456A3} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {71F83728-E7F5-478A-87DC-D4E42A313A54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-22] (Google Inc.)
Task: {917EE8F3-8271-4E2F-8195-8827B137AB60} - System32\Tasks\Swiki_Checker => C:\Windows\SChecker\SC_li.exe [2012-10-16] ( )
Task: {972EAE5E-D165-454C-9825-8F83FAFCF409} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {A3B86272-34C0-425D-830B-FAA453C67517} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-09-23] (RealNetworks, Inc.)
Task: {ADFBA577-04D5-41BA-B52E-79B959499AC8} - System32\Tasks\update-sys => C:\Program Files\Skillbrains\Updater\Updater.exe [2013-09-27] ()
Task: {AE1DDD14-0434-47CC-AF0B-8F2A009895A7} - System32\Tasks\Adobe online update program => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {C79E8CD1-CEC8-4E24-8A08-AE900FA835F6} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-LIVINGROOM-PC => C:\Windows\ehome\McxTask.exe [2009-07-13] (Microsoft Corporation)
Task: {D6F82FBB-11EC-4E5B-A03E-B4F3ADD4BFA9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-03-22] (Google Inc.)
Task: {D8AD5F73-88D0-4C0C-837B-59305F2EF3E2} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {E153A904-B0C9-4B9A-9C60-1DC819BB9E1B} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {E4EBDFF8-6AA6-490B-8A14-A765A3C6E4CD} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003 => C:\Program Files\Real\RealUpgrade\realupgrade.exe [2013-09-25] (RealNetworks, Inc.)
Task: {E9986AA7-C1F0-4F38-80FD-4B79B8065FAA} - System32\Tasks\{483B03F0-3A20-4A75-8DA2-916335D22D1F} => Firefox.exe http://ui.skype.com/...e=tsProgressBar
Task: {F092F3E0-2932-4FD0-98F5-D2F7C3DE8A66} - System32\Tasks\Alarm Clock
Task: {F24AF050-3514-483F-94BA-5953B1D4FFD7} - System32\Tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\Skillbrains\Updater\Updater.exe [2013-09-27] ()
Task: {F65E05E2-1B02-4307-B919-892F5DF2F344} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {F8201D7B-FDB5-47ED-932C-794AB0BF5E64} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-09-23] (RealNetworks, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job => C:\Program Files\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files\Skillbrains\Updater\Updater.exe

==================== Loaded Modules (whitelisted) =============

2012-02-20 20:29 - 2012-02-20 20:29 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 20:28 - 2012-02-20 20:28 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-18 21:03 - 2013-01-15 18:48 - 00348992 _____ () C:\Program Files\IObit\Advanced SystemCare Ultimate 7\madExcept_.bpl
2013-12-18 21:03 - 2013-01-15 18:48 - 00183616 _____ () C:\Program Files\IObit\Advanced SystemCare Ultimate 7\madBasic_.bpl
2013-12-18 21:03 - 2013-01-15 18:48 - 00051008 _____ () C:\Program Files\IObit\Advanced SystemCare Ultimate 7\madDisAsm_.bpl
2013-12-18 21:03 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files\IObit\Advanced SystemCare Ultimate 7\webres.dll
2013-12-10 19:42 - 2009-08-28 16:50 - 00282624 _____ () C:\Program Files\NETGEAR\WNA1100\WifiSvcLib.dll
2013-12-21 08:24 - 2013-12-21 08:24 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\log4cplusU.dll
2013-11-15 16:10 - 2013-12-20 08:11 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2013-10-17 10:29 - 2013-10-17 10:29 - 00565856 _____ () C:\Program Files\Real\RealPlayer\RPDS\Lib\r1api.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:96D0C06F

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/22/2013 00:48:55 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-21828565-3005677120-1819634571-1001.bak). hr = 0x80070539, The security ID structure is invalid.
.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {6fa277b1-676f-4792-922a-73b0f0f7b0a2}

Error: (12/21/2013 00:37:32 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]

Error: (12/21/2013 00:37:28 AM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]

Error: (12/21/2013 00:34:12 AM) (Source: Application Error) (User: )
Description: Faulting application name: ASCService.exe, version: 7.0.0.14, time stamp: 0x52858515
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0x00000000
Fault offset: 0x00000000
Faulting process id: 0x3bc
Faulting application start time: 0xASCService.exe0
Faulting application path: ASCService.exe1
Faulting module path: ASCService.exe2
Report Id: ASCService.exe3

Error: (12/20/2013 03:38:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 26.0.0.5087, time stamp: 0x52a0d293
Faulting module name: NPSWF32_11_9_900_170.dll, version: 11.9.900.170, time stamp: 0x529b7bf8
Exception code: 0x80000003
Fault offset: 0x00345cdd
Faulting process id: 0x21b58
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (12/18/2013 11:11:53 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-21828565-3005677120-1819634571-1001.bak). hr = 0x80070539, The security ID structure is invalid.
.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {08c2f8cb-81b6-418a-88b4-2604a728bd60}

Error: (12/18/2013 11:09:35 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-21828565-3005677120-1819634571-1001.bak). hr = 0x80070539, The security ID structure is invalid.
.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {08c2f8cb-81b6-418a-88b4-2604a728bd60}

Error: (12/18/2013 10:41:06 PM) (Source: MsiInstaller) (User: LivingRoom-PC)
Description: Product: Microsoft Office Word Viewer 2003 - Update 'Security Update for Word Viewer (KB2817683): WORDVIEW' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft....k/?LinkId=23127

Error: (12/18/2013 10:41:04 PM) (Source: MsiInstaller) (User: LivingRoom-PC)
Description: Product: Microsoft Office Word Viewer 2003 -- Error 1310. Error writing to file: C:\Windows\Installer\c559e.msp. System error 5. Verify that you have access to that directory.

Error: (12/18/2013 10:32:56 PM) (Source: MsiInstaller) (User: LivingRoom-PC)
Description: Product: Microsoft Office Excel Viewer - Update 'Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition ' could not be installed. Error code 1603. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft....k/?LinkId=23127


System errors:
=============
Error: (12/21/2013 00:38:57 AM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service terminated unexpectedly. It has done this 1 time(s).

Error: (12/21/2013 00:37:56 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
vpcnfltr

Error: (12/21/2013 00:37:39 AM) (Source: Service Control Manager) (User: )
Description: The vToolbarUpdater17.2.0 service failed to start due to the following error:
%%2

Error: (12/21/2013 00:37:28 AM) (Source: Service Control Manager) (User: )
Description: The NETGEARGenieDaemon service failed to start due to the following error:
%%1053

Error: (12/21/2013 00:37:28 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the NETGEARGenieDaemon service to connect.

Error: (12/21/2013 00:27:37 AM) (Source: Service Control Manager) (User: )
Description: The TVersity Media Server service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.

Error: (12/21/2013 00:27:35 AM) (Source: Service Control Manager) (User: )
Description: The Skype C2C Service service terminated unexpectedly. It has done this 1 time(s).

Error: (12/18/2013 10:42:40 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Word Viewer (KB2817683).

Error: (12/18/2013 10:33:01 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office 2007 suites (KB2597973).

Error: (12/18/2013 10:31:45 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.165.116.0

Update Source: %NT AUTHORITY59

Update Stage: 4.2.0223.00

Source Path: 4.2.0223.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608


Microsoft Office Sessions:
=========================
Error: (12/22/2013 00:48:55 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-21828565-3005677120-1819634571-1001.bak)0x80070539, The security ID structure is invalid.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {6fa277b1-676f-4792-922a-73b0f0f7b0a2}

Error: (12/21/2013 00:37:32 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]

Error: (12/21/2013 00:37:28 AM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]

Error: (12/21/2013 00:34:12 AM) (Source: Application Error)(User: )
Description: ASCService.exe7.0.0.1452858515unknown0.0.0.00000000000000000000000003bc01cefc6865cecde8C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exeunknown8513809b-6a01-11e3-9076-002268604c39

Error: (12/20/2013 03:38:04 PM) (Source: Application Error)(User: )
Description: plugin-container.exe26.0.0.508752a0d293NPSWF32_11_9_900_170.dll11.9.900.170529b7bf88000000300345cdd21b5801cefdbb7ae1491cC:\Program Files\Mozilla Firefox\plugin-container.exeC:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll9f9bfd3c-69b6-11e3-9076-002268604c39

Error: (12/18/2013 11:11:53 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-21828565-3005677120-1819634571-1001.bak)0x80070539, The security ID structure is invalid.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {08c2f8cb-81b6-418a-88b4-2604a728bd60}

Error: (12/18/2013 11:09:35 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-21828565-3005677120-1819634571-1001.bak)0x80070539, The security ID structure is invalid.


Operation:
OnIdentify event
Gathering Writer Data

Context:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {08c2f8cb-81b6-418a-88b4-2604a728bd60}

Error: (12/18/2013 10:41:06 PM) (Source: MsiInstaller)(User: LivingRoom-PC)
Description: Microsoft Office Word Viewer 2003Security Update for Word Viewer (KB2817683): WORDVIEW1603(NULL)(NULL)(NULL)

Error: (12/18/2013 10:41:04 PM) (Source: MsiInstaller)(User: LivingRoom-PC)
Description: Product: Microsoft Office Word Viewer 2003 -- Error 1310. Error writing to file: C:\Windows\Installer\c559e.msp. System error 5. Verify that you have access to that directory.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/18/2013 10:32:56 PM) (Source: MsiInstaller)(User: LivingRoom-PC)
Description: Microsoft Office Excel ViewerSecurity Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition 1603(NULL)(NULL)(NULL)


CodeIntegrity Errors:
===================================
Date: 2012-08-22 01:03:37.106
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-22 01:03:37.059
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-22 01:03:37.013
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-22 01:03:36.960
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-22 01:03:36.909
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-21 03:43:16.845
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-21 03:43:16.792
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-21 03:43:16.742
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-21 03:43:16.697
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.

Date: 2012-08-21 03:43:16.647
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Spybot - Search & Destroy 2\pcrelib.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 70%
Total physical RAM: 3326.18 MB
Available physical RAM: 982.39 MB
Total Pagefile: 6650.65 MB
Available Pagefile: 3564.34 MB
Total Virtual: 2047.88 MB
Available Virtual: 1895.41 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:508.38 GB) (Free:110.51 GB) NTFS
Drive e: (Movies) (Fixed) (Total:205.61 GB) (Free:181.73 GB) NTFS
Drive f: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive g: (PENDRIVE) (Removable) (Total:14.4 GB) (Free:3.19 GB) FAT32
Drive z: (backup) (Fixed) (Total:217.42 GB) (Free:105.9 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: B4872B98)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=508 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=217 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=206 GB) - (Type=OF Extended)

========================================================
Disk: 1 (Size: 14 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=14 GB) - (Type=0C)

==================== End Of Log ============================



junk.txt

2013-12-22 17:24:48, Info CSI 00000009 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:24:48, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2013-12-22 17:24:53, Info CSI 0000000c [SR] Verify complete
2013-12-22 17:24:53, Info CSI 0000000d [SR] Verifying 100 (0x00000064) components
2013-12-22 17:24:53, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2013-12-22 17:24:57, Info CSI 00000010 [SR] Verify complete
2013-12-22 17:24:57, Info CSI 00000011 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:24:57, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:02, Info CSI 00000014 [SR] Verify complete
2013-12-22 17:25:02, Info CSI 00000015 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:02, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:05, Info CSI 00000018 [SR] Verify complete
2013-12-22 17:25:05, Info CSI 00000019 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:05, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:08, Info CSI 0000001c [SR] Verify complete
2013-12-22 17:25:08, Info CSI 0000001d [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:08, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:10, Info CSI 00000020 [SR] Verify complete
2013-12-22 17:25:10, Info CSI 00000021 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:10, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:13, Info CSI 00000024 [SR] Verify complete
2013-12-22 17:25:13, Info CSI 00000025 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:13, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:17, Info CSI 00000028 [SR] Verify complete
2013-12-22 17:25:17, Info CSI 00000029 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:17, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:21, Info CSI 0000002c [SR] Verify complete
2013-12-22 17:25:21, Info CSI 0000002d [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:21, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:24, Info CSI 00000030 [SR] Verify complete
2013-12-22 17:25:24, Info CSI 00000031 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:24, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:28, Info CSI 00000034 [SR] Verify complete
2013-12-22 17:25:28, Info CSI 00000035 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:28, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:32, Info CSI 00000038 [SR] Verify complete
2013-12-22 17:25:32, Info CSI 00000039 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:32, Info CSI 0000003a [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:36, Info CSI 0000003c [SR] Verify complete
2013-12-22 17:25:36, Info CSI 0000003d [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:36, Info CSI 0000003e [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:39, Info CSI 00000040 [SR] Verify complete
2013-12-22 17:25:39, Info CSI 00000041 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:39, Info CSI 00000042 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:44, Info CSI 00000044 [SR] Verify complete
2013-12-22 17:25:44, Info CSI 00000045 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:44, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:50, Info CSI 00000049 [SR] Verify complete
2013-12-22 17:25:50, Info CSI 0000004a [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:50, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2013-12-22 17:25:56, Info CSI 0000004f [SR] Verify complete
2013-12-22 17:25:56, Info CSI 00000050 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:25:56, Info CSI 00000051 [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:01, Info CSI 00000054 [SR] Verify complete
2013-12-22 17:26:01, Info CSI 00000055 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:01, Info CSI 00000056 [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:07, Info CSI 0000005a [SR] Verify complete
2013-12-22 17:26:07, Info CSI 0000005b [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:07, Info CSI 0000005c [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:16, Info CSI 00000066 [SR] Verify complete
2013-12-22 17:26:16, Info CSI 00000067 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:16, Info CSI 00000068 [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:21, Info CSI 0000006a [SR] Verify complete
2013-12-22 17:26:22, Info CSI 0000006b [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:22, Info CSI 0000006c [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:28, Info CSI 0000006e [SR] Verify complete
2013-12-22 17:26:28, Info CSI 0000006f [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:28, Info CSI 00000070 [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:34, Info CSI 00000072 [SR] Verify complete
2013-12-22 17:26:34, Info CSI 00000073 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:34, Info CSI 00000074 [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:39, Info CSI 00000076 [SR] Verify complete
2013-12-22 17:26:39, Info CSI 00000077 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:39, Info CSI 00000078 [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:45, Info CSI 0000007a [SR] Verify complete
2013-12-22 17:26:45, Info CSI 0000007b [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:45, Info CSI 0000007c [SR] Beginning Verify and Repair transaction
2013-12-22 17:26:50, Info CSI 0000007e [SR] Verify complete
2013-12-22 17:26:50, Info CSI 0000007f [SR] Verifying 100 (0x00000064) components
2013-12-22 17:26:50, Info CSI 00000080 [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:00, Info CSI 00000084 [SR] Verify complete
2013-12-22 17:27:00, Info CSI 00000085 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:00, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:12, Info CSI 00000088 [SR] Verify complete
2013-12-22 17:27:12, Info CSI 00000089 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:12, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:23, Info CSI 0000008c [SR] Verify complete
2013-12-22 17:27:23, Info CSI 0000008d [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:23, Info CSI 0000008e [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:35, Info CSI 00000090 [SR] Verify complete
2013-12-22 17:27:35, Info CSI 00000091 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:35, Info CSI 00000092 [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:41, Info CSI 00000094 [SR] Verify complete
2013-12-22 17:27:41, Info CSI 00000095 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:41, Info CSI 00000096 [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:43, Info CSI 00000098 [SR] Verify complete
2013-12-22 17:27:43, Info CSI 00000099 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:43, Info CSI 0000009a [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:45, Info CSI 0000009c [SR] Verify complete
2013-12-22 17:27:45, Info CSI 0000009d [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:45, Info CSI 0000009e [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:50, Info CSI 000000a4 [SR] Verify complete
2013-12-22 17:27:51, Info CSI 000000a5 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:51, Info CSI 000000a6 [SR] Beginning Verify and Repair transaction
2013-12-22 17:27:57, Info CSI 000000c0 [SR] Verify complete
2013-12-22 17:27:57, Info CSI 000000c1 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:27:57, Info CSI 000000c2 [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:00, Info CSI 000000c4 [SR] Verify complete
2013-12-22 17:28:00, Info CSI 000000c5 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:00, Info CSI 000000c6 [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:04, Info CSI 000000c8 [SR] Verify complete
2013-12-22 17:28:05, Info CSI 000000c9 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:05, Info CSI 000000ca [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:08, Info CSI 000000cc [SR] Verify complete
2013-12-22 17:28:08, Info CSI 000000cd [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:08, Info CSI 000000ce [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:16, Info CSI 000000d0 [SR] Verify complete
2013-12-22 17:28:16, Info CSI 000000d1 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:16, Info CSI 000000d2 [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:23, Info CSI 000000d5 [SR] Verify complete
2013-12-22 17:28:23, Info CSI 000000d6 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:23, Info CSI 000000d7 [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:26, Info CSI 000000d9 [SR] Verify complete
2013-12-22 17:28:26, Info CSI 000000da [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:26, Info CSI 000000db [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:29, Info CSI 000000dd [SR] Verify complete
2013-12-22 17:28:30, Info CSI 000000de [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:30, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:38, Info CSI 000000e1 [SR] Verify complete
2013-12-22 17:28:38, Info CSI 000000e2 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:38, Info CSI 000000e3 [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:46, Info CSI 000000e5 [SR] Verify complete
2013-12-22 17:28:46, Info CSI 000000e6 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:46, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2013-12-22 17:28:52, Info CSI 000000e9 [SR] Verify complete
2013-12-22 17:28:52, Info CSI 000000ea [SR] Verifying 100 (0x00000064) components
2013-12-22 17:28:52, Info CSI 000000eb [SR] Beginning Verify and Repair transaction
2013-12-22 17:29:03, Info CSI 000000fd [SR] Verify complete
2013-12-22 17:29:04, Info CSI 000000fe [SR] Verifying 100 (0x00000064) components
2013-12-22 17:29:04, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2013-12-22 17:29:11, Info CSI 00000115 [SR] Verify complete
2013-12-22 17:29:11, Info CSI 00000116 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:29:11, Info CSI 00000117 [SR] Beginning Verify and Repair transaction
2013-12-22 17:29:19, Info CSI 00000119 [SR] Verify complete
2013-12-22 17:29:19, Info CSI 0000011a [SR] Verifying 100 (0x00000064) components
2013-12-22 17:29:19, Info CSI 0000011b [SR] Beginning Verify and Repair transaction
2013-12-22 17:29:37, Info CSI 0000011d [SR] Verify complete
2013-12-22 17:29:37, Info CSI 0000011e [SR] Verifying 100 (0x00000064) components
2013-12-22 17:29:37, Info CSI 0000011f [SR] Beginning Verify and Repair transaction
2013-12-22 17:29:50, Info CSI 00000122 [SR] Verify complete
2013-12-22 17:29:51, Info CSI 00000123 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:29:51, Info CSI 00000124 [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:00, Info CSI 00000126 [SR] Verify complete
2013-12-22 17:30:00, Info CSI 00000127 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:00, Info CSI 00000128 [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:06, Info CSI 0000012a [SR] Verify complete
2013-12-22 17:30:06, Info CSI 0000012b [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:06, Info CSI 0000012c [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:12, Info CSI 0000012e [SR] Verify complete
2013-12-22 17:30:12, Info CSI 0000012f [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:12, Info CSI 00000130 [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:17, Info CSI 00000132 [SR] Verify complete
2013-12-22 17:30:17, Info CSI 00000133 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:17, Info CSI 00000134 [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:22, Info CSI 00000137 [SR] Verify complete
2013-12-22 17:30:23, Info CSI 00000138 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:23, Info CSI 00000139 [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:35, Info CSI 0000013b [SR] Verify complete
2013-12-22 17:30:35, Info CSI 0000013c [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:35, Info CSI 0000013d [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:42, Info CSI 00000140 [SR] Verify complete
2013-12-22 17:30:42, Info CSI 00000141 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:42, Info CSI 00000142 [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:50, Info CSI 00000144 [SR] Verify complete
2013-12-22 17:30:50, Info CSI 00000145 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:50, Info CSI 00000146 [SR] Beginning Verify and Repair transaction
2013-12-22 17:30:56, Info CSI 00000148 [SR] Verify complete
2013-12-22 17:30:56, Info CSI 00000149 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:30:56, Info CSI 0000014a [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:05, Info CSI 0000014d [SR] Verify complete
2013-12-22 17:31:05, Info CSI 0000014e [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:05, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:13, Info CSI 00000151 [SR] Verify complete
2013-12-22 17:31:13, Info CSI 00000152 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:13, Info CSI 00000153 [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:19, Info CSI 00000155 [SR] Verify complete
2013-12-22 17:31:19, Info CSI 00000156 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:19, Info CSI 00000157 [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:26, Info CSI 00000159 [SR] Verify complete
2013-12-22 17:31:26, Info CSI 0000015a [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:26, Info CSI 0000015b [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:32, Info CSI 0000015e [SR] Verify complete
2013-12-22 17:31:32, Info CSI 0000015f [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:32, Info CSI 00000160 [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:39, Info CSI 00000162 [SR] Verify complete
2013-12-22 17:31:40, Info CSI 00000163 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:40, Info CSI 00000164 [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:43, Info CSI 00000166 [SR] Verify complete
2013-12-22 17:31:43, Info CSI 00000167 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:43, Info CSI 00000168 [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:49, Info CSI 0000016a [SR] Verify complete
2013-12-22 17:31:49, Info CSI 0000016b [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:49, Info CSI 0000016c [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:54, Info CSI 0000016e [SR] Verify complete
2013-12-22 17:31:54, Info CSI 0000016f [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:54, Info CSI 00000170 [SR] Beginning Verify and Repair transaction
2013-12-22 17:31:57, Info CSI 00000172 [SR] Verify complete
2013-12-22 17:31:57, Info CSI 00000173 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:31:57, Info CSI 00000174 [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:00, Info CSI 00000175 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-22 17:32:01, Info CSI 00000176 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-22 17:32:01, Info CSI 00000177 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-22 17:32:01, Info CSI 00000178 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-22 17:32:01, Info CSI 0000017a [SR] Verify complete
2013-12-22 17:32:02, Info CSI 0000017b [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:02, Info CSI 0000017c [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:11, Info CSI 0000017f [SR] Verify complete
2013-12-22 17:32:11, Info CSI 00000180 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:11, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:18, Info CSI 00000183 [SR] Verify complete
2013-12-22 17:32:18, Info CSI 00000184 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:18, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:25, Info CSI 00000187 [SR] Verify complete
2013-12-22 17:32:25, Info CSI 00000188 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:25, Info CSI 00000189 [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:32, Info CSI 0000018b [SR] Verify complete
2013-12-22 17:32:32, Info CSI 0000018c [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:32, Info CSI 0000018d [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:43, Info CSI 0000018f [SR] Verify complete
2013-12-22 17:32:43, Info CSI 00000190 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:43, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:50, Info CSI 00000193 [SR] Verify complete
2013-12-22 17:32:50, Info CSI 00000194 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:50, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:54, Info CSI 00000197 [SR] Verify complete
2013-12-22 17:32:55, Info CSI 00000198 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:32:55, Info CSI 00000199 [SR] Beginning Verify and Repair transaction
2013-12-22 17:32:59, Info CSI 0000019b [SR] Verify complete
2013-12-22 17:33:00, Info CSI 0000019c [SR] Verifying 100 (0x00000064) components
2013-12-22 17:33:00, Info CSI 0000019d [SR] Beginning Verify and Repair transaction
2013-12-22 17:33:05, Info CSI 0000019f [SR] Verify complete
2013-12-22 17:33:05, Info CSI 000001a0 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:33:05, Info CSI 000001a1 [SR] Beginning Verify and Repair transaction
2013-12-22 17:33:10, Info CSI 000001a3 [SR] Verify complete
2013-12-22 17:33:10, Info CSI 000001a4 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:33:10, Info CSI 000001a5 [SR] Beginning Verify and Repair transaction
2013-12-22 17:33:13, Info CSI 000001a7 [SR] Verify complete
2013-12-22 17:33:13, Info CSI 000001a8 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:33:13, Info CSI 000001a9 [SR] Beginning Verify and Repair transaction
2013-12-22 17:33:23, Info CSI 000001ab [SR] Verify complete
2013-12-22 17:33:24, Info CSI 000001ac [SR] Verifying 100 (0x00000064) components
2013-12-22 17:33:24, Info CSI 000001ad [SR] Beginning Verify and Repair transaction
2013-12-22 17:33:57, Info CSI 000001af [SR] Verify complete
2013-12-22 17:33:57, Info CSI 000001b0 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:33:57, Info CSI 000001b1 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:06, Info CSI 000001b3 [SR] Verify complete
2013-12-22 17:34:06, Info CSI 000001b4 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:06, Info CSI 000001b5 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:15, Info CSI 000001b7 [SR] Verify complete
2013-12-22 17:34:15, Info CSI 000001b8 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:15, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:19, Info CSI 000001bb [SR] Verify complete
2013-12-22 17:34:19, Info CSI 000001bc [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:19, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:24, Info CSI 000001bf [SR] Verify complete
2013-12-22 17:34:24, Info CSI 000001c0 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:24, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:29, Info CSI 000001c3 [SR] Verify complete
2013-12-22 17:34:30, Info CSI 000001c4 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:30, Info CSI 000001c5 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:40, Info CSI 000001c7 [SR] Verify complete
2013-12-22 17:34:40, Info CSI 000001c8 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:40, Info CSI 000001c9 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:45, Info CSI 000001cb [SR] Verify complete
2013-12-22 17:34:45, Info CSI 000001cc [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:45, Info CSI 000001cd [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:46, Info CSI 000001cf [SR] Verify complete
2013-12-22 17:34:46, Info CSI 000001d0 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:46, Info CSI 000001d1 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:49, Info CSI 000001d3 [SR] Verify complete
2013-12-22 17:34:50, Info CSI 000001d4 [SR] Verifying 100 (0x00000064) components
2013-12-22 17:34:50, Info CSI 000001d5 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:54, Info CSI 000001d7 [SR] Verify complete
2013-12-22 17:34:54, Info CSI 000001d8 [SR] Verifying 46 (0x0000002e) components
2013-12-22 17:34:54, Info CSI 000001d9 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:57, Info CSI 000001db [SR] Verify complete
2013-12-22 17:34:57, Info CSI 000001dc [SR] Repairing 1 components
2013-12-22 17:34:57, Info CSI 000001dd [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:57, Info CSI 000001de [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-22 17:34:57, Info CSI 000001df [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-22 17:34:57, Info CSI 000001e0 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-22 17:34:57, Info CSI 000001e1 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-22 17:34:57, Info CSI 000001e3 [SR] Repair complete
2013-12-22 17:34:57, Info CSI 000001e4 [SR] Committing transaction
2013-12-22 17:34:57, Info CSI 000001e5 [SR] Cannot commit interactively, there are boot critical components being repaired
2013-12-22 17:34:57, Info CSI 000001e6 [SR] Repairing 1 components
2013-12-22 17:34:57, Info CSI 000001e7 [SR] Beginning Verify and Repair transaction
2013-12-22 17:34:57, Info CSI 000001e8 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-22 17:34:57, Info CSI 000001e9 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-22 17:34:57, Info CSI 000001ea [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-22 17:34:57, Info CSI 000001eb [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-22 17:34:57, Info CSI 000001ed [SR] Repair complete





view.txt


Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 22/12/2013 5:39:53 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 22/12/2013 9:33:45 PM
Type: Error Category: 0
Event: 7034 Source: Service Control Manager
The LiveUpdate service terminated unexpectedly. It has done this 1 time(s).

Log: 'System' Date/Time: 22/12/2013 6:11:30 PM
Type: Error Category: 0
Event: 7026 Source: Service Control Manager
The following boot-start or system-start driver(s) failed to load: vpcnfltr

Log: 'System' Date/Time: 22/12/2013 6:11:14 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The NETGEARGenieDaemon service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

Log: 'System' Date/Time: 22/12/2013 6:11:14 PM
Type: Error Category: 0
Event: 7009 Source: Service Control Manager
A timeout was reached (30000 milliseconds) while waiting for the NETGEARGenieDaemon service to connect.

Log: 'System' Date/Time: 22/12/2013 6:10:15 PM
Type: Error Category: 0
Event: 46 Source: volmgr
Crash dump initialization failed!

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 22/12/2013 10:33:09 PM
Type: Warning Category: 0
Event: 1014 Source: Microsoft-Windows-DNS-Client
Name resolution for the name iranshaludeh.com timed out after none of the configured DNS servers responded.

Log: 'System' Date/Time: 22/12/2013 6:11:32 PM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device WpdBusEnumRoot\UMB\2&37c186b&0&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_KINGSTON&PROD_DATATRAVELER_G3&REV_PMAP#0019B927C9F6EB50C3B10073&0#.

Log: 'System' Date/Time: 22/12/2013 5:44:58 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.

Log: 'System' Date/Time: 22/12/2013 5:43:15 PM
Type: Warning Category: 0
Event: 1073 Source: USER32
The attempt by user LivingRoom-PC\Living Room to restart/shutdown computer LIVINGROOM-PC failed




Speecy results

Summary
Operating System
Windows 7 Professional 32-bit SP1
CPU
Intel Core 2 Duo E8400 @ 3.00GHz 38 C
Wolfdale 45nm Technology
RAM
4.00GB Dual-Channel DDR2 @ 399MHz (6-6-6-18)
Motherboard
Foxconn G31MXP (Socket 775) 40 C
Graphics
SyncMaster ([email protected])
256MB NVIDIA GeForce 8600 GTS (MSI) 57 C
Storage
931GB Hitachi HDT721010SLA360 ATA Device (SATA) 42 C
14GB Kingston DataTraveler G3 USB Device (USB)
Optical Drives
Optiarc DVD RW AD-7201A ATA Device
Audio
High Definition Audio Device
Operating System
Windows 7 Professional 32-bit SP1
Computer type: Desktop
Installation Date: 3/6/2011 7:47:37 PM
Windows Security Center
User Account Control (UAC) Enabled
Notify level 2 - Default
Firewall Enabled
Windows Update
AutoUpdate Not configured
Windows Defender
Windows Defender Disabled
Antivirus
Microsoft Security Essentials
Antivirus Enabled
Company Name Microsoft
Product Version 4.4.304.0
Virus Signature Database Up to date
AVG AntiVirus Free Edition 2014
Antivirus Enabled
Virus Signature Database Up to date
Advanced SystemCare Ultimate
Antivirus Enabled
Virus Signature Database Up to date
.NET Frameworks installed
v4.0 Full
v4.0 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 10.0.9200.16750
PowerShell
Version 2.0
Java
Java Runtime Environment
Path C:\Program Files\Java\jre7\bin\java.exe
Version 7.0
Update 45
Build 18
Environment Variables
USERPROFILE C:\Users\Living Room
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Living Room\AppData\Local\Temp
TMP C:\Users\Living Room\AppData\Local\Temp
Machine Variables
asl.log Destination=file
CLASSPATH .;C:\Program Files\Java\jre7\lib\ext\QTJava.zip
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
NUMBER_OF_PROCESSORS 2
OS Windows_NT
Path C:\Windows\system32
C:\Windows
C:\Windows\system32\wbem
C:\Program Files\NVIDIA Corporation\PhysX\Common
C:\Program Files\Common Files\Microsoft Shared\Windows Live
C:\Windows\System32\WindowsPowerShell\v1.0
C:\Program Files\QuickTime\QTSystem
C:\Program Files\Windows Live\Shared
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE x86
PROCESSOR_IDENTIFIER x86 Family 6 Model 23 Stepping 6, GenuineIntel
PROCESSOR_LEVEL 6
PROCESSOR_REVISION 1706
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
QTJAVA C:\Program Files\Java\jre7\lib\ext\QTJava.zip
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
Power Profile
Active power scheme High performance
Hibernation Enabled
Turn Off Monitor after: (On AC Power) 15 min
Turn Off Hard Disk after: (On AC Power) 20 min
Suspend after: (On AC Power) Never
Screen saver Disabled
Uptime
Current Session
Current Time 12/22/2013 6:49:46 PM
Current Uptime 20,476 sec (0 d, 05 h, 41 m, 16 s)
Last Boot Time 12/22/2013 1:08:30 PM
Services
Running Adobe Acrobat Update Service
Running Advanced SystemCare Service 7
Running AdvancedSystemCareAntivirus
Running Apple Mobile Device
Running Application Experience
Running Application Information
Running AVG WatchDog
Running AVGIDSAgent
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Bing Desktop Update service
Running BlueStacks Android Service
Running BlueStacks Log Rotator Service
Running Bonjour Service
Running CNG Key Isolation
Running COM+ Event System
Running Computer Browser
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic Service Host
Running Distributed Link Tracking Client
Running DNS Client
Running Emsisoft Anti-Malware 6.0 - Service
Running Encrypting File System (EFS)
Running Extensible Authentication Protocol
Running Function Discovery Provider Host
Running Function Discovery Resource Publication
Running Group Policy Client
Running HomeGroup Listener
Running HomeGroup Provider
Running HP Network Devices Support
Running IKE and AuthIP IPsec Keying Modules
Running Infrared monitor service
Running IPsec Policy Agent
Running lxdd_device
Running lxddCATSCustConnectService
Running MBAMScheduler
Running MBAMService
Running McciCMService
Running Media Center Extender Service
Running Microsoft Antimalware Service
Running Microsoft Network Inspection
Running Motorola Device Manager Service
Running Multimedia Class Scheduler
Running Net Driver HPZ12
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running NitroPDFReaderDriverCreatorReadSpool3
Running NVIDIA Display Driver Service
Running NVIDIA Stereoscopic 3D Driver Service
Running NVIDIA Streamer Service
Running NVIDIA Update Service Daemon
Running Peer Name Resolution Protocol
Running Peer Networking Grouping
Running Peer Networking Identity Manager
Running Plug and Play
Running Pml Driver HPZ12
Running PnP-X IP Bus Enumerator
Running Portable Device Enumerator Service
Running Power
Running Print Spooler
Running Program Compatibility Assistant Service
Running RealNetworks Downloader Resolver Service
Running RealPlayer Desktop Service
Running RealPlayer Update Service
Running Remote Access Connection Manager
Running Remote Desktop Configuration
Running Remote Desktop Services
Running Remote Desktop Services UserMode Port Redirector
Running Remote Procedure Call (RPC)
Running Remote Procedure Call (RPC) Locator
Running RPC Endpoint Mapper
Running Secondary Logon
Running Secure Socket Tunneling Protocol Service
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Skype C2C Service
Running SSDP Discovery
Running Superfetch
Running System Event Notification Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Themes
Running TVersity Media Server
Running UPnP Device Host
Running User Profile Service
Running vToolbarUpdater17.2.0
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Connect Now - Config Registrar
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Live ID Sign-in Assistant
Running Windows Management Instrumentation
Running Windows Media Player Network Sharing Service
Running Windows Modules Installer
Running Windows Search
Running Windows Update
Running WLAN AutoConfig
Running WMI Performance Adapter
Running Workstation
Running WSWNA1100
Stopped ActiveX Installer (AxInstSV)
Stopped Adaptive Brightness
Stopped Adobe Flash Player Update Service
Stopped Application Identity
Stopped Application Layer Gateway Service
Stopped Application Management
Stopped ASP.NET State Service
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped BranchCache
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped Credential Manager
Stopped Diagnostic System Host
Stopped Disk Defragmenter
Stopped Distributed Transaction Coordinator
Stopped Fax
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped Human Interface Device Access
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped IP Helper
Stopped iPod Service
Stopped JumpStart Wi-Fi Protected Setup
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped LiveUpdate
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Mozilla Maintenance Service
Stopped Net.Msmq Listener Adapter
Stopped Net.Pipe Listener Adapter
Stopped Net.Tcp Listener Adapter
Stopped Net.Tcp Port Sharing Service
Stopped NETGEARGenieDaemon
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office Source Engine
Stopped Offline Files
Stopped Parental Controls
Stopped Performance Logs & Alerts
Stopped PNRP Machine Name Publication Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Skype Updater
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Software Protection
Stopped SPP Notification Service
Stopped Storage Service
Stopped Tablet PC Input Service
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Activation Technologies Service
Stopped Windows Backup
Stopped Windows Biometric Service
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Defender
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Image Acquisition (WIA)
Stopped Windows Installer
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Windows Time
Stopped WinHTTP Web Proxy Auto-Discovery Service
Stopped Wired AutoConfig
Stopped WWAN AutoConfig
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Scheduler
12/22/2013 7:00 PM; Maxthon Update
12/22/2013 7:06 PM; Adobe Flash Player Updater
12/22/2013 7:21 PM; GoogleUpdateTaskMachineCore
12/22/2013 7:21 PM; GoogleUpdateTaskMachineUA
12/22/2013 9:37 PM; update-sys
12/22/2013 9:43 PM; update-S-1-5-21-21828565-3005677120-1819634571-1001
12/22/2013 9:52 PM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/23/2013 10:00 AM; Adobe online update program
12/23/2013 10:00 AM; Divx online update program
12/23/2013 10:00 AM; Java Update Scheduler
12/23/2013 10:00 AM; Real Player online update program
12/25/2013 2:21 PM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003
12/25/2013 11:15 PM; RealDownloaderRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/26/2013 11:37 AM; RealDownloaderDownloaderScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/27/2013 12:08 PM; RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/28/2013 4:44 PM; RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003
1/1/2014 5:09 PM; Swiki_Checker
Alarm Clock
ASC7U_SkipUac_Living Room
ASC7_PerformanceMonitor
CCleanerSkipUAC
RealDownloaderRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003
RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003
SidebarExecute
Hotfixes
12/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.406.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.403.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/21/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.360.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/20/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.262.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/19/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
12/19/2013 Security Update for Microsoft Office Excel Viewer 2007 (KB2827328)
A security vulnerability exists in Microsoft Office Excel Viewer
2007 that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Word Viewer (KB2817683)
A security vulnerability exists in Word Viewer that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2597973)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.210.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/19/2013 Security Update for Word Viewer (KB2817683)
A security vulnerability exists in Word Viewer that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2817641)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/19/2013 Security Update for Office 2003 (KB2817474)
A security vulnerability exists in Office 2003 that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760585)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
12/19/2013 Update for Microsoft Security Essentials - 4.4.304.0 (KB2902885)
This package will update Microsoft Security Essentials client
on the user's machine.
12/19/2013 Update for Microsoft Office 2007 suites (KB2767849)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760591)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Windows 7 (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
12/19/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2597973)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Windows Malicious Software Removal Tool - December 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
12/19/2013 Security Update for Office 2003 (KB2850047)
A security vulnerability exists in Office 2003 that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760411)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Excel Viewer 2007 Service Pack 3 (SP3)
Service Pack 3 provides the latest updates to Excel Viewer 2007.
12/18/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.116.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/17/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.28.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/16/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.2025.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.2005.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1998.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/14/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1943.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/13/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1864.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/12/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1784.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/10/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1568.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
System Folders
Application Data C:\ProgramData
Cookies C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Living Room\Desktop
Documents C:\Users\Public\Documents
Fonts C:\Windows\Fonts
Global Favorites C:\Users\Living Room\Favorites
Internet History C:\Users\Living Room\AppData\Local\Microsoft\Windows\History
Local Application Data C:\Users\Living Room\AppData\Local
Music C:\Users\Public\Music
Path for burning CD C:\Users\Living Room\AppData\Local\Microsoft\Windows\Burn\Burn1
Physical Desktop C:\Users\Living Room\Desktop
Pictures C:\Users\Public\Pictures
Program Files C:\Program Files
Public Desktop C:\Users\Public\Desktop
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Temporary Internet Files C:\Users\Living Room\AppData\Local\Microsoft\Windows\Temporary Internet Files
User Favorites C:\Users\Living Room\Favorites
Videos C:\Users\Public\Videos
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Process List
a2service.exe
Process ID 1136
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Emsisoft Anti-Malware\a2service.exe
Memory Usage 1.07 MB
Peak Memory Usage 36 MB
AppleMobileDeviceService.exe
Process ID 2236
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Memory Usage 8.18 MB
Peak Memory Usage 8.20 MB
armsvc.exe
Process ID 2204
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 2.89 MB
Peak Memory Usage 2.90 MB
ASCAvSvc.exe
Process ID 1048
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
ASCService.exe
Process ID 980
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
Memory Usage 131 MB
Peak Memory Usage 131 MB
ASCTray.exe
Process ID 1464
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
Memory Usage 22 MB
Peak Memory Usage 22 MB
audiodg.exe
Process ID 21780
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 14 MB
Peak Memory Usage 14 MB
avgcsrvx.exe
Process ID 432
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgcsrvx.exe
Memory Usage 115 MB
Peak Memory Usage 134 MB
avgemcx.exe
Process ID 3748
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgemcx.exe
Memory Usage 5.45 MB
Peak Memory Usage 12 MB
avgidsagent.exe
Process ID 2288
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgidsagent.exe
Memory Usage 28 MB
Peak Memory Usage 38 MB
avgnsx.exe
Process ID 3740
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgnsx.exe
Memory Usage 11 MB
Peak Memory Usage 12 MB
avgrsx.exe
Process ID 364
User SYSTEM
Domain NT AUTHORITY
Path C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
Memory Usage 45 MB
Peak Memory Usage 54 MB
avgui.exe
Process ID 14592
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\AVG\AVG2014\avgui.exe
Memory Usage 19 MB
Peak Memory Usage 20 MB
avgwdsvc.exe
Process ID 2308
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgwdsvc.exe
Memory Usage 20 MB
Peak Memory Usage 29 MB
BingDesktopUpdater.exe
Process ID 2328
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
Memory Usage 7.23 MB
Peak Memory Usage 7.25 MB
c2c_service.exe
Process ID 3876
User SYSTEM
Domain NT AUTHORITY
Path C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
Memory Usage 4.93 MB
Peak Memory Usage 5.04 MB
conhost.exe
Process ID 4232
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 2.34 MB
Peak Memory Usage 2.34 MB
conhost.exe
Process ID 16956
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 3.56 MB
Peak Memory Usage 3.56 MB
conhost.exe
Process ID 4332
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 2.35 MB
Peak Memory Usage 2.35 MB
conhost.exe
Process ID 4304
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 2.37 MB
Peak Memory Usage 2.37 MB
conhost.exe
Process ID 4272
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 2.35 MB
Peak Memory Usage 2.35 MB
csrss.exe
Process ID 636
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 7.16 MB
Peak Memory Usage 9.88 MB
csrss.exe
Process ID 708
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 13 MB
Peak Memory Usage 21 MB
daemonu.exe
Process ID 3304
User UpdatusUser
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
Memory Usage 11 MB
Peak Memory Usage 11 MB
dwm.exe
Process ID 15136
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\Dwm.exe
Memory Usage 31 MB
Peak Memory Usage 41 MB
explorer.exe
Process ID 12520
User Living Room
Domain LivingRoom-PC
Path C:\Windows\Explorer.EXE
Memory Usage 74 MB
Peak Memory Usage 96 MB
firefox.exe
Process ID 17528
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Mozilla Firefox\firefox.exe
Memory Usage 253 MB
Peak Memory Usage 284 MB
GoogleCrashHandler.exe
Process ID 5748
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
Memory Usage 576 KB
Peak Memory Usage 3.45 MB
HD-BlockDevice.exe
Process ID 4264
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-BlockDevice.exe
Memory Usage 4.18 MB
Peak Memory Usage 5.55 MB
HD-LogRotatorService.exe
Process ID 2428
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-LogRotatorService.exe
Memory Usage 7.12 MB
Peak Memory Usage 7.43 MB
HD-Network.exe
Process ID 4224
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-Network.exe
Memory Usage 6.13 MB
Peak Memory Usage 7.57 MB
HD-Service.exe
Process ID 3288
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-Service.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
HD-SharedFolder.exe
Process ID 4324
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-SharedFolder.exe
Memory Usage 4.23 MB
Peak Memory Usage 4.54 MB
jusched.exe
Process ID 16540
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Common Files\Java\Java Update\jusched.exe
Memory Usage 4.04 MB
Peak Memory Usage 4.04 MB
Lightshot.exe
Process ID 16724
User Living Room
Domain LivingRoom-PC
Path C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\LightShot.exe
Memory Usage 6.59 MB
Peak Memory Usage 6.77 MB
Locator.exe
Process ID 3536
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\locator.exe
Memory Usage 1.41 MB
Peak Memory Usage 1.42 MB
loggingserver.exe
Process ID 4296
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\loggingserver.exe
Memory Usage 3.18 MB
Peak Memory Usage 3.19 MB
lsass.exe
Process ID 796
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 10 MB
Peak Memory Usage 11 MB
lsm.exe
Process ID 812
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 4.32 MB
Peak Memory Usage 4.34 MB
lxddcoms.exe
Process ID 2808
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lxddcoms.exe
Memory Usage 4.48 MB
Peak Memory Usage 7.50 MB
lxddserv.exe
Process ID 2780
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\spool\DRIVERS\W32X86\3\lxddserv.exe
Memory Usage 2.42 MB
Peak Memory Usage 2.43 MB
mbamgui.exe
Process ID 14980
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
Memory Usage 7.52 MB
Peak Memory Usage 7.53 MB
mbamscheduler.exe
Process ID 2828
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
Memory Usage 5.00 MB
Peak Memory Usage 5.02 MB
mbamservice.exe
Process ID 2880
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
Memory Usage 4.64 MB
Peak Memory Usage 245 MB
McciCMService.exe
Process ID 2948
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Motive\McciCMService.exe
Memory Usage 5.24 MB
Peak Memory Usage 5.25 MB
mDNSResponder.exe
Process ID 2364
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Bonjour\mDNSResponder.exe
Memory Usage 4.57 MB
Peak Memory Usage 4.60 MB
MediaServer.exe
Process ID 4044
User SYSTEM
Domain NT AUTHORITY
Path C:\ProgramData\TVersity\Media Server\MediaServer.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
Monitor.exe
Process ID 17224
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
Memory Usage 3.18 MB
Peak Memory Usage 11 MB
MotoHelperAgent.exe
Process ID 16892
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
Memory Usage 7.77 MB
Peak Memory Usage 7.85 MB
MotoHelperService.exe
Process ID 3020
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
Memory Usage 6.46 MB
Peak Memory Usage 6.48 MB
MsMpEng.exe
Process ID 1416
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Microsoft Security Client\MsMpEng.exe
Memory Usage 67 MB
Peak Memory Usage 135 MB
msseces.exe
Process ID 14892
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Microsoft Security Client\msseces.exe
Memory Usage 12 MB
Peak Memory Usage 13 MB
NisSrv.exe
Process ID 6136
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Program Files\Microsoft Security Client\NisSrv.exe
Memory Usage 4.68 MB
Peak Memory Usage 8.29 MB
NitroPDFReaderDriverService3.exe
Process ID 3092
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
Memory Usage 2.59 MB
Peak Memory Usage 2.61 MB
notepad.exe
Process ID 18936
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\NOTEPAD.EXE
Memory Usage 7.16 MB
Peak Memory Usage 7.22 MB
nvSCPAPISvr.exe
Process ID 1288
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
Memory Usage 4.88 MB
Peak Memory Usage 6.09 MB
nvstreamsvc.exe
Process ID 3140
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 8.62 MB
Peak Memory Usage 14 MB
nvstreamsvc.exe
Process ID 16932
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 8.97 MB
Peak Memory Usage 9.02 MB
NvTmru.exe
Process ID 15088
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
Memory Usage 7.43 MB
Peak Memory Usage 7.43 MB
nvtray.exe
Process ID 16712
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
nvvsvc.exe
Process ID 1264
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 5.34 MB
Peak Memory Usage 5.36 MB
nvvsvc.exe
Process ID 1912
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 9.34 MB
Peak Memory Usage 9.34 MB
nvxdsync.exe
Process ID 1904
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
RealPlayerUpdateSvc.exe
Process ID 3512
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
Memory Usage 6.05 MB
Peak Memory Usage 6.31 MB
realsched.exe
Process ID 16524
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Real\RealPlayer\Update\realsched.exe
Memory Usage 656 KB
Peak Memory Usage 5.43 MB
recordingmanager.exe
Process ID 20336
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
rndlresolversvc.exe
Process ID 3460
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
Memory Usage 2.86 MB
Peak Memory Usage 2.88 MB
rpdsvc.exe
Process ID 3488
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
Memory Usage 38 MB
Peak Memory Usage 38 MB
rpsystray.exe
Process ID 16928
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
Memory Usage 5.00 MB
Peak Memory Usage 5.09 MB
SearchFilterHost.exe
Process ID 26228
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchFilterHost.exe
Memory Usage 3.80 MB
Peak Memory Usage 3.87 MB
SearchIndexer.exe
Process ID 4620
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchIndexer.exe
Memory Usage 25 MB
Peak Memory Usage 29 MB
SearchProtocolHost.exe
Process ID 26208
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchProtocolHost.exe
Memory Usage 6.05 MB
Peak Memory Usage 6.05 MB
services.exe
Process ID 744
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 8.31 MB
Peak Memory Usage 12 MB
smss.exe
Process ID 280
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 836 KB
Peak Memory Usage 852 KB
Speccy.exe
Process ID 26452
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 25 MB
Peak Memory Usage 25 MB
spoolsv.exe
Process ID 612
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
SpotifyWebHelper.exe
Process ID 16520
User Living Room
Domain LivingRoom-PC
Path C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
Memory Usage 5.91 MB
Peak Memory Usage 5.95 MB
svchost.exe
Process ID 3376
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 2.70 MB
Peak Memory Usage 2.71 MB
svchost.exe
Process ID 3052
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 2.75 MB
Peak Memory Usage 2.77 MB
svchost.exe
Process ID 2584
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 1356
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
svchost.exe
Process ID 2016
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 14 MB
Peak Memory Usage 15 MB
svchost.exe
Process ID 6012
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 4.59 MB
Peak Memory Usage 4.61 MB
svchost.exe
Process ID 1808
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 5.28 MB
Peak Memory Usage 5.31 MB
svchost.exe
Process ID 4912
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 6.29 MB
Peak Memory Usage 6.36 MB
svchost.exe
Process ID 1640
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 30 MB
Peak Memory Usage 33 MB
svchost.exe
Process ID 1608
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 15 MB
Peak Memory Usage 15 MB
svchost.exe
Process ID 1564
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 49 MB
Peak Memory Usage 70 MB
svchost.exe
Process ID 1528
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 17 MB
Peak Memory Usage 17 MB
svchost.exe
Process ID 1340
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 6.40 MB
Peak Memory Usage 6.42 MB
svchost.exe
Process ID 924
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 7.14 MB
Peak Memory Usage 7.41 MB
svchost.exe
Process ID 17732
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 8.08 MB
Peak Memory Usage 8.36 MB
System
Process ID 4
Memory Usage 4.43 MB
Peak Memory Usage 131 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 17180
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\taskeng.exe
Memory Usage 4.85 MB
Peak Memory Usage 4.99 MB
taskhost.exe
Process ID 11540
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\taskhost.exe
Memory Usage 13 MB
Peak Memory Usage 13 MB
ToolbarUpdater.exe
Process ID 2744
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe
Memory Usage 5.45 MB
Peak Memory Usage 5.50 MB
TrustedInstaller.exe
Process ID 19732
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\servicing\TrustedInstaller.exe
Memory Usage 12 MB
Peak Memory Usage 31 MB
vprot.exe
Process ID 16636
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\AVG SafeGuard toolbar\vprot.exe
Memory Usage 25 MB
Peak Memory Usage 31 MB
WifiSvc.exe
Process ID 2716
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
Memory Usage 5.86 MB
Peak Memory Usage 5.89 MB
wininit.exe
Process ID 696
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage 3.35 MB
Peak Memory Usage 3.41 MB
winlogon.exe
Process ID 784
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 5.32 MB
Peak Memory Usage 6.68 MB
WLIDSVC.EXE
Process ID 3368
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Memory Usage 11 MB
Peak Memory Usage 12 MB
WLIDSVCM.EXE
Process ID 3452
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
Memory Usage 2.31 MB
Peak Memory Usage 2.34 MB
WmiApSrv.exe
Process ID 24776
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\WmiApSrv.exe
Memory Usage 4.68 MB
Peak Memory Usage 4.68 MB
WmiPrvSE.exe
Process ID 24616
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
WmiPrvSE.exe
Process ID 21444
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 16 MB
Peak Memory Usage 16 MB
wmpnetwk.exe
Process ID 4432
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Program Files\Windows Media Player\wmpnetwk.exe
Memory Usage 32 MB
Peak Memory Usage 97 MB
wuauclt.exe
Process ID 18152
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\wuauclt.exe
Memory Usage 5.57 MB
Peak Memory Usage 5.63 MB
WUDFHost.exe
Process ID 4872
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\WUDFHost.exe
Memory Usage 4.93 MB
Peak Memory Usage 4.93 MB
Security Options
Accounts: Administrator account status Enabled
Accounts: Guest account status Enabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network Security: Allow PKU2U authentication requests to this computer to use online identities Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Prompt for consent for non-Windows binaries
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Enabled
User Account Control: Switch to the secure desktop when prompting for elevation Enabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x86-based PC
Microsoft ACPI-Compliant System
ACPI Fan
ACPI Fixed Feature Button
ACPI Power Button
ACPI Thermal Zone
Intel Core2 Duo CPU E8400 @ 3.00GHz
Intel Core2 Duo CPU E8400 @ 3.00GHz
System board
PCI bus
Intel 82801 PCI Bridge - 244E
Intel 82801G (ICH7 Family) PCI Express Root Port - 27D0
Intel 82801G (ICH7 Family) SMBus Controller - 27DA
Intel G33/G31/P35/P31 Express Chipset Processor to I/O Controller - 29C0
Motherboard resources
Intel® G33/G31/P35/P31 Express Chipset PCI Express Root Port - 29C1
NVIDIA GeForce 8600 GTS
SyncMaster 953BW/953GW,SyncMaster Magic CX953BW/CX953GW(Digital)
High Definition Audio Controller
High Definition Audio Device
Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D2
Realtek PCIe GBE Family Controller
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C8
USB Root Hub
USB Input Device
HID-compliant mouse
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C9
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB
USB Root Hub
Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC
USB Root Hub
NETGEAR WNA1100 N150 Wireless USB Adapter
Microsoft Virtual WiFi Miniport Adapter #5
USB Mass Storage Device
Kingston DataTraveler G3 USB Device
Intel® 82801GB/GR (ICH7 Family) LPC Interface Controller - 27B8
Built-in Infrared Device
Communications Port (COM1)
Direct memory access controller
High precision event timer
Intel 82802 Firmware Hub Device
Motherboard resources
Motherboard resources
Numeric data processor
Programmable interrupt controller
Standard PS/2 Keyboard
System CMOS/real time clock
System speaker
System timer
Standard floppy disk controller
Floppy disk drive
Printer Port (LPT1)
Printer Port Logical Interface
Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF
ATA Channel 0
Optiarc DVD RW AD-7201A ATA Device
Intel® 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0
ATA Channel 1
ATA Channel 0
Hitachi HDT721010SLA360 ATA Device
CPU
Intel Core 2 Duo E8400
Cores 2
Threads 2
Name Intel Core 2 Duo E8400
Code Name Wolfdale
Package Socket 775 LGA
Technology 45nm
Specification Intel Core2 Duo CPU E8400 @ 3.00GHz
Family 6
Extended Family 6
Model 7
Extended Model 17
Stepping 6
Revision C0
Instructions MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, Intel 64, NX, VMX
Virtualization Supported, Enabled
Hyperthreading Not supported
Fan Speed 2909 RPM
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Stock Core Speed 3000 MHz
Stock Bus Speed 333 MHz
Average Temperature 38 C
Caches
L1 Data Cache Size 2 x 32 KBytes
L1 Instructions Cache Size 2 x 32 KBytes
L2 Unified Cache Size 6144 KBytes
Core 0
Core Speed 1998.1 MHz
Multiplier x 6.0
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Temperature 38 C
Thread 1
APIC ID 0
Core 1
Core Speed 2997.1 MHz
Multiplier x 9.0
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Temperature 37 C
Thread 1
APIC ID 1
RAM
Memory slots
Total memory slots 2
Used memory slots 2
Free memory slots 0
Memory
Type DDR2
Size 4096 MBytes
Channels # Dual
DRAM Frequency 399.6 MHz
CAS# Latency (CL) 6 clocks
RAS# to CAS# Delay (tRCD) 6 clocks
RAS# Precharge (tRP) 6 clocks
Cycle Time (tRAS) 18 clocks
Command Rate (CR) 2T
Physical Memory
Memory Usage 77 %
Total Physical 3.25 GB
Available Physical 758 MB
Total Virtual 6.49 GB
Available Virtual 3.66 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR2
Size 2048 MBytes
Manufacturer OCZ
Max Bandwidth PC2-6400 (400 MHz)
Part Number OCZ2N800SR2G
SPD Ext. EPP
EPP #0
Frequency 400.0 MHz
CAS# Latency 5.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 15
Voltage 2.000 V
JEDEC #3
Frequency 400.0 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 24
Voltage 1.800 V
JEDEC #2
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
Slot #2
Type DDR2
Size 2048 MBytes
Manufacturer OCZ
Max Bandwidth PC2-6400 (400 MHz)
Part Number OCZ2N800SR2G
SPD Ext. EPP
EPP #0
Frequency 400.0 MHz
CAS# Latency 5.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 15
Voltage 2.000 V
JEDEC #3
Frequency 400.0 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 24
Voltage 1.800 V
JEDEC #2
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
Motherboard
Manufacturer Foxconn
Model G31MXP (Socket 775)
Version OEM
Chipset Vendor Intel
Chipset Model P35/G33/G31
Chipset Revision 10
Southbridge Vendor Intel
Southbridge Model 82801GB (ICH7/R)
Southbridge Revision A1
System Temperature 40 C
BIOS
Brand Phoenix Technologies, LTD
Version 6.00 PG
Date 5/13/2009
Voltage
CPU CORE 1.168 V
MEMORY CONTROLLER 1.808 V
+3.3V 3.296 V
+5V 4.892 V
+12V 11.968 V
+5V HIGH THRESHOLD 4.946 V
CMOS BATTERY 3.264 V
PCI Data
Slot PCI
Slot Type PCI
Slot Usage Available
Data lanes x16
Slot Designation PCI1
Characteristics 5V, PME
Slot Number 0
Slot PCI
Slot Type PCI
Slot Usage Available
Data lanes x1
Slot Designation PCI2
Characteristics 5V, PME
Slot Number 1
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI3
Characteristics 5V, PME
Slot Number 2
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI4
Characteristics 5V, PME
Slot Number 3
Graphics
Monitor
Name SyncMaster on NVIDIA GeForce 8600 GTS
Current Resolution 1440x900 pixels
Work Resolution 1440x860 pixels
State Enabled, Primary, Output devices support
Monitor Width 1440
Monitor Height 900
Monitor BPP 32 bits per pixel
Monitor Frequency 75 Hz
Device \\.\DISPLAY1\Monitor0
NVIDIA GeForce 8600 GTS
Manufacturer NVIDIA
Model GeForce 8600 GTS
GPU G84
Device ID 10DE-0400
Revision A2
Subvendor MSI (1462)
Series GeForce 8
Current Performance Level Level 0
Technology 80 nm
Die Size 169 mm
Transistors 289 M
Release Date Apr 17, 2007
DirectX Support 10.0
DirectX Shader Model 4.0
OpenGL Support 3.0
Bus Interface PCI Express x16
Temperature 57 C
Driver version 9.18.13.2049
BIOS Version 60.84.38.00.28
ROPs 8
Shaders 32 unified
Memory Type GDDR3
Memory 256 MB
Bus Width 64x2 (128 bit)
Filtering Modes Bilinear, Trilinear, 2x Anisotropic, 4x Anisotropic, 8x Anisotropic, 16x Anisotropic
Noise Level Moderate
Max Power Draw 71 Watts
Count of performance levels : 1
Level 1
GPU Clock 675 MHz
Memory Clock 1008 MHz
Shader Clock 1450 MHz
Storage
Hard drives
Hitachi HDT721010SLA360 ATA Device
Manufacturer Hitachi
Product Family Deskstar
Series Prefix Differentiator between two models with the same name
Model Capacity For This Specific Drive 100GB
Heads 16
Cylinders 129,201
Tracks 31,008,240
Sectors 1,953,519,120
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number STF605MH1B4UTW
LBA Size 48-bit LBA
Power On Count 1307 times
Power On Time 1325.8 days
Speed 7200 RPM
Features S.M.A.R.T., APM, AAM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 931 GB
Real size 1,000,204,886,016 bytes
RAID Type None
S.M.A.R.T
Status Warning
Temperature 42 C
Temperature Range OK (less than 50 C)
01 Read Error Rate 095 (095) Data 000008000A
02 Throughput Performance 130 (130) Data 0000000078
03 Spin-Up Time 128 (128) Data 0001B901C6
04 Start/Stop Count 100 (100) Data 0000000528
05 Reallocated Sectors Count 100 (100) Data 000000005F
07 Seek Error Rate 100 (100) Data 0000000000
08 Seek Time Performance 125 (125) Data 0000000021
09 Power-On Hours (POH) 096 (096) Data 0000007C4C
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 000000051B
C0 Power-off Retract Count 099 (099) Data 0000000569
C1 Load/Unload Cycle Count 099 (099) Data 0000000569
C2 Temperature 142 (142) Data 000016002A
C4 Reallocation Event Count 100 (100) Data 0000000073
C5 Current Pending Sector Count 100 (100) Data 0000000005
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000013
Partition 0
Partition ID Disk #0, Partition #0
Disk Letter F:
File System NTFS
Volume Serial Number 280A2E07
Size 99 MB
Used Space 63 MB (64%)
Free Space 36.7 MB (36%)
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number BC0CE792
Size 508 GB
Used Space 397 GB (79%)
Free Space 110 GB (21%)
Partition 2
Partition ID Disk #0, Partition #2
Disk Letter Z:
File System NTFS
Volume Serial Number BE3B00FB
Size 217 GB
Used Space 111 GB (52%)
Free Space 105 GB (48%)
Partition 3
Partition ID Disk #0, Partition #3
Disk Letter E:
File System NTFS
Volume Serial Number 849F1E97
Size 205 GB
Used Space 23.9 GB (12%)
Free Space 181 GB (88%)
Flash drives
Kingston DataTraveler G3 USB Device
Interface USB
Capacity 14.4 GB
Real size 15,479,537,664 bytes
RAID Type None
S.M.A.R.T
S.M.A.R.T not supported
Partition 0
Partition ID Disk #1, Partition #0
Disk Letter G:
File System FAT32
Volume Serial Number 7A983873
Size 14.4 GB
Used Space 11.2 GB (78%)
Free Space 3.19 GB (22%)
Optical Drives
Optiarc DVD RW AD-7201A ATA Device
Media Type DVD Writer
Name Optiarc DVD RW AD-7201A ATA Device
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive D:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 1
Status OK
Audio
Sound Cards
NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
High Definition Audio Device
Playback Devices
Speakers (High Definition Audio Device) (default)
Digital Audio (S/PDIF) (High Definition Audio Device)
Recording Device
Microphone (High Definition Audio Device)
Peripherals
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Vendor (Standard keyboards)
Location plugged into keyboard port
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor IBM Corp
Location USB Input Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Photosmart D110 series
Device Kind Camera/scanner
Device Name Photosmart D110 series
Vendor HP
Location ip:192.168.1.75,subnet:192.168.1.0/24
Driver
Date 10-12-2009
Version 8.0.0.0
File C:\Windows\system32\DRIVERS\serscan.sys
DataTraveler G3
Device Kind Portable Device
Device Name DataTraveler G3
Vendor KINGSTON
Comment PENDRIVE
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Printers
\\K12-0E52076E2EA\Canon MP250 series Printer
Share Name CanonMP2
Printer Port USB001
Print Processor Canon MP250 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon MP250 series Printer (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMDR9W.DLL
Canon MP250 series Printer
Printer Port USB002
Print Processor Canon MP250 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon MP250 series Printer (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMDR9W.DLL
Fax
Printer Port SHRFAX:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\FXSDRV.DLL
HP79B168 (HP Photosmart D110 series) (Default Printer)
Share Name HP79B168 (HP Photosmart D110 series)
Printer Port WSD-945d74f6-e466-44e4-80f7-39216817ed7c.006f
Print Processor hpfpp101
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status The printer is offline
Driver
Driver Name HP Photosmart D110 series (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\UNIDRV.DLL
Lexmark 2500 Series
Printer Port USB001
Print Processor Lexmark 2500 Series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name Lexmark 2500 Series (v4.1415)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdddr.dll
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\mxdwdrv.dll
Nitro PDF Creator (Reader 3)
Printer Port Nitro PDF Port:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 4294967292 dpi Color
Status Unknown
Driver
Driver Name Nitro Reader Driver 3 (v5.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\NitroReaderGraphics3.dll
PDF Printer
Printer Port Win7PDFPort
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name PDF Printer Driver x86 (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\PDFVCDrv.dll
PrimoPDF
Printer Port PrimoPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name PrimoPDF (v5.01)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\pscript5.dll
PrinterShare
Printer Port C:\ProgramData\PrinterShare\PORT
Print Processor winprint
Availability Always
Priority 1
Status Unknown
Driver
Driver Name PrinterShare (v2.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\pa_g.dll
Network
You are connected to the internet
Connected through NETGEAR WNA1100 N150 Wireless USB Adapter
IP Address 192.168.1.88
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
Preferred DNS server 192.168.1.254
DHCP Enabled
DHCP server 192.168.1.254
External IP Address 108.244.134.66
Adapter Type IEEE 802.11 wireless
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Broadcast node
Link Speed 1.1 KBps
Computer Name
NetBIOS Name LIVINGROOM-PC
DNS Name LivingRoom-PC
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain LivingRoom-PC
EH-Tcp
State Listen
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Using native Wi-Fi API version 2
Available access points count 1
Wi-Fi (2WIRE358)
SSID 2WIRE358
Frequency 2432000 kHz
Channel Number 5
Name 2WIRE358
Signal Strength/Quality 100
Security Enabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags Currently Connected to this network
Cipher Algorithm to be used when joining this network AES-CCMP algorithm
Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Enabled
File and Printer Sharing Enabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Microsoft Virtual WiFi Miniport Adapter #5
Connection Name Wireless Network Connection 13
DHCP enabled Yes
MAC Address 06-8E-F2-8B-29-2F
NETGEAR WNA1100 N150 Wireless USB Adapter
Connection-specific DNS Suffix gateway.2wire.net
Connection Name Wireless Network Connection 12
NetBIOS over TCPIP Yes
DHCP enabled Yes
MAC Address 00-8E-F2-8B-29-2F
IP Address 192.168.1.88
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
DHCP 192.168.1.254
DNS Server 192.168.1.254
Realtek PCIe GBE Family Controller
Connection Name Local Area Connection
DHCP enabled Yes
MAC Address 00-22-68-60-4C-39
Network Shares
Users C:\Users
E Movies E:\
VPM Trial E:\CADlink\SignLab 9.1 Trial\VPM Trial
HP79B168 (HP Photosmart D110 series) HP79B168 (HP Photosmart D110 series),LocalsplOnly
Current TCP Connections
AppleMobileDeviceService.exe (2236)
Local 127.0.0.1:49152 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:27015 LISTEN
C:\Program Files\AVG SafeGuard toolbar\vprot.exe (16636)
Local 192.168.1.88:49911 CLOSE-WAIT Remote 23.201.231.117:80 (Querying... ) (HTTP)
Local 127.0.0.1:49756 ESTABLISHED Remote 127.0.0.1:7112 (Querying... )
C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (16892)
Local 127.0.0.1:49718 ESTABLISHED Remote 127.0.0.1:4573 (Querying... )
C:\Program Files\Mozilla Firefox\firefox.exe (17528)
Local 127.0.0.1:52692 ESTABLISHED Remote 127.0.0.1:52693 (Querying... )
Local 127.0.0.1:52693 ESTABLISHED Remote 127.0.0.1:52692 (Querying... )
C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (16520)
Local 127.0.0.1:4370 LISTEN
Local 127.0.0.1:4380 LISTEN
daemonu.exe (3304)
Local 127.0.0.1:2559 LISTEN
HD-Network.exe (4224)
Local 127.0.0.1:5555 LISTEN
Local 127.0.0.1:9999 LISTEN
Local 127.0.0.1:7777 LISTEN
Local 127.0.0.1:6666 LISTEN
Local 192.168.1.88:49188 ESTABLISHED Remote 74.125.134.188:5228 (Querying... )
Local 192.168.1.88:49556 ESTABLISHED Remote 69.171.233.33:443 (Querying... ) (HTTPS)
loggingserver.exe (4296)
Local 0.0.0.0:7112 LISTEN
Local 127.0.0.1:7112 ESTABLISHED Remote 127.0.0.1:49756 (Querying... )
lsass.exe (796)
Local 0.0.0.0:5004 LISTEN
lxddcoms.exe (2808)
Local 0.0.0.0:10004 LISTEN
mDNSResponder.exe (2364)
Local 127.0.0.1:5354 LISTEN
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:49152 (Querying... )
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:57792 (Querying... )
MediaServer.exe (4044)
Local 0.0.0.0:41952 LISTEN
MotoHelperService.exe (3020)
Local 127.0.0.1:4573 LISTEN
Local 127.0.0.1:4573 ESTABLISHED Remote 127.0.0.1:49718 (Querying... )
nvstreamsvc.exe (16932)
Local 0.0.0.0:47985 LISTEN
Local 127.0.0.1:49711 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49712 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49713 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49714 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49715 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49714 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49713 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49712 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49715 (Querying... )
Local 127.0.0.1:57813 SYN-SENT Remote 127.0.0.1:47986 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49711 (Querying... )
rpdsvc.exe (3488)
Local 127.0.0.1:49175 ESTABLISHED Remote 127.0.0.1:49176 (Querying... )
Local 0.0.0.0:20121 LISTEN
Local 127.0.0.1:49176 ESTABLISHED Remote 127.0.0.1:49175 (Querying... )
Local 127.0.0.1:49746 ESTABLISHED Remote 127.0.0.1:49747 (Querying... )
Local 127.0.0.1:49747 ESTABLISHED Remote 127.0.0.1:49746 (Querying... )
Local 127.0.0.1:49173 ESTABLISHED Remote 127.0.0.1:49174 (Querying... )
Local 127.0.0.1:57789 CLOSE-WAIT Remote 127.0.0.1:20121 (Querying... )
Local 127.0.0.1:57792 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:49160 ESTABLISHED Remote 127.0.0.1:49161 (Querying... )
Local 127.0.0.1:20121 FIN-WAIT-2 Remote 127.0.0.1:57789 (Querying... )
Local 127.0.0.1:49153 ESTABLISHED Remote 127.0.0.1:49154 (Querying... )
Local 127.0.0.1:49154 ESTABLISHED Remote 127.0.0.1:49153 (Querying... )
Local 127.0.0.1:49155 ESTABLISHED Remote 127.0.0.1:49156 (Querying... )
Local 127.0.0.1:49156 ESTABLISHED Remote 127.0.0.1:49155 (Querying... )
Local 127.0.0.1:49157 ESTABLISHED Remote 127.0.0.1:49158 (Querying... )
Local 127.0.0.1:49158 ESTABLISHED Remote 127.0.0.1:49157 (Querying... )
Local 127.0.0.1:49161 ESTABLISHED Remote 127.0.0.1:49160 (Querying... )
Local 127.0.0.1:49162 ESTABLISHED Remote 127.0.0.1:49163 (Querying... )
Local 127.0.0.1:49163 ESTABLISHED Remote 127.0.0.1:49162 (Querying... )
Local 127.0.0.1:49164 ESTABLISHED Remote 127.0.0.1:49165 (Querying... )
Local 127.0.0.1:49165 ESTABLISHED Remote 127.0.0.1:49164 (Querying... )
Local 127.0.0.1:49166 ESTABLISHED Remote 127.0.0.1:49167 (Querying... )
Local 127.0.0.1:49167 ESTABLISHED Remote 127.0.0.1:49166 (Querying... )
Local 127.0.0.1:49169 ESTABLISHED Remote 127.0.0.1:49170 (Querying... )
Local 127.0.0.1:49170 ESTABLISHED Remote 127.0.0.1:49169 (Querying... )
Local 127.0.0.1:49171 ESTABLISHED Remote 127.0.0.1:49172 (Querying... )
Local 127.0.0.1:49172 ESTABLISHED Remote 127.0.0.1:49171 (Querying... )
Local 127.0.0.1:49174 ESTABLISHED Remote 127.0.0.1:49173 (Querying... )
services.exe (744)
Local 0.0.0.0:5005 LISTEN
spoolsv.exe (612)
Local 0.0.0.0:5003 LISTEN
svchost.exe (1340)
Local 0.0.0.0:135 (DCE) LISTEN
svchost.exe (1528)
Local 0.0.0.0:5001 LISTEN
svchost.exe (1640)
Local 0.0.0.0:5002 LISTEN
svchost.exe (2016)
Local 0.0.0.0:3390 LISTEN
System Process
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57733 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57728 (Querying... )
Local 127.0.0.1:20121 TIME-WAIT Remote 127.0.0.1:57706 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57729 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57730 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57731 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57732 (Querying... )
Local 192.168.1.88:57784 TIME-WAIT Remote 192.168.1.64:139 (Querying... ) (NetBIOS session service)
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57735 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57737 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57739 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57740 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57741 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57742 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57743 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57744 (Querying... )
Local 127.0.0.1:57722 TIME-WAIT Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:57669 TIME-WAIT Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:57752 (Querying... )
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 0.0.0.0:2869 LISTEN
Local 0.0.0.0:5357 LISTEN
Local 0.0.0.0:10243 LISTEN
Local 192.168.1.88:139 (NetBIOS session service) LISTEN
wininit.exe (696)
Local 0.0.0.0:5000 LISTEN
wmpnetwk.exe (4432)
Local 0.0.0.0:554 LISTEN
Generated with Speccy v1.24.632
  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
I don't see any sign that the OTL Run Fix actually ran and no log.

Don't see Process Explorer log.

You need to uninstall:

Microsoft Security Essentials (One anti-virus is all you want. Two fight each other and AVG is the better one.)

Advanced SystemCare Ultimate 7 is causing problems and I never liked them anyway. Chinese ripoff of MBAM.
AVG SafeGuard toolbar (Version: 17.2.0.38)
FrostWire 5.6.2 (Version: 5.6.2.1) P2P software and one of the worst ones fro infected files.
Frostwire Toolbar (Version: 12.7.0.2072) Foist ware


Skype Click to Call (Version: 6.13.13771) Stupid program that changes all random 10 digit numbers to telephone numbers. You do not need this for Skype to work.


Download the attached fixlist.txt to the same location as FRST
Run FRST and press Fix
A fix log will be generated please post that then run a new FRST scan and post it.
  • 0

#5
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
First of all, THANK YOU for all your assistance with this and Happy Holidays

Ok, not sure how I missed those first steps but I think I have it all now.



========== OTL ==========
Service vToolbarUpdater17.2.0 stopped successfully!
Service vToolbarUpdater17.2.0 deleted successfully!
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe moved successfully.
Service vpcnfltr stopped successfully!
Service vpcnfltr deleted successfully!
File system32\DRIVERS\vpcnfltr.sys not found.
Service myueyqsz stopped successfully!
Service myueyqsz deleted successfully!
File C:\Windows\system32\drivers\myueyqsz.sys not found.
Service MRESP50 stopped successfully!
Service MRESP50 deleted successfully!
File C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS not found.
Service MREMP50 stopped successfully!
Service MREMP50 deleted successfully!
File C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS not found.
Service motandroidusb stopped successfully!
Service motandroidusb deleted successfully!
File System32\Drivers\motoandroid.sys not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\Users\LIVING~1\AppData\Local\Temp\catchme.sys not found.
Registry value HKEY_USERS\S-1-5-21-21828565-3005677120-1819634571-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-21828565-3005677120-1819634571-1001\Software\Microsoft\Internet Explorer\SearchScopes\{442CF095-5D34-49AC-843F-8C19EA99DAFF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{442CF095-5D34-49AC-843F-8C19EA99DAFF}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@nielsen/FirefoxTracker\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected] deleted successfully.
File C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\[email protected] not found.
File C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\4qub62kd.default\extensions\[email protected] not found.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Users\Living Room\AppData\Local\mtqktr4u2mpa0nks1ulk7p652q8l moved successfully.
C:\ProgramData\mtqktr4u2mpa0nks1ulk7p652q8l moved successfully.
========== COMMANDS ==========

[EMPTYFLASH]

User: Ad
->Flash cache emptied: 234061 bytes

User: Administrator
->Flash cache emptied: 57077 bytes

User: All Users

User: Default

User: Default User

User: Living Room
->Flash cache emptied: 3825 bytes

User: Mcx1-LIVINGROOM-PC
->Flash cache emptied: 0 bytes

User: Mcx1-LIVINGROOM-PC.LivingRoom-PC
->Flash cache emptied: 56475 bytes

User: Mcx2-LIVINGROOM-PC

User: Public

User: TEMP
->Flash cache emptied: 56475 bytes

User: UpdatusUser
->Flash cache emptied: 56502 bytes

User: UpdatusUser.LivingRoom-PC
->Flash cache emptied: 56475 bytes

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: Ad
->Java cache emptied: 15271305 bytes

User: Administrator
->Java cache emptied: 88945 bytes

User: All Users

User: Default

User: Default User

User: Living Room
->Java cache emptied: 134181531 bytes

User: Mcx1-LIVINGROOM-PC

User: Mcx1-LIVINGROOM-PC.LivingRoom-PC

User: Mcx2-LIVINGROOM-PC

User: Public

User: TEMP

User: UpdatusUser

User: UpdatusUser.LivingRoom-PC

Total Java Files Cleaned = 143.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12232013_003940








Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-12-2013 01
Ran by Living Room (administrator) on LIVINGROOM-PC on 23-12-2013 01:04:55
Running from C:\Users\Living Room\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
(IOBit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCAvSvc.exe
(Emsi Software GmbH) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corp.) C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Lexmark International, Inc.) C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
( ) C:\Windows\System32\lxddcoms.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\ProgramData\TVersity\Media Server\MediaServer.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Service.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-Network.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-BlockDevice.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-SharedFolder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\AVG SafeGuard toolbar\vprot.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Skillbrains) C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealUpgrade\realupgrade.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Spotify Ltd) C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
(Maxthon International ltd.) C:\Program Files\Maxthon3\Bin\Maxthon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
() C:\Program Files\Real\RealPlayer\RPDS\Tools\ffmpeg\ffprobe.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\Update\realsched.exe [295512 2013-10-17] (RealNetworks, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [vProt] - C:\Program Files\AVG SafeGuard toolbar\vprot.exe [2471448 2013-12-21] ()
HKCU\...\Run: [LightShot] - C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] ()
HKCU\...\Run: [Spotify] - C:\Users\Living Room\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Advanced SystemCare Ultimate] - C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe [2562368 2013-12-02] (IObit)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Ad\...\Run: [swg] - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Ad\...\Policies\system: [LogonHoursAction] 2
HKU\Ad\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Administrator\...\Policies\system: [LogonHoursAction] 2
HKU\Administrator\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Mcx1-LIVINGROOM-PC.LivingRoom-PC\...\Winlogon: [Shell] C:\Windows\eHome\McrMgr.exe [ 2009-07-13] (Microsoft Corporation) <==== ATTENTION
AppInit_DLLs: C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [ 2013-07-27] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0A32E1B72A7FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg....fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab
Handler: linkscanner - No CLSID Value -
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.2.0\ViProtocol.dll (AVG Secure Search)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357
FF Homepage: hxxp://www.google.com/ig
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.2.0\\npsitesafety.dll (AVG Technologies)
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @MagellanGPS.com/CommunicationPlugin - C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 - C:\Program Files\Virtual Earth 3D\ ()
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.6.14 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\Living Room\AppData\Local\Roblox\Versions\version-28a069d7dccb4f92\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: CouponNetwork.com/CMDUniversalCouponPrintActivator - C:\Users\LIVING~1\AppData\Roaming\CATALI~2\NPBCSK~1.DLL (Catalina Marketing Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: Play Pickle TextLinks - C:\Users\Living Room\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]
FF Extension: Geocaching.com GPX Downloader - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\[email protected]
FF Extension: Adblock Plus - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Greasemonkey - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\[email protected]
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG2012\Firefox4\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM\...\Firefox\Extensions: [{1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38

Chrome:
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={3676D089-D678-4B66-9CA8-EB83DE303D18}&mid=d162516e7ece47d6853fd16b2e84a5ca-9a17500a96d428a5cdb8b2643968b9a928fc107f&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=hp
CHR RestoreOnStartup: "hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP&dt=070713", "https://www.google.com/"
CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll No File
CHR Plugin: (AVG Internet Security) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (RealPlayer™ HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks™ Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
CHR Extension: (Angry Birds) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0
CHR Extension: (YouTube) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Swiki) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0
CHR Extension: (RealPlayer Downloader) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.1_0
CHR Extension: (Skype Click to Call) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0
CHR Extension: (Fieldrunners) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0
CHR Extension: (AVG SafeGuard) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.2.0.38_1
CHR Extension: ( "name":"Advanced SystemCare Surfing Protection",) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0
CHR Extension: (Google Wallet) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0
CHR Extension: (Gmail) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [gikoeigmfnoggdlhnobkbbbkohiahbko] - C:\Program Files\Swiki\chrome.crx
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM\...\Chrome\Extension: [joflpaafchojilpbjjbebljnikhkdhgf] - C:\ProgramData\wxDfast\joflpaafchojilpbjjbebljnikhkdhgf.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\17.2.0.38\avg.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

========================== Services (Whitelisted) =================

R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [3046224 2012-02-21] (Emsi Software GmbH)
R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe [886592 2013-11-15] (IObit)
R2 ASCAntivirusSrv; C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe [646976 2013-11-28] (IOBit)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 BingDesktopUpdate; C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-05-13] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-05-13] (BlueStack Systems, Inc.)
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151232 2013-12-02] (IObit)
R2 lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [99248 2007-05-25] (Lexmark International, Inc.)
R2 lxdd_device; C:\Windows\system32\lxddcoms.exe [537520 2007-05-25] ( )
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-23] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
S2 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195400 2012-09-25] (NETGEAR)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14592288 2013-07-27] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-09-23] ()
R2 RealPlayer Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1418336 2013-10-17] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [29320 2013-09-25] ()
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
R2 TVersityMediaServer; C:\ProgramData\TVersity\Media Server\MediaServer.exe [1249064 2011-07-29] ()
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [297440 2011-07-28] ()

==================== Drivers (Whitelisted) ====================

S3 a2acc; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [51632 2011-11-02] (Emsi Software GmbH)
R1 A2DDA; C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [17904 2011-05-19] (Emsi Software GmbH)
R1 a2injectiondriver; C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [34768 2011-11-02] (Emsi Software GmbH)
R1 a2util; C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [11776 2010-05-05] (Emsi Software GmbH)
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1564160 2010-10-11] (Atheros Communications, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-10] (AVG Technologies)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-05-13] (BlueStack Systems)
S3 D-Vitec; C:\Windows\System32\DRIVERS\dvitdcnt.sys [281344 2012-07-26] (D-vitec)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsl3b3e4c40; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317AE8FF-0FC9-4930-93AB-25652828AF84}\MpKsl3b3e4c40.sys [40392 2013-12-23] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34592 2013-05-14] (NVIDIA Corporation)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21472 2011-07-22] (Windows ® Win 7 DDK provider)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [172416 2010-11-20] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2010-11-20] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [296064 2010-11-20] (Microsoft Corporation)
S3 zghsdiag; C:\Windows\System32\DRIVERS\zghsdiag.sys [106752 2011-01-13] (ZTE Incorporated)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-23 01:05 - 2013-12-23 01:05 - 00004134 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-22 19:12 - 2013-12-23 00:59 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-22 18:48 - 2013-12-22 18:48 - 00000000 ____D C:\Program Files\Speccy
2013-12-22 18:32 - 2013-12-22 18:32 - 00012657 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-22 17:39 - 2013-12-22 17:39 - 00002430 _____ C:\VEW.txt
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:36 - 2013-12-22 12:37 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:35 - 2013-12-23 01:04 - 00031258 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-21 20:51 - 2013-12-21 20:51 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 20:48 - 2013-12-21 20:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\Users\Living Room\AppData\Local\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:24 - 2013-12-21 08:25 - 00003743 _____ C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-21 08:24 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-23 00:56 - 00000504 _____ C:\Windows\setupact.log
2013-12-21 00:37 - 2013-12-22 13:10 - 00011806 _____ C:\Windows\PFRO.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:28 - 2013-12-21 00:32 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-18 23:17 - 2013-12-18 23:43 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:27 - 2013-12-18 22:32 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:25 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:03 - 2013-12-18 21:13 - 00002192 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001131 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 20:54 - 2013-12-18 20:56 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:52 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 14:51 - 2013-12-18 15:03 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:43 - 2013-12-18 14:44 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-15 23:54 - 2013-12-16 02:06 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:53 - 2013-12-23 00:58 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-15 23:51 - 2013-12-15 23:52 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:09 - 2013-12-15 16:14 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 09:22 - 2013-12-14 09:23 - 00069195 _____ C:\Users\Living Room\Desktop\logs.odt
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:20 - 2013-12-11 17:31 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 19:42 - 2013-12-10 19:42 - 00000848 _____ C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2011-07-22 10:35 - 00021472 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\SCMNdisP.sys
2013-12-10 19:42 - 2008-05-15 02:28 - 00020384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\jswpslwf.sys
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:08 - 2013-12-10 08:12 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:13 - 2013-12-18 22:14 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-10 07:12 - 2013-12-22 12:55 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 22:00 - 2013-06-27 18:05 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2013-12-09 21:47 - 2013-12-22 12:21 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\ProductData
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\IObit
2013-12-09 21:40 - 2013-12-18 21:02 - 00000000 ____D C:\Program Files\IObit
2013-12-09 21:40 - 2013-12-09 21:41 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:38 - 2013-12-09 21:39 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:25 - 2013-12-09 17:28 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 10:53 - 2013-12-09 11:09 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-05 23:19 - 2013-12-05 23:24 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-11-30 20:59 - 2013-11-30 20:59 - 00000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url

==================== One Month Modified Files and Folders =======

2013-12-23 01:05 - 2013-12-23 01:05 - 00004134 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 01:05 - 2013-12-22 12:35 - 00031258 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-23 01:00 - 2013-06-06 09:27 - 01308275 _____ C:\Windows\WindowsUpdate.log
2013-12-23 00:59 - 2013-12-22 19:12 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-23 00:58 - 2013-12-15 23:53 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-23 00:57 - 2011-03-22 09:06 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-23 00:56 - 2013-12-21 00:37 - 00000504 _____ C:\Windows\setupact.log
2013-12-23 00:56 - 2011-06-04 21:09 - 00586051 _____ C:\Windows\system32\TVersityMediaServer.log
2013-12-23 00:56 - 2011-03-08 03:19 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-23 00:56 - 2009-07-13 23:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-23 00:21 - 2011-03-22 09:06 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-23 00:06 - 2013-11-01 09:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-22 21:43 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job
2013-12-22 21:37 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-sys.job
2013-12-22 19:02 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-22 19:02 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-22 18:49 - 2013-08-23 10:58 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Nitro PDF
2013-12-22 18:48 - 2013-12-22 18:48 - 00000000 ____D C:\Program Files\Speccy
2013-12-22 18:32 - 2013-12-22 18:32 - 00012657 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-22 17:39 - 2013-12-22 17:39 - 00002430 _____ C:\VEW.txt
2013-12-22 17:22 - 2011-03-07 07:01 - 00000000 ____D C:\ProgramData\MFAData
2013-12-22 16:34 - 2012-01-17 23:35 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\.minecraft
2013-12-22 16:33 - 2013-01-08 18:47 - 00000000 ____D C:\Users\Living Room\AppData\Local\CrashDumps
2013-12-22 13:10 - 2013-12-21 00:37 - 00011806 _____ C:\Windows\PFRO.log
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:55 - 2013-12-10 07:12 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-22 12:55 - 2013-06-06 08:05 - 00000000 ____D C:\Users\Administrator
2013-12-22 12:55 - 2012-05-13 00:21 - 00000000 ____D C:\Users\UpdatusUser.LivingRoom-PC
2013-12-22 12:55 - 2012-02-18 01:19 - 00000000 ____D C:\Users\Mcx1-LIVINGROOM-PC.LivingRoom-PC
2013-12-22 12:55 - 2011-03-18 12:54 - 00000000 ____D C:\Users\Ad
2013-12-22 12:55 - 2011-03-06 19:47 - 00000000 ____D C:\Users\Living Room
2013-12-22 12:37 - 2013-12-22 12:36 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-22 12:21 - 2013-12-09 21:47 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-21 20:51 - 2013-12-21 20:51 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 20:51 - 2012-07-18 00:01 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-21 20:49 - 2013-12-21 20:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\Users\Living Room\AppData\Local\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:25 - 2013-12-21 08:24 - 00003743 _____ C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-21 08:25 - 2013-12-21 08:24 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-11-15 16:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2013-12-21 07:45 - 2011-03-06 19:50 - 00779306 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:37 - 2012-08-20 19:42 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-21 00:32 - 2013-12-21 00:28 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:32 - 2013-03-14 16:28 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Uniblue
2013-12-21 00:31 - 2013-03-14 16:28 - 00000000 ____D C:\Program Files\Uniblue
2013-12-21 00:26 - 2013-08-27 20:58 - 05155033 _____ (Swearware) C:\Users\Living Room\Downloads\ComboFix.exe
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-20 14:32 - 2011-03-06 22:00 - 00000000 ____D C:\Windows\Panther
2013-12-20 11:36 - 2013-09-07 13:39 - 00001371 _____ C:\Users\Living Room\Desktop\ROBLOX Studio 2013.lnk
2013-12-20 11:36 - 2013-09-05 16:52 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2013-12-19 01:20 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\rescache
2013-12-19 01:05 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-12-19 00:38 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-12-18 23:43 - 2013-12-18 23:17 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:36 - 2012-01-02 21:18 - 00001945 _____ C:\Windows\epplauncher.mif
2013-12-18 22:35 - 2013-07-07 18:41 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-18 22:32 - 2013-12-18 22:27 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:14 - 2013-12-10 07:13 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-18 21:27 - 2011-09-02 08:27 - 00000000 ____D C:\Windows\Minidump
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:13 - 2013-12-18 21:03 - 00002192 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\ProductData
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\IObit
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001131 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 21:02 - 2013-12-09 21:40 - 00000000 ____D C:\Program Files\IObit
2013-12-18 21:01 - 2013-11-22 12:39 - 00000138 _____ C:\Users\Living Room\Desktop\Xmas Turkey Orders.txt
2013-12-18 20:56 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:54 - 2013-12-18 20:52 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 15:03 - 2013-12-18 14:51 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:44 - 2013-12-18 14:43 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-18 14:44 - 2013-08-26 15:59 - 00000000 ____D C:\Users\Living Room\Desktop\homework
2013-12-18 14:43 - 2013-10-06 17:13 - 00000000 ____D C:\Users\Living Room\Desktop\Tyler stuff
2013-12-18 14:28 - 2011-05-29 11:46 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\vlc
2013-12-16 02:06 - 2013-12-15 23:54 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:52 - 2013-12-15 23:51 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:14 - 2013-12-15 16:09 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 09:23 - 2013-12-14 09:22 - 00069195 _____ C:\Users\Living Room\Desktop\logs.odt
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-14 02:23 - 2011-03-22 09:06 - 00000000 ____D C:\Program Files\Google
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:31 - 2013-12-11 17:20 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 23:21 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\NDF
2013-12-10 22:06 - 2013-11-01 09:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-12-10 22:06 - 2013-11-01 09:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-12-10 19:42 - 2013-12-10 19:42 - 00000848 _____ C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2012-01-16 19:47 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:12 - 2013-12-10 08:08 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:28 - 2011-05-14 12:59 - 00007607 _____ C:\Users\Living Room\AppData\Local\resmon.resmoncfg
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:19 - 2011-05-15 20:54 - 00000000 ___RD C:\Users\Living Room\Virtual Machines
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:05 - 2011-10-02 08:16 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:41 - 2013-12-09 21:40 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:41 - 2011-06-03 13:10 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Apple Computer
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:39 - 2013-12-09 21:38 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:28 - 2013-12-09 17:25 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 11:09 - 2013-12-09 10:53 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-08 20:52 - 2013-09-12 14:49 - 00003728 _____ C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2013-12-05 23:24 - 2013-12-05 23:19 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-12-01 14:42 - 2011-03-07 23:25 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-30 20:59 - 2013-11-30 20:59 - 00000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-30 20:59 - 2012-05-01 12:46 - 00000000 ____D C:\Program Files\CCleaner
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url

Files to move or delete:
====================
C:\Users\Ad\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_loginapplet_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE1.dat
C:\Users\Living Room\random.dat


Some content of TEMP:
====================
C:\Users\Living Room\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 02:16

==================== End Of Log ============================





2013-12-23 07:18:35, Info CSI 00000009 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:35, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:38, Info CSI 0000000c [SR] Verify complete
2013-12-23 07:18:39, Info CSI 0000000d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:39, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:42, Info CSI 00000010 [SR] Verify complete
2013-12-23 07:18:42, Info CSI 00000011 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:42, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:45, Info CSI 00000014 [SR] Verify complete
2013-12-23 07:18:45, Info CSI 00000015 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:45, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:47, Info CSI 00000018 [SR] Verify complete
2013-12-23 07:18:47, Info CSI 00000019 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:47, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:48, Info CSI 0000001c [SR] Verify complete
2013-12-23 07:18:48, Info CSI 0000001d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:48, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:49, Info CSI 00000020 [SR] Verify complete
2013-12-23 07:18:49, Info CSI 00000021 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:49, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:50, Info CSI 00000024 [SR] Verify complete
2013-12-23 07:18:50, Info CSI 00000025 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:50, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:52, Info CSI 00000028 [SR] Verify complete
2013-12-23 07:18:53, Info CSI 00000029 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:53, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:55, Info CSI 0000002c [SR] Verify complete
2013-12-23 07:18:55, Info CSI 0000002d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:55, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:57, Info CSI 00000030 [SR] Verify complete
2013-12-23 07:18:57, Info CSI 00000031 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:57, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:58, Info CSI 00000034 [SR] Verify complete
2013-12-23 07:18:59, Info CSI 00000035 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:59, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:01, Info CSI 00000038 [SR] Verify complete
2013-12-23 07:19:01, Info CSI 00000039 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:01, Info CSI 0000003a [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:04, Info CSI 0000003c [SR] Verify complete
2013-12-23 07:19:04, Info CSI 0000003d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:04, Info CSI 0000003e [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:06, Info CSI 00000040 [SR] Verify complete
2013-12-23 07:19:06, Info CSI 00000041 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:06, Info CSI 00000042 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:09, Info CSI 00000044 [SR] Verify complete
2013-12-23 07:19:09, Info CSI 00000045 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:09, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:14, Info CSI 00000049 [SR] Verify complete
2013-12-23 07:19:14, Info CSI 0000004a [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:14, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:17, Info CSI 0000004f [SR] Verify complete
2013-12-23 07:19:17, Info CSI 00000050 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:17, Info CSI 00000051 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:20, Info CSI 00000054 [SR] Verify complete
2013-12-23 07:19:20, Info CSI 00000055 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:20, Info CSI 00000056 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:23, Info CSI 0000005a [SR] Verify complete
2013-12-23 07:19:23, Info CSI 0000005b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:23, Info CSI 0000005c [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:30, Info CSI 00000066 [SR] Verify complete
2013-12-23 07:19:30, Info CSI 00000067 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:30, Info CSI 00000068 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:34, Info CSI 0000006a [SR] Verify complete
2013-12-23 07:19:34, Info CSI 0000006b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:34, Info CSI 0000006c [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:38, Info CSI 0000006e [SR] Verify complete
2013-12-23 07:19:38, Info CSI 0000006f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:38, Info CSI 00000070 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:46, Info CSI 00000072 [SR] Verify complete
2013-12-23 07:19:46, Info CSI 00000073 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:46, Info CSI 00000074 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:49, Info CSI 00000076 [SR] Verify complete
2013-12-23 07:19:50, Info CSI 00000077 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:50, Info CSI 00000078 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:53, Info CSI 0000007a [SR] Verify complete
2013-12-23 07:19:53, Info CSI 0000007b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:53, Info CSI 0000007c [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:56, Info CSI 0000007e [SR] Verify complete
2013-12-23 07:19:57, Info CSI 0000007f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:57, Info CSI 00000080 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:03, Info CSI 00000084 [SR] Verify complete
2013-12-23 07:20:03, Info CSI 00000085 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:03, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:12, Info CSI 00000088 [SR] Verify complete
2013-12-23 07:20:13, Info CSI 00000089 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:13, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:21, Info CSI 0000008c [SR] Verify complete
2013-12-23 07:20:22, Info CSI 0000008d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:22, Info CSI 0000008e [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:30, Info CSI 00000090 [SR] Verify complete
2013-12-23 07:20:30, Info CSI 00000091 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:30, Info CSI 00000092 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:33, Info CSI 00000094 [SR] Verify complete
2013-12-23 07:20:33, Info CSI 00000095 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:33, Info CSI 00000096 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:35, Info CSI 00000098 [SR] Verify complete
2013-12-23 07:20:35, Info CSI 00000099 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:35, Info CSI 0000009a [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:36, Info CSI 0000009c [SR] Verify complete
2013-12-23 07:20:36, Info CSI 0000009d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:36, Info CSI 0000009e [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:41, Info CSI 000000a4 [SR] Verify complete
2013-12-23 07:20:41, Info CSI 000000a5 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:41, Info CSI 000000a6 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:46, Info CSI 000000c0 [SR] Verify complete
2013-12-23 07:20:46, Info CSI 000000c1 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:46, Info CSI 000000c2 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:49, Info CSI 000000c4 [SR] Verify complete
2013-12-23 07:20:49, Info CSI 000000c5 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:49, Info CSI 000000c6 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:52, Info CSI 000000c8 [SR] Verify complete
2013-12-23 07:20:53, Info CSI 000000c9 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:53, Info CSI 000000ca [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:55, Info CSI 000000cc [SR] Verify complete
2013-12-23 07:20:56, Info CSI 000000cd [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:56, Info CSI 000000ce [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:01, Info CSI 000000d0 [SR] Verify complete
2013-12-23 07:21:02, Info CSI 000000d1 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:02, Info CSI 000000d2 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:07, Info CSI 000000d5 [SR] Verify complete
2013-12-23 07:21:07, Info CSI 000000d6 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:07, Info CSI 000000d7 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:09, Info CSI 000000d9 [SR] Verify complete
2013-12-23 07:21:09, Info CSI 000000da [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:09, Info CSI 000000db [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:12, Info CSI 000000dd [SR] Verify complete
2013-12-23 07:21:12, Info CSI 000000de [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:12, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:18, Info CSI 000000e1 [SR] Verify complete
2013-12-23 07:21:19, Info CSI 000000e2 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:19, Info CSI 000000e3 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:24, Info CSI 000000e5 [SR] Verify complete
2013-12-23 07:21:25, Info CSI 000000e6 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:25, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:30, Info CSI 000000e9 [SR] Verify complete
2013-12-23 07:21:30, Info CSI 000000ea [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:30, Info CSI 000000eb [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:39, Info CSI 000000fd [SR] Verify complete
2013-12-23 07:21:39, Info CSI 000000fe [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:39, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:45, Info CSI 00000115 [SR] Verify complete
2013-12-23 07:21:45, Info CSI 00000116 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:45, Info CSI 00000117 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:52, Info CSI 00000119 [SR] Verify complete
2013-12-23 07:21:52, Info CSI 0000011a [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:52, Info CSI 0000011b [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:07, Info CSI 0000011d [SR] Verify complete
2013-12-23 07:22:07, Info CSI 0000011e [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:07, Info CSI 0000011f [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:18, Info CSI 00000122 [SR] Verify complete
2013-12-23 07:22:18, Info CSI 00000123 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:18, Info CSI 00000124 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:26, Info CSI 00000126 [SR] Verify complete
2013-12-23 07:22:26, Info CSI 00000127 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:26, Info CSI 00000128 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:30, Info CSI 0000012a [SR] Verify complete
2013-12-23 07:22:31, Info CSI 0000012b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:31, Info CSI 0000012c [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:35, Info CSI 0000012e [SR] Verify complete
2013-12-23 07:22:36, Info CSI 0000012f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:36, Info CSI 00000130 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:40, Info CSI 00000132 [SR] Verify complete
2013-12-23 07:22:40, Info CSI 00000133 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:40, Info CSI 00000134 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:45, Info CSI 00000137 [SR] Verify complete
2013-12-23 07:22:45, Info CSI 00000138 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:45, Info CSI 00000139 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:56, Info CSI 0000013b [SR] Verify complete
2013-12-23 07:22:56, Info CSI 0000013c [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:56, Info CSI 0000013d [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:03, Info CSI 00000140 [SR] Verify complete
2013-12-23 07:23:03, Info CSI 00000141 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:03, Info CSI 00000142 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:12, Info CSI 00000144 [SR] Verify complete
2013-12-23 07:23:12, Info CSI 00000145 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:12, Info CSI 00000146 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:19, Info CSI 00000148 [SR] Verify complete
2013-12-23 07:23:19, Info CSI 00000149 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:19, Info CSI 0000014a [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:34, Info CSI 0000014d [SR] Verify complete
2013-12-23 07:23:34, Info CSI 0000014e [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:34, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:41, Info CSI 00000151 [SR] Verify complete
2013-12-23 07:23:41, Info CSI 00000152 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:41, Info CSI 00000153 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:46, Info CSI 00000155 [SR] Verify complete
2013-12-23 07:23:46, Info CSI 00000156 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:46, Info CSI 00000157 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:52, Info CSI 00000159 [SR] Verify complete
2013-12-23 07:23:52, Info CSI 0000015a [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:52, Info CSI 0000015b [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:58, Info CSI 0000015e [SR] Verify complete
2013-12-23 07:23:58, Info CSI 0000015f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:58, Info CSI 00000160 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:10, Info CSI 00000162 [SR] Verify complete
2013-12-23 07:24:10, Info CSI 00000163 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:10, Info CSI 00000164 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:17, Info CSI 00000166 [SR] Verify complete
2013-12-23 07:24:17, Info CSI 00000167 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:17, Info CSI 00000168 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:23, Info CSI 0000016a [SR] Verify complete
2013-12-23 07:24:23, Info CSI 0000016b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:23, Info CSI 0000016c [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:28, Info CSI 0000016e [SR] Verify complete
2013-12-23 07:24:28, Info CSI 0000016f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:28, Info CSI 00000170 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:30, Info CSI 00000172 [SR] Verify complete
2013-12-23 07:24:31, Info CSI 00000173 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:31, Info CSI 00000174 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:35, Info CSI 00000175 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:24:35, Info CSI 00000176 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:24:35, Info CSI 00000177 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 07:24:35, Info CSI 00000178 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 07:24:36, Info CSI 0000017a [SR] Verify complete
2013-12-23 07:24:36, Info CSI 0000017b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:36, Info CSI 0000017c [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:43, Info CSI 0000017f [SR] Verify complete
2013-12-23 07:24:43, Info CSI 00000180 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:43, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:50, Info CSI 00000183 [SR] Verify complete
2013-12-23 07:24:50, Info CSI 00000184 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:50, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:56, Info CSI 00000187 [SR] Verify complete
2013-12-23 07:24:56, Info CSI 00000188 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:56, Info CSI 00000189 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:04, Info CSI 0000018b [SR] Verify complete
2013-12-23 07:25:04, Info CSI 0000018c [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:04, Info CSI 0000018d [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:10, Info CSI 0000018f [SR] Verify complete
2013-12-23 07:25:10, Info CSI 00000190 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:10, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:14, Info CSI 00000193 [SR] Verify complete
2013-12-23 07:25:15, Info CSI 00000194 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:15, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:19, Info CSI 00000197 [SR] Verify complete
2013-12-23 07:25:19, Info CSI 00000198 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:19, Info CSI 00000199 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:28, Info CSI 0000019b [SR] Verify complete
2013-12-23 07:25:29, Info CSI 0000019c [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:29, Info CSI 0000019d [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:35, Info CSI 0000019f [SR] Verify complete
2013-12-23 07:25:36, Info CSI 000001a0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:36, Info CSI 000001a1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:40, Info CSI 000001a3 [SR] Verify complete
2013-12-23 07:25:40, Info CSI 000001a4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:40, Info CSI 000001a5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:43, Info CSI 000001a7 [SR] Verify complete
2013-12-23 07:25:43, Info CSI 000001a8 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:43, Info CSI 000001a9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:54, Info CSI 000001ab [SR] Verify complete
2013-12-23 07:25:54, Info CSI 000001ac [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:54, Info CSI 000001ad [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:20, Info CSI 000001af [SR] Verify complete
2013-12-23 07:26:21, Info CSI 000001b0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:21, Info CSI 000001b1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:28, Info CSI 000001b3 [SR] Verify complete
2013-12-23 07:26:29, Info CSI 000001b4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:29, Info CSI 000001b5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:36, Info CSI 000001b7 [SR] Verify complete
2013-12-23 07:26:36, Info CSI 000001b8 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:36, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:40, Info CSI 000001bb [SR] Verify complete
2013-12-23 07:26:40, Info CSI 000001bc [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:40, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:45, Info CSI 000001bf [SR] Verify complete
2013-12-23 07:26:45, Info CSI 000001c0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:45, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:49, Info CSI 000001c3 [SR] Verify complete
2013-12-23 07:26:49, Info CSI 000001c4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:49, Info CSI 000001c5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:53, Info CSI 000001c7 [SR] Verify complete
2013-12-23 07:26:53, Info CSI 000001c8 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:53, Info CSI 000001c9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:59, Info CSI 000001cb [SR] Verify complete
2013-12-23 07:26:59, Info CSI 000001cc [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:59, Info CSI 000001cd [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:00, Info CSI 000001cf [SR] Verify complete
2013-12-23 07:27:01, Info CSI 000001d0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:27:01, Info CSI 000001d1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:03, Info CSI 000001d3 [SR] Verify complete
2013-12-23 07:27:04, Info CSI 000001d4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:27:04, Info CSI 000001d5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:08, Info CSI 000001d7 [SR] Verify complete
2013-12-23 07:27:09, Info CSI 000001d8 [SR] Verifying 46 (0x0000002e) components
2013-12-23 07:27:09, Info CSI 000001d9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:11, Info CSI 000001db [SR] Verify complete
2013-12-23 07:27:11, Info CSI 000001dc [SR] Repairing 1 components
2013-12-23 07:27:11, Info CSI 000001dd [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:11, Info CSI 000001de [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001df [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001e0 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 07:27:11, Info CSI 000001e1 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 07:27:11, Info CSI 000001e3 [SR] Repair complete
2013-12-23 07:27:11, Info CSI 000001e4 [SR] Committing transaction
2013-12-23 07:27:11, Info CSI 000001e5 [SR] Cannot commit interactively, there are boot critical components being repaired
2013-12-23 07:27:11, Info CSI 000001e6 [SR] Repairing 1 components
2013-12-23 07:27:11, Info CSI 000001e7 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:11, Info CSI 000001e8 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001e9 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001ea [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 07:27:11, Info CSI 000001eb [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 07:27:11, Info CSI 000001ed [SR] Repair complete










Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 23/12/2013 7:33:27 AM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 23/12/2013 11:37:57 AM
Type: Error Category: 0
Event: 7034 Source: Service Control Manager
The LiveUpdate service terminated unexpectedly. It has done this 1 time(s).

Log: 'System' Date/Time: 23/12/2013 6:32:20 AM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The NETGEARGenieDaemon service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

Log: 'System' Date/Time: 23/12/2013 6:32:20 AM
Type: Error Category: 0
Event: 7009 Source: Service Control Manager
A timeout was reached (30000 milliseconds) while waiting for the NETGEARGenieDaemon service to connect.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 23/12/2013 6:32:36 AM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device WpdBusEnumRoot\UMB\2&37c186b&0&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_KINGSTON&PROD_DATATRAVELER_G3&REV_PMAP#0019B927C9F6EB50C3B10073&0#.

Log: 'System' Date/Time: 23/12/2013 6:17:40 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.








Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 23/12/2013 7:35:23 AM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 23/12/2013 6:32:25 AM
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

Log: 'Application' Date/Time: 23/12/2013 6:32:21 AM
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 23/12/2013 11:38:06 AM
Type: Warning Category: 3
Event: 3036 Source: Microsoft-Windows-Search
The content source <csc://{S-1-5-21-21828565-3005677120-1819634571-1001}/> cannot be accessed.

Context: Application, SystemIndex Catalog

Details:
The object was not found. (HRESULT : 0x80041201) (0x80041201)


Log: 'Application' Date/Time: 23/12/2013 6:17:21 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 2 user registry handles leaked from \Registry\User\S-1-5-21-21828565-3005677120-1819634571-1001:
Process 3440 (\Device\HarddiskVolume2\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe) has opened key \REGISTRY\USER\S-1-5-21-21828565-3005677120-1819634571-1001\Software\RealNetworks\RealJukebox\1.0\Preferences\WatchFolders
Process 3440 (\Device\HarddiskVolume2\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe) has opened key \REGISTRY\USER\S-1-5-21-21828565-3005677120-1819634571-1001\Software\RealNetworks\RealJukebox\1.0\Preferences\WatchFolders







Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 72.71 0 K 24 K 0
wmpnetwk.exe 17.18 41,508 K 42,336 K 5732 Windows Media Player Network Sharing Service Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 3.52 33,216 K 43,608 K 25432 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
audiodg.exe 1.64 16,388 K 10,744 K 1624 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
Interrupts 1.31 0 K 0 K n/a Hardware Interrupts and DPCs
lsass.exe 1.08 4,332 K 7,764 K 780 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
System 0.56 324 K 1,044 K 4
HD-Service.exe 0.43 14,364 K 7,288 K 3928 BlueStacks Service BlueStack Systems, Inc. (Verified) Bluestack Systems
dwm.exe 0.35 28,540 K 26,732 K 21352 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
Monitor.exe 0.26 11,704 K 3,096 K 21324 Advanced SystemCare Ultimate Monitor IObit (Verified) IObit Information Technology
svchost.exe 0.16 43,532 K 44,256 K 1464 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
vprot.exe 0.15 16,368 K 25,456 K 21112 VProtect Application (Official) (Verified) AVG Technologies
HD-Network.exe 0.12 5,132 K 5,252 K 2632 BlueStacks Network Helper Process BlueStack Systems (Verified) Bluestack Systems
csrss.exe 0.07 1,824 K 13,096 K 680 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.07 70,940 K 89,960 K 21312 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.06 16,796 K 13,408 K 1404 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
recordingmanager.exe 0.05 6,932 K 14,604 K 21516 RealDownloader RealNetworks, Inc. (Verified) RealNetworks
svchost.exe 0.04 6,560 K 7,880 K 2336 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
rpdsvc.exe 0.04 35,904 K 16,428 K 3184 RealPlayer Desktop Service RealNetworks, Inc. (Verified) RealNetworks
WifiSvc.exe 0.03 2,024 K 3,468 K 3896 Wifi Service (Verified) NETGEAR
svchost.exe 0.02 3,572 K 4,356 K 1320 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.02 29,288 K 30,760 K 1548 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
nvstreamsvc.exe 0.02 3,960 K 9,160 K 22488 NVIDIA Streamer Service NVIDIA Corporation (Verified) NVIDIA Corporation
ASCService.exe 0.01 172,880 K 138,376 K 980 Advanced SystemCare Service IObit (Verified) IObit Information Technology
WNA1100.exe 0.01 12,308 K 29,684 K 22088 Netgear (Verified) NETGEAR
firefox.exe 0.01 227,116 K 239,356 K 25324 Firefox Mozilla Corporation (Verified) Mozilla Corporation
c2c_service.exe 0.01 1,992 K 2,020 K 3316 Skype C2C Service Skype Technologies S.A. (Verified) Skype Technologies SA
avgidsagent.exe 0.01 15,608 K 17,548 K 2148 AVG Identity Protection Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
SearchIndexer.exe < 0.01 36,860 K 21,076 K 4180 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
avgwdsvc.exe < 0.01 8,432 K 9,820 K 2172 AVG Watchdog Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
HD-SharedFolder.exe < 0.01 2,612 K 3,644 K 3224 BlueStacks Shared Folder Helper Process BlueStack Systems (Verified) Bluestack Systems
AppleMobileDeviceService.exe < 0.01 2,464 K 4,032 K 2104 MobileDeviceService Apple Inc. (Verified) Apple Inc.
MediaServer.exe < 0.01 18,136 K 4,200 K 3708 (Verified) TVersity Inc.
svchost.exe < 0.01 8,924 K 12,168 K 1512 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 3,084 K 3,560 K 5276 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
daemonu.exe < 0.01 6,008 K 6,660 K 3088 NVIDIA Settings Update Manager NVIDIA Corporation (Verified) NVIDIA Corporation
csrss.exe < 0.01 1,696 K 5,488 K 616 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
taskhost.exe < 0.01 13,032 K 14,144 K 20748 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
conhost.exe < 0.01 548 K 800 K 3460 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
avgrsx.exe < 0.01 39,208 K 42,316 K 356 AVG Resident Shield Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
svchost.exe < 0.01 14,000 K 9,804 K 1840 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
mbamgui.exe < 0.01 3,096 K 7,868 K 19048 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
svchost.exe < 0.01 3,128 K 4,556 K 924 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
lsm.exe < 0.01 1,808 K 2,868 K 792 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
SearchProtocolHost.exe < 0.01 2,056 K 6,472 K 24704 Microsoft Windows Search Protocol Host Microsoft Corporation (Verified) Microsoft Windows
WLIDSVC.EXE < 0.01 4,972 K 9,480 K 3856 Microsoft Windows Live ID Service Microsoft Corp. (Verified) Microsoft Corporation
BingDesktopUpdater.exe < 0.01 3,352 K 2,976 K 2192 Bing Desktop updating service Microsoft Corp. (Verified) Microsoft Corporation
conhost.exe < 0.01 548 K 796 K 1708 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe < 0.01 548 K 808 K 2400 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
HD-LogRotatorService.exe < 0.01 11,140 K 3,816 K 2252 BlueStacks Log Rotator Service BlueStack Systems, Inc. (Verified) Bluestack Systems
nvvsvc.exe < 0.01 3,440 K 6,784 K 1920 NVIDIA Driver Helper Service, Version 320.49 NVIDIA Corporation (Verified) NVIDIA Corporation
lxddserv.exe < 0.01 644 K 1,040 K 2516 Lexmark Connect Service Executable Lexmark International, Inc. (Verified) Microsoft Windows Hardware Compatibility Publisher
avgui.exe < 0.01 5,612 K 19,024 K 21556 AVG User Interface AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
WUDFHost.exe 1,404 K 2,840 K 4520 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
wuauclt.exe 1,716 K 5,756 K 23876 Windows Update Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 1,948 K 4,756 K 24936 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WLIDSVCM.EXE 656 K 992 K 4068 Microsoft Windows Live ID Service Monitor Microsoft Corp. (Verified) Microsoft Corporation
winlogon.exe 1,764 K 3,548 K 768 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 960 K 1,008 K 688 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
TrustedInstaller.exe 7,664 K 13,132 K 23464 Windows Modules Installer Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 1,524 K 4,764 K 21044 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 9,336 K 8,440 K 108 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,032 K 3,472 K 1724 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 1,948 K 1,516 K 6020 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3,216 K 8,196 K 22756 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 660 K 1,216 K 3128 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 776 K 948 K 2732 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
SpotifyWebHelper.exe 1,948 K 5,992 K 21368 SpotifyWebHelper Spotify Ltd (Verified) Spotify AB
spoolsv.exe 7,208 K 8,144 K 2020 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
smss.exe 260 K 596 K 272 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
services.exe 5,300 K 6,564 K 736 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
SearchFilterHost.exe 1,616 K 4,424 K 25988 Microsoft Windows Search Filter Host Microsoft Corporation (Verified) Microsoft Windows
rpsystray.exe 1,528 K 5,072 K 21844 RealPlayer Cloud Service UI RealNetworks, Inc. (Verified) RealNetworks
rndlresolversvc.exe 740 K 1,256 K 3148 (Verified) RealNetworks
realsched.exe 1,940 K 260 K 20884 RealNetworks Scheduler RealNetworks, Inc. (Verified) RealNetworks
RealPlayerUpdateSvc.exe 1,840 K 2,528 K 3228 (Verified) RealNetworks
nvxdsync.exe 4,832 K 9,820 K 1912 NVIDIA User Experience Driver Component NVIDIA Corporation (Verified) NVIDIA Corporation
nvvsvc.exe 1,772 K 3,512 K 1248 NVIDIA Driver Helper Service, Version 320.49 NVIDIA Corporation (Verified) NVIDIA Corporation
nvtray.exe 4,132 K 10,384 K 22064 NVIDIA Settings NVIDIA Corporation (Verified) NVIDIA Corporation
NvTmru.exe 3,712 K 7,784 K 21544 NVIDIA NvTmru Application NVIDIA Corporation (Verified) NVIDIA Corporation
nvstreamsvc.exe 3,548 K 3,476 K 2820 NVIDIA Streamer Service NVIDIA Corporation (Verified) NVIDIA Corporation
nvSCPAPISvr.exe 2,168 K 2,000 K 1272 Stereo Vision Control Panel API Server NVIDIA Corporation (Verified) NVIDIA Corporation
notepad.exe 2,692 K 7,336 K 25096 Notepad Microsoft Corporation (Verified) Microsoft Windows
NitroPDFReaderDriverService3.exe 736 K 1,372 K 2776 Nitro PDF Spool Service Nitro PDF Software (Verified) Nitro PDF Software
MotoHelperService.exe 2,168 K 4,452 K 2692 MotoHelper Service (Verified) Motorola Mobility Inc.
MotoHelperAgent.exe 3,376 K 8,064 K 22500 MotoHelperAgent (Verified) Motorola Mobility Inc.
mDNSResponder.exe 1,616 K 2,656 K 2228 Bonjour Service Apple Inc. (Verified) Apple Inc.
McciCMService.exe 1,280 K 2,036 K 2664 mcci+McciCMService Alcatel-Lucent (No signature was present in the subject) Alcatel-Lucent
mbamservice.exe 170,024 K 28,980 K 2624 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
mbamscheduler.exe 1,884 K 1,468 K 2576 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
lxddcoms.exe 1,452 K 1,944 K 2540 Printer Communication System (Verified) Microsoft Windows Hardware Compatibility Publisher
Locator.exe 392 K 832 K 3280 Rpc Locator Microsoft Corporation (Verified) Microsoft Windows
Lightshot.exe 2,212 K 5,920 K 19884 Lightshot Skillbrains (Verified) OOO Kango
jusched.exe 1,232 K 4,164 K 21780 Java™ Update Scheduler Oracle Corporation (Verified) Oracle America
HD-BlockDevice.exe 3,712 K 3,616 K 1684 BlueStacks Block Device Helper Process BlueStack Systems (Verified) Bluestack Systems
GoogleCrashHandler.exe 1,136 K 532 K 5416 Google Crash Handler Google Inc. (Verified) Google Inc
conhost.exe 876 K 3,620 K 22480 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 1,312 K 4,528 K 23688 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
avgnsx.exe 5,236 K 6,912 K 3324 AVG Online Shield Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgemcx.exe 1,508 K 2,244 K 3440 AVG E-mail Scanner AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgcsrvx.exe 9,892 K 45,256 K 416 AVG Scanning Core Module - Server Part AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
ASCTray.exe 17,408 K 22,128 K 22092 Advanced SystemCare Ultimate Tray IObit (Verified) IObit Information Technology
ASCAvSvc.exe 17,824 K 14,452 K 1040 Advanced SystemCare Ultimate Service IOBit (Verified) IObit Information Technology
armsvc.exe 832 K 1,380 K 2076 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems
a2service.exe 37,116 K 1,032 K 1132 Emsisoft Anti-Malware Service Emsi Software GmbH (Verified) Emsi Software GmbH









"SPECCY"


Summary
Operating System
Windows 7 Professional 32-bit SP1
CPU
Intel Core 2 Duo E8400 @ 3.00GHz 38 C
Wolfdale 45nm Technology
RAM
4.00GB Dual-Channel DDR2 @ 399MHz (6-6-6-18)
Motherboard
Foxconn G31MXP (Socket 775) 40 C
Graphics
SyncMaster ([email protected])
256MB NVIDIA GeForce 8600 GTS (MSI) 56 C
Storage
931GB Hitachi HDT721010SLA360 ATA Device (SATA) 44 C
14GB Kingston DataTraveler G3 USB Device (USB)
Optical Drives
Optiarc DVD RW AD-7201A ATA Device
Audio
High Definition Audio Device
Operating System
Windows 7 Professional 32-bit SP1
Computer type: Desktop
Installation Date: 3/6/2011 7:47:37 PM
Windows Security Center
User Account Control (UAC) Enabled
Notify level 2 - Default
Firewall Enabled
Windows Update
AutoUpdate Not configured
Windows Defender
Windows Defender Disabled
Antivirus
AVG AntiVirus Free Edition 2014
Antivirus Enabled
Virus Signature Database Up to date
Advanced SystemCare Ultimate
Antivirus Enabled
Virus Signature Database Up to date
.NET Frameworks installed
v4.0 Full
v4.0 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 10.0.9200.16750
PowerShell
Version 2.0
Java
Java Runtime Environment
Path C:\Program Files\Java\jre7\bin\java.exe
Version 7.0
Update 45
Build 18
Environment Variables
USERPROFILE C:\Users\Living Room
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Living Room\AppData\Local\Temp
TMP C:\Users\Living Room\AppData\Local\Temp
Machine Variables
asl.log Destination=file
CLASSPATH .;C:\Program Files\Java\jre7\lib\ext\QTJava.zip
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
NUMBER_OF_PROCESSORS 2
OS Windows_NT
Path C:\Windows\system32
C:\Windows
C:\Windows\system32\wbem
C:\Program Files\NVIDIA Corporation\PhysX\Common
C:\Program Files\Common Files\Microsoft Shared\Windows Live
C:\Windows\System32\WindowsPowerShell\v1.0
C:\Program Files\QuickTime\QTSystem
C:\Program Files\Windows Live\Shared
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE x86
PROCESSOR_IDENTIFIER x86 Family 6 Model 23 Stepping 6, GenuineIntel
PROCESSOR_LEVEL 6
PROCESSOR_REVISION 1706
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
QTJAVA C:\Program Files\Java\jre7\lib\ext\QTJava.zip
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
Power Profile
Active power scheme High performance
Hibernation Enabled
Turn Off Monitor after: (On AC Power) 15 min
Turn Off Hard Disk after: (On AC Power) 20 min
Suspend after: (On AC Power) Never
Screen saver Disabled
Uptime
Current Session
Current Time 12/23/2013 7:44:02 AM
Current Uptime 22,387 sec (0 d, 06 h, 13 m, 07 s)
Last Boot Time 12/23/2013 1:30:55 AM
Services
Running Adobe Acrobat Update Service
Running Advanced SystemCare Service 7
Running AdvancedSystemCareAntivirus
Running Apple Mobile Device
Running Application Information
Running AVG WatchDog
Running AVGIDSAgent
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Bing Desktop Update service
Running BlueStacks Android Service
Running BlueStacks Log Rotator Service
Running Bonjour Service
Running CNG Key Isolation
Running COM+ Event System
Running Computer Browser
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic Service Host
Running Distributed Link Tracking Client
Running DNS Client
Running Emsisoft Anti-Malware 6.0 - Service
Running Encrypting File System (EFS)
Running Extensible Authentication Protocol
Running Function Discovery Provider Host
Running Function Discovery Resource Publication
Running Group Policy Client
Running HomeGroup Listener
Running HomeGroup Provider
Running HP Network Devices Support
Running IKE and AuthIP IPsec Keying Modules
Running Infrared monitor service
Running IPsec Policy Agent
Running lxdd_device
Running lxddCATSCustConnectService
Running MBAMScheduler
Running MBAMService
Running McciCMService
Running Media Center Extender Service
Running Motorola Device Manager Service
Running Multimedia Class Scheduler
Running Net Driver HPZ12
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running NitroPDFReaderDriverCreatorReadSpool3
Running NVIDIA Display Driver Service
Running NVIDIA Stereoscopic 3D Driver Service
Running NVIDIA Streamer Service
Running NVIDIA Update Service Daemon
Running Peer Name Resolution Protocol
Running Peer Networking Grouping
Running Peer Networking Identity Manager
Running Plug and Play
Running Pml Driver HPZ12
Running PnP-X IP Bus Enumerator
Running Portable Device Enumerator Service
Running Power
Running Print Spooler
Running Program Compatibility Assistant Service
Running RealNetworks Downloader Resolver Service
Running RealPlayer Desktop Service
Running RealPlayer Update Service
Running Remote Access Connection Manager
Running Remote Desktop Configuration
Running Remote Desktop Services
Running Remote Desktop Services UserMode Port Redirector
Running Remote Procedure Call (RPC)
Running Remote Procedure Call (RPC) Locator
Running RPC Endpoint Mapper
Running Secondary Logon
Running Secure Socket Tunneling Protocol Service
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Skype C2C Service
Running SSDP Discovery
Running Superfetch
Running System Event Notification Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Themes
Running TVersity Media Server
Running UPnP Device Host
Running User Profile Service
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Connect Now - Config Registrar
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Live ID Sign-in Assistant
Running Windows Management Instrumentation
Running Windows Media Player Network Sharing Service
Running Windows Modules Installer
Running Windows Search
Running Windows Update
Running WLAN AutoConfig
Running Workstation
Running WSWNA1100
Stopped ActiveX Installer (AxInstSV)
Stopped Adaptive Brightness
Stopped Adobe Flash Player Update Service
Stopped Application Experience
Stopped Application Identity
Stopped Application Layer Gateway Service
Stopped Application Management
Stopped ASP.NET State Service
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped BranchCache
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped Credential Manager
Stopped Diagnostic System Host
Stopped Disk Defragmenter
Stopped Distributed Transaction Coordinator
Stopped Fax
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped Human Interface Device Access
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped IP Helper
Stopped iPod Service
Stopped JumpStart Wi-Fi Protected Setup
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped LiveUpdate
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Mozilla Maintenance Service
Stopped Net.Msmq Listener Adapter
Stopped Net.Pipe Listener Adapter
Stopped Net.Tcp Listener Adapter
Stopped Net.Tcp Port Sharing Service
Stopped NETGEARGenieDaemon
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office Source Engine
Stopped Offline Files
Stopped Parental Controls
Stopped Performance Logs & Alerts
Stopped PNRP Machine Name Publication Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Skype Updater
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Software Protection
Stopped SPP Notification Service
Stopped Storage Service
Stopped Tablet PC Input Service
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Activation Technologies Service
Stopped Windows Backup
Stopped Windows Biometric Service
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Defender
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Image Acquisition (WIA)
Stopped Windows Installer
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Windows Time
Stopped WinHTTP Web Proxy Auto-Discovery Service
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
Stopped WWAN AutoConfig
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Scheduler
12/23/2013 8:00 AM; Maxthon Update
12/23/2013 8:06 AM; Adobe Flash Player Updater
12/23/2013 8:21 AM; GoogleUpdateTaskMachineUA
12/23/2013 9:37 AM; update-sys
12/23/2013 9:43 AM; update-S-1-5-21-21828565-3005677120-1819634571-1001
12/23/2013 10:00 AM; Adobe online update program
12/23/2013 10:00 AM; Divx online update program
12/23/2013 10:00 AM; Java Update Scheduler
12/23/2013 10:00 AM; Real Player online update program
12/23/2013 7:21 PM; GoogleUpdateTaskMachineCore
12/25/2013 2:21 PM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003
12/25/2013 11:15 PM; RealDownloaderRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/26/2013 11:37 AM; RealDownloaderDownloaderScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/27/2013 12:08 PM; RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/28/2013 4:44 PM; RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003
12/29/2013 9:52 PM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
1/1/2014 5:09 PM; Swiki_Checker
Alarm Clock
ASC7U_SkipUac_Living Room
ASC7_PerformanceMonitor
CCleanerSkipUAC
RealDownloaderRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003
RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003
SidebarExecute
Hotfixes
12/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.406.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.403.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/21/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.360.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/20/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.262.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/19/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
12/19/2013 Security Update for Microsoft Office Excel Viewer 2007 (KB2827328)
A security vulnerability exists in Microsoft Office Excel Viewer
2007 that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Word Viewer (KB2817683)
A security vulnerability exists in Word Viewer that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2597973)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.210.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/19/2013 Security Update for Word Viewer (KB2817683)
A security vulnerability exists in Word Viewer that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2817641)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/19/2013 Security Update for Office 2003 (KB2817474)
A security vulnerability exists in Office 2003 that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760585)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
12/19/2013 Update for Microsoft Security Essentials - 4.4.304.0 (KB2902885)
This package will update Microsoft Security Essentials client
on the user's machine.
12/19/2013 Update for Microsoft Office 2007 suites (KB2767849)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760591)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Windows 7 (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
12/19/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2597973)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Windows Malicious Software Removal Tool - December 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
12/19/2013 Security Update for Office 2003 (KB2850047)
A security vulnerability exists in Office 2003 that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760411)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Excel Viewer 2007 Service Pack 3 (SP3)
Service Pack 3 provides the latest updates to Excel Viewer 2007.
12/18/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.116.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/17/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.28.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/16/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.2025.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.2005.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1998.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/14/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1943.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/13/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1864.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/12/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1784.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/10/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1568.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
System Folders
Application Data C:\ProgramData
Cookies C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Living Room\Desktop
Documents C:\Users\Public\Documents
Fonts C:\Windows\Fonts
Global Favorites C:\Users\Living Room\Favorites
Internet History C:\Users\Living Room\AppData\Local\Microsoft\Windows\History
Local Application Data C:\Users\Living Room\AppData\Local
Music C:\Users\Public\Music
Path for burning CD C:\Users\Living Room\AppData\Local\Microsoft\Windows\Burn\Burn1
Physical Desktop C:\Users\Living Room\Desktop
Pictures C:\Users\Public\Pictures
Program Files C:\Program Files
Public Desktop C:\Users\Public\Desktop
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Temporary Internet Files C:\Users\Living Room\AppData\Local\Microsoft\Windows\Temporary Internet Files
User Favorites C:\Users\Living Room\Favorites
Videos C:\Users\Public\Videos
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Process List
a2service.exe
Process ID 1132
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Emsisoft Anti-Malware\a2service.exe
Memory Usage 1.01 MB
Peak Memory Usage 37 MB
AppleMobileDeviceService.exe
Process ID 2104
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Memory Usage 3.94 MB
Peak Memory Usage 8.18 MB
armsvc.exe
Process ID 2076
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 1.35 MB
Peak Memory Usage 2.91 MB
ASCAvSvc.exe
Process ID 1040
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe
Memory Usage 14 MB
Peak Memory Usage 18 MB
ASCService.exe
Process ID 980
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
Memory Usage 135 MB
Peak Memory Usage 135 MB
ASCTray.exe
Process ID 22092
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
Memory Usage 22 MB
Peak Memory Usage 22 MB
audiodg.exe
Process ID 1624
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 11 MB
Peak Memory Usage 15 MB
avgcsrvx.exe
Process ID 416
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgcsrvx.exe
Memory Usage 55 MB
Peak Memory Usage 150 MB
avgemcx.exe
Process ID 3440
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgemcx.exe
Memory Usage 2.19 MB
Peak Memory Usage 12 MB
avgidsagent.exe
Process ID 2148
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgidsagent.exe
Memory Usage 18 MB
Peak Memory Usage 30 MB
avgnsx.exe
Process ID 3324
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgnsx.exe
Memory Usage 6.75 MB
Peak Memory Usage 12 MB
avgrsx.exe
Process ID 356
User SYSTEM
Domain NT AUTHORITY
Path C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
Memory Usage 42 MB
Peak Memory Usage 57 MB
avgui.exe
Process ID 21556
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\AVG\AVG2014\avgui.exe
Memory Usage 19 MB
Peak Memory Usage 20 MB
avgwdsvc.exe
Process ID 2172
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgwdsvc.exe
Memory Usage 9.59 MB
Peak Memory Usage 19 MB
BingDesktopUpdater.exe
Process ID 2192
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
Memory Usage 2.92 MB
Peak Memory Usage 7.16 MB
c2c_service.exe
Process ID 3316
User SYSTEM
Domain NT AUTHORITY
Path C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
Memory Usage 1.97 MB
Peak Memory Usage 5.13 MB
conhost.exe
Process ID 23688
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\conhost.exe
Memory Usage 4.42 MB
Peak Memory Usage 4.42 MB
conhost.exe
Process ID 22480
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 3.54 MB
Peak Memory Usage 3.54 MB
conhost.exe
Process ID 2400
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 808 KB
Peak Memory Usage 2.35 MB
conhost.exe
Process ID 1708
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 796 KB
Peak Memory Usage 2.35 MB
conhost.exe
Process ID 3460
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 800 KB
Peak Memory Usage 2.35 MB
csrss.exe
Process ID 616
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 5.37 MB
Peak Memory Usage 10 MB
csrss.exe
Process ID 680
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 12 MB
Peak Memory Usage 21 MB
daemonu.exe
Process ID 3088
User UpdatusUser
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
Memory Usage 6.53 MB
Peak Memory Usage 11 MB
dwm.exe
Process ID 21352
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\Dwm.exe
Memory Usage 26 MB
Peak Memory Usage 37 MB
explorer.exe
Process ID 21312
User Living Room
Domain LivingRoom-PC
Path C:\Windows\Explorer.EXE
Memory Usage 90 MB
Peak Memory Usage 105 MB
firefox.exe
Process ID 25324
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Mozilla Firefox\firefox.exe
Memory Usage 233 MB
Peak Memory Usage 270 MB
GoogleCrashHandler.exe
Process ID 5416
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
Memory Usage 532 KB
Peak Memory Usage 3.43 MB
HD-BlockDevice.exe
Process ID 1684
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-BlockDevice.exe
Memory Usage 3.53 MB
Peak Memory Usage 5.57 MB
HD-LogRotatorService.exe
Process ID 2252
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-LogRotatorService.exe
Memory Usage 3.73 MB
Peak Memory Usage 7.13 MB
HD-Network.exe
Process ID 2632
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-Network.exe
Memory Usage 5.11 MB
Peak Memory Usage 7.50 MB
HD-Service.exe
Process ID 3928
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-Service.exe
Memory Usage 7.12 MB
Peak Memory Usage 12 MB
HD-SharedFolder.exe
Process ID 3224
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-SharedFolder.exe
Memory Usage 3.56 MB
Peak Memory Usage 4.54 MB
jusched.exe
Process ID 21780
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Common Files\Java\Java Update\jusched.exe
Memory Usage 4.07 MB
Peak Memory Usage 4.07 MB
Lightshot.exe
Process ID 19884
User Living Room
Domain LivingRoom-PC
Path C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\LightShot.exe
Memory Usage 5.78 MB
Peak Memory Usage 5.79 MB
Locator.exe
Process ID 3280
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\locator.exe
Memory Usage 832 KB
Peak Memory Usage 1.42 MB
lsass.exe
Process ID 780
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 7.55 MB
Peak Memory Usage 10 MB
lsm.exe
Process ID 792
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 2.86 MB
Peak Memory Usage 4.34 MB
lxddcoms.exe
Process ID 2540
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lxddcoms.exe
Memory Usage 1.90 MB
Peak Memory Usage 7.49 MB
lxddserv.exe
Process ID 2516
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\spool\DRIVERS\W32X86\3\lxddserv.exe
Memory Usage 1.02 MB
Peak Memory Usage 2.43 MB
mbamgui.exe
Process ID 19048
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
Memory Usage 7.68 MB
Peak Memory Usage 7.75 MB
mbamscheduler.exe
Process ID 2576
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
Memory Usage 1.43 MB
Peak Memory Usage 5.07 MB
mbamservice.exe
Process ID 2624
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
Memory Usage 28 MB
Peak Memory Usage 245 MB
McciCMService.exe
Process ID 2664
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Motive\McciCMService.exe
Memory Usage 1.99 MB
Peak Memory Usage 5.24 MB
mDNSResponder.exe
Process ID 2228
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Bonjour\mDNSResponder.exe
Memory Usage 2.62 MB
Peak Memory Usage 4.59 MB
MediaServer.exe
Process ID 3708
User SYSTEM
Domain NT AUTHORITY
Path C:\ProgramData\TVersity\Media Server\MediaServer.exe
Memory Usage 4.08 MB
Peak Memory Usage 13 MB
Monitor.exe
Process ID 21324
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
Memory Usage 3.47 MB
Peak Memory Usage 11 MB
MotoHelperAgent.exe
Process ID 22500
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
Memory Usage 7.88 MB
Peak Memory Usage 7.88 MB
MotoHelperService.exe
Process ID 2692
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
Memory Usage 4.35 MB
Peak Memory Usage 6.49 MB
NitroPDFReaderDriverService3.exe
Process ID 2776
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
Memory Usage 1.34 MB
Peak Memory Usage 2.68 MB
notepad.exe
Process ID 25096
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\NOTEPAD.EXE
Memory Usage 7.14 MB
Peak Memory Usage 7.32 MB
nvSCPAPISvr.exe
Process ID 1272
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
Memory Usage 1.95 MB
Peak Memory Usage 6.07 MB
nvstreamsvc.exe
Process ID 2820
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 3.39 MB
Peak Memory Usage 14 MB
nvstreamsvc.exe
Process ID 22488
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 8.95 MB
Peak Memory Usage 9.00 MB
NvTmru.exe
Process ID 21544
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
Memory Usage 7.64 MB
Peak Memory Usage 7.68 MB
nvtray.exe
Process ID 22064
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
nvvsvc.exe
Process ID 1920
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 6.63 MB
Peak Memory Usage 9.09 MB
nvvsvc.exe
Process ID 1248
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 3.46 MB
Peak Memory Usage 5.34 MB
nvxdsync.exe
Process ID 1912
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
Memory Usage 9.65 MB
Peak Memory Usage 13 MB
RealPlayerUpdateSvc.exe
Process ID 3228
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
Memory Usage 2.47 MB
Peak Memory Usage 6.26 MB
realsched.exe
Process ID 20884
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Real\RealPlayer\Update\realsched.exe
Memory Usage 568 KB
Peak Memory Usage 5.37 MB
recordingmanager.exe
Process ID 21516
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
rndlresolversvc.exe
Process ID 3148
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
Memory Usage 1.23 MB
Peak Memory Usage 2.88 MB
rpdsvc.exe
Process ID 3184
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
Memory Usage 16 MB
Peak Memory Usage 38 MB
rpsystray.exe
Process ID 21844
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
Memory Usage 4.95 MB
Peak Memory Usage 4.99 MB
SearchFilterHost.exe
Process ID 25540
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchFilterHost.exe
Memory Usage 3.80 MB
Peak Memory Usage 3.86 MB
SearchIndexer.exe
Process ID 4180
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchIndexer.exe
Memory Usage 21 MB
Peak Memory Usage 25 MB
SearchProtocolHost.exe
Process ID 24908
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchProtocolHost.exe
Memory Usage 6.05 MB
Peak Memory Usage 6.05 MB
services.exe
Process ID 736
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 6.44 MB
Peak Memory Usage 14 MB
smss.exe
Process ID 272
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 596 KB
Peak Memory Usage 840 KB
Speccy.exe
Process ID 2616
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 27 MB
Peak Memory Usage 27 MB
spoolsv.exe
Process ID 2020
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 8.23 MB
Peak Memory Usage 14 MB
SpotifyWebHelper.exe
Process ID 21368
User Living Room
Domain LivingRoom-PC
Path C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
Memory Usage 5.85 MB
Peak Memory Usage 5.90 MB
svchost.exe
Process ID 108
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 8.31 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 1840
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 9.63 MB
Peak Memory Usage 14 MB
svchost.exe
Process ID 1724
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 3.40 MB
Peak Memory Usage 5.10 MB
svchost.exe
Process ID 1548
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 32 MB
Peak Memory Usage 636 MB
svchost.exe
Process ID 5276
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 3.46 MB
Peak Memory Usage 6.21 MB
svchost.exe
Process ID 1512
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 12 MB
Peak Memory Usage 13 MB
svchost.exe
Process ID 1464
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 44 MB
Peak Memory Usage 66 MB
svchost.exe
Process ID 1404
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 13 MB
Peak Memory Usage 16 MB
svchost.exe
Process ID 924
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 4.50 MB
Peak Memory Usage 7.13 MB
svchost.exe
Process ID 6020
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 1.48 MB
Peak Memory Usage 4.65 MB
svchost.exe
Process ID 1320
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 4.32 MB
Peak Memory Usage 6.24 MB
svchost.exe
Process ID 22756
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 8.04 MB
Peak Memory Usage 8.34 MB
svchost.exe
Process ID 3128
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 1.19 MB
Peak Memory Usage 2.66 MB
svchost.exe
Process ID 2732
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 948 KB
Peak Memory Usage 2.77 MB
svchost.exe
Process ID 2336
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 7.61 MB
Peak Memory Usage 11 MB
System
Process ID 4
Memory Usage 1.02 MB
Peak Memory Usage 131 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 21044
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\taskeng.exe
Memory Usage 4.65 MB
Peak Memory Usage 4.69 MB
taskhost.exe
Process ID 20748
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\taskhost.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
TrustedInstaller.exe
Process ID 23464
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\servicing\TrustedInstaller.exe
Memory Usage 13 MB
Peak Memory Usage 32 MB
vprot.exe
Process ID 21112
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\AVG SafeGuard toolbar\vprot.exe
Memory Usage 25 MB
Peak Memory Usage 31 MB
WifiSvc.exe
Process ID 3896
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
Memory Usage 3.39 MB
Peak Memory Usage 5.88 MB
wininit.exe
Process ID 688
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage KB
Peak Memory Usage 3.40 MB
winlogon.exe
Process ID 768
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 3.49 MB
Peak Memory Usage 6.63 MB
WLIDSVC.EXE
Process ID 3856
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Memory Usage 9.26 MB
Peak Memory Usage 11 MB
WLIDSVCM.EXE
Process ID 4068
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
Memory Usage 992 KB
Peak Memory Usage 2.37 MB
WmiPrvSE.exe
Process ID 24936
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
WmiPrvSE.exe
Process ID 22560
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
wmpnetwk.exe
Process ID 5732
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Program Files\Windows Media Player\wmpnetwk.exe
Memory Usage 34 MB
Peak Memory Usage 97 MB
WNA1100.exe
Process ID 22088
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
Memory Usage 29 MB
Peak Memory Usage 29 MB
wuauclt.exe
Process ID 23876
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\wuauclt.exe
Memory Usage 5.62 MB
Peak Memory Usage 6.14 MB
WUDFHost.exe
Process ID 4520
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\WUDFHost.exe
Memory Usage 2.77 MB
Peak Memory Usage 4.93 MB
Security Options
Accounts: Administrator account status Enabled
Accounts: Guest account status Enabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network Security: Allow PKU2U authentication requests to this computer to use online identities Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Prompt for consent for non-Windows binaries
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Enabled
User Account Control: Switch to the secure desktop when prompting for elevation Enabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x86-based PC
Microsoft ACPI-Compliant System
ACPI Fan
ACPI Fixed Feature Button
ACPI Power Button
ACPI Thermal Zone
Intel Core2 Duo CPU E8400 @ 3.00GHz
Intel Core2 Duo CPU E8400 @ 3.00GHz
System board
PCI bus
Intel 82801 PCI Bridge - 244E
Intel 82801G (ICH7 Family) PCI Express Root Port - 27D0
Intel 82801G (ICH7 Family) SMBus Controller - 27DA
Intel G33/G31/P35/P31 Express Chipset Processor to I/O Controller - 29C0
Motherboard resources
Intel® G33/G31/P35/P31 Express Chipset PCI Express Root Port - 29C1
NVIDIA GeForce 8600 GTS
SyncMaster 953BW/953GW,SyncMaster Magic CX953BW/CX953GW(Digital)
High Definition Audio Controller
High Definition Audio Device
Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D2
Realtek PCIe GBE Family Controller
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C8
USB Root Hub
USB Input Device
HID-compliant mouse
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C9
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB
USB Root Hub
Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC
USB Root Hub
NETGEAR WNA1100 N150 Wireless USB Adapter
Microsoft Virtual WiFi Miniport Adapter #5
USB Mass Storage Device
Kingston DataTraveler G3 USB Device
Intel® 82801GB/GR (ICH7 Family) LPC Interface Controller - 27B8
Built-in Infrared Device
Communications Port (COM1)
Direct memory access controller
High precision event timer
Intel 82802 Firmware Hub Device
Motherboard resources
Motherboard resources
Numeric data processor
Programmable interrupt controller
Standard PS/2 Keyboard
System CMOS/real time clock
System speaker
System timer
Standard floppy disk controller
Floppy disk drive
Printer Port (LPT1)
Printer Port Logical Interface
Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF
ATA Channel 0
Optiarc DVD RW AD-7201A ATA Device
Intel® 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0
ATA Channel 1
ATA Channel 0
Hitachi HDT721010SLA360 ATA Device
CPU
Intel Core 2 Duo E8400
Cores 2
Threads 2
Name Intel Core 2 Duo E8400
Code Name Wolfdale
Package Socket 775 LGA
Technology 45nm
Specification Intel Core2 Duo CPU E8400 @ 3.00GHz
Family 6
Extended Family 6
Model 7
Extended Model 17
Stepping 6
Revision C0
Instructions MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, Intel 64, NX, VMX
Virtualization Supported, Enabled
Hyperthreading Not supported
Fan Speed 2755 RPM
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Stock Core Speed 3000 MHz
Stock Bus Speed 333 MHz
Average Temperature 38 C
Caches
L1 Data Cache Size 2 x 32 KBytes
L1 Instructions Cache Size 2 x 32 KBytes
L2 Unified Cache Size 6144 KBytes
Core 0
Core Speed 2997.1 MHz
Multiplier x 9.0
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Temperature 38 C
Thread 1
APIC ID 0
Core 1
Core Speed 1998.0 MHz
Multiplier x 6.0
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Temperature 38 C
Thread 1
APIC ID 1
RAM
Memory slots
Total memory slots 2
Used memory slots 2
Free memory slots 0
Memory
Type DDR2
Size 4096 MBytes
Channels # Dual
DRAM Frequency 399.6 MHz
CAS# Latency (CL) 6 clocks
RAS# to CAS# Delay (tRCD) 6 clocks
RAS# Precharge (tRP) 6 clocks
Cycle Time (tRAS) 18 clocks
Command Rate (CR) 2T
Physical Memory
Memory Usage 69 %
Total Physical 3.25 GB
Available Physical MB
Total Virtual 6.49 GB
Available Virtual 3.76 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR2
Size 2048 MBytes
Manufacturer OCZ
Max Bandwidth PC2-6400 (400 MHz)
Part Number OCZ2N800SR2G
SPD Ext. EPP
EPP #0
Frequency 400.0 MHz
CAS# Latency 5.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 15
Voltage 2.000 V
JEDEC #3
Frequency 400.0 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 24
Voltage 1.800 V
JEDEC #2
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
Slot #2
Type DDR2
Size 2048 MBytes
Manufacturer OCZ
Max Bandwidth PC2-6400 (400 MHz)
Part Number OCZ2N800SR2G
SPD Ext. EPP
EPP #0
Frequency 400.0 MHz
CAS# Latency 5.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 15
Voltage 2.000 V
JEDEC #3
Frequency 400.0 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 24
Voltage 1.800 V
JEDEC #2
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
Motherboard
Manufacturer Foxconn
Model G31MXP (Socket 775)
Version OEM
Chipset Vendor Intel
Chipset Model P35/G33/G31
Chipset Revision 10
Southbridge Vendor Intel
Southbridge Model 82801GB (ICH7/R)
Southbridge Revision A1
System Temperature 40 C
BIOS
Brand Phoenix Technologies, LTD
Version 6.00 PG
Date 5/13/2009
Voltage
CPU CORE 1.200 V
MEMORY CONTROLLER 1.808 V
+3.3V 3.280 V
+5V 4.892 V
+12V 11.968 V
+5V HIGH THRESHOLD 4.946 V
CMOS BATTERY 3.264 V
PCI Data
Slot PCI
Slot Type PCI
Slot Usage Available
Data lanes x16
Slot Designation PCI1
Characteristics 5V, PME
Slot Number 0
Slot PCI
Slot Type PCI
Slot Usage Available
Data lanes x1
Slot Designation PCI2
Characteristics 5V, PME
Slot Number 1
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI3
Characteristics 5V, PME
Slot Number 2
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI4
Characteristics 5V, PME
Slot Number 3
Graphics
Monitor
Name SyncMaster on NVIDIA GeForce 8600 GTS
Current Resolution 1440x900 pixels
Work Resolution 1440x860 pixels
State Enabled, Primary, Output devices support
Monitor Width 1440
Monitor Height 900
Monitor BPP 32 bits per pixel
Monitor Frequency 75 Hz
Device \\.\DISPLAY1\Monitor0
NVIDIA GeForce 8600 GTS
Manufacturer NVIDIA
Model GeForce 8600 GTS
GPU G84
Device ID 10DE-0400
Revision A2
Subvendor MSI (1462)
Series GeForce 8
Current Performance Level Level 0
Technology 80 nm
Die Size 169 mm
Transistors 289 M
Release Date Apr 17, 2007
DirectX Support 10.0
DirectX Shader Model 4.0
OpenGL Support 3.0
Bus Interface PCI Express x16
Temperature 56 C
Driver version 9.18.13.2049
BIOS Version 60.84.38.00.28
ROPs 8
Shaders 32 unified
Memory Type GDDR3
Memory 256 MB
Bus Width 64x2 (128 bit)
Filtering Modes Bilinear, Trilinear, 2x Anisotropic, 4x Anisotropic, 8x Anisotropic, 16x Anisotropic
Noise Level Moderate
Max Power Draw 71 Watts
Count of performance levels : 1
Level 1
GPU Clock 675 MHz
Memory Clock 1008 MHz
Shader Clock 1450 MHz
Storage
Hard drives
Hitachi HDT721010SLA360 ATA Device
Manufacturer Hitachi
Product Family Deskstar
Series Prefix Differentiator between two models with the same name
Model Capacity For This Specific Drive 100GB
Heads 16
Cylinders 129,201
Tracks 31,008,240
Sectors 1,953,519,120
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number STF605MH1B4UTW
LBA Size 48-bit LBA
Power On Count 1307 times
Power On Time 1326.4 days
Speed 7200 RPM
Features S.M.A.R.T., APM, AAM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 931 GB
Real size 1,000,204,886,016 bytes
RAID Type None
S.M.A.R.T
Status Warning
Temperature 44 C
Temperature Range OK (less than 50 C)
01 Read Error Rate 095 (095) Data 000004000A
02 Throughput Performance 130 (130) Data 0000000078
03 Spin-Up Time 128 (128) Data 0001B901C6
04 Start/Stop Count 100 (100) Data 0000000528
05 Reallocated Sectors Count 100 (100) Data 0000000060
07 Seek Error Rate 100 (100) Data 0000000000
08 Seek Time Performance 125 (125) Data 0000000021
09 Power-On Hours (POH) 096 (096) Data 0000007C59
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 000000051B
C0 Power-off Retract Count 099 (099) Data 0000000569
C1 Load/Unload Cycle Count 099 (099) Data 0000000569
C2 Temperature 136 (136) Data 000016002C
C4 Reallocation Event Count 100 (100) Data 0000000074
C5 Current Pending Sector Count 100 (100) Data 0000000006
C6 Uncorrectable Sector Count 100 (100) Data 0000000003
C7 UltraDMA CRC Error Count 200 (200) Data 0000000013
Partition 0
Partition ID Disk #0, Partition #0
Disk Letter F:
File System NTFS
Volume Serial Number 280A2E07
Size 99 MB
Used Space 63 MB (64%)
Free Space 36.7 MB (36%)
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number BC0CE792
Size 508 GB
Used Space 397 GB (79%)
Free Space 110 GB (21%)
Partition 2
Partition ID Disk #0, Partition #2
Disk Letter Z:
File System NTFS
Volume Serial Number BE3B00FB
Size 217 GB
Used Space 111 GB (52%)
Free Space 105 GB (48%)
Partition 3
Partition ID Disk #0, Partition #3
Disk Letter E:
File System NTFS
Volume Serial Number 849F1E97
Size 205 GB
Used Space 24.2 GB (12%)
Free Space 181 GB (88%)
Flash drives
Kingston DataTraveler G3 USB Device
Interface USB
Capacity 14.4 GB
Real size 15,479,537,664 bytes
RAID Type None
S.M.A.R.T
S.M.A.R.T not supported
Partition 0
Partition ID Disk #1, Partition #0
Disk Letter G:
File System FAT32
Volume Serial Number 7A983873
Size 14.4 GB
Used Space 11.2 GB (78%)
Free Space 3.19 GB (22%)
Optical Drives
Optiarc DVD RW AD-7201A ATA Device
Media Type DVD Writer
Name Optiarc DVD RW AD-7201A ATA Device
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive D:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 1
Status OK
Audio
Sound Cards
NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
High Definition Audio Device
Playback Devices
Speakers (High Definition Audio Device) (default)
Digital Audio (S/PDIF) (High Definition Audio Device)
Recording Device
Microphone (High Definition Audio Device)
Peripherals
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Vendor (Standard keyboards)
Location plugged into keyboard port
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor IBM Corp
Location USB Input Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Photosmart D110 series
Device Kind Camera/scanner
Device Name Photosmart D110 series
Vendor HP
Location ip:192.168.1.75,subnet:192.168.1.0/24
Driver
Date 10-12-2009
Version 8.0.0.0
File C:\Windows\system32\DRIVERS\serscan.sys
DataTraveler G3
Device Kind Portable Device
Device Name DataTraveler G3
Vendor KINGSTON
Comment PENDRIVE
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Printers
\\K12-0E52076E2EA\Canon MP250 series Printer
Share Name CanonMP2
Printer Port USB001
Print Processor Canon MP250 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon MP250 series Printer (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMDR9W.DLL
Canon MP250 series Printer
Printer Port USB002
Print Processor Canon MP250 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon MP250 series Printer (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMDR9W.DLL
Fax
Printer Port SHRFAX:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\FXSDRV.DLL
HP79B168 (HP Photosmart D110 series) (Default Printer)
Share Name HP79B168 (HP Photosmart D110 series)
Printer Port WSD-945d74f6-e466-44e4-80f7-39216817ed7c.006f
Print Processor hpfpp101
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status The printer is offline
Driver
Driver Name HP Photosmart D110 series (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\UNIDRV.DLL
Lexmark 2500 Series
Printer Port USB001
Print Processor Lexmark 2500 Series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name Lexmark 2500 Series (v4.1415)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdddr.dll
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\mxdwdrv.dll
Nitro PDF Creator (Reader 3)
Printer Port Nitro PDF Port:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 4294967292 dpi Color
Status Unknown
Driver
Driver Name Nitro Reader Driver 3 (v5.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\NitroReaderGraphics3.dll
PDF Printer
Printer Port Win7PDFPort
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name PDF Printer Driver x86 (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\PDFVCDrv.dll
PrimoPDF
Printer Port PrimoPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name PrimoPDF (v5.01)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\pscript5.dll
PrinterShare
Printer Port C:\ProgramData\PrinterShare\PORT
Print Processor winprint
Availability Always
Priority 1
Status Unknown
Driver
Driver Name PrinterShare (v2.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\pa_g.dll
Network
You are connected to the internet
Connected through NETGEAR WNA1100 N150 Wireless USB Adapter
IP Address 192.168.1.88
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
Preferred DNS server 192.168.1.254
DHCP Enabled
DHCP server 192.168.1.254
External IP Address 108.244.134.66
Adapter Type IEEE 802.11 wireless
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Broadcast node
Link Speed 0 Bps
Computer Name
NetBIOS Name LIVINGROOM-PC
DNS Name LivingRoom-PC
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain LivingRoom-PC
EH-Tcp
State Listen
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Using native Wi-Fi API version 2
Available access points count 1
Wi-Fi (2WIRE358)
SSID 2WIRE358
Frequency 2432000 kHz
Channel Number 5
Name 2WIRE358
Signal Strength/Quality 100
Security Enabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags Currently Connected to this network
Cipher Algorithm to be used when joining this network AES-CCMP algorithm
Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Enabled
File and Printer Sharing Enabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Microsoft Virtual WiFi Miniport Adapter #5
Connection Name Wireless Network Connection 13
DHCP enabled Yes
MAC Address 06-8E-F2-8B-29-2F
NETGEAR WNA1100 N150 Wireless USB Adapter
Connection-specific DNS Suffix gateway.2wire.net
Connection Name Wireless Network Connection 12
NetBIOS over TCPIP Yes
DHCP enabled Yes
MAC Address 00-8E-F2-8B-29-2F
IP Address 192.168.1.88
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
DHCP 192.168.1.254
DNS Server 192.168.1.254
Realtek PCIe GBE Family Controller
Connection Name Local Area Connection
DHCP enabled Yes
MAC Address 00-22-68-60-4C-39
Network Shares
Users C:\Users
E Movies E:\
VPM Trial E:\CADlink\SignLab 9.1 Trial\VPM Trial
HP79B168 (HP Photosmart D110 series) HP79B168 (HP Photosmart D110 series),LocalsplOnly
Current TCP Connections
AppleMobileDeviceService.exe (2104)
Local 127.0.0.1:27015 LISTEN
Local 127.0.0.1:49152 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
C:\Program Files\AVG SafeGuard toolbar\vprot.exe (21112)
Local 192.168.1.88:50027 CLOSE-WAIT Remote 23.32.135.117:80 (Querying... ) (HTTP)
C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (22500)
Local 127.0.0.1:49943 ESTABLISHED Remote 127.0.0.1:4573 (Querying... )
C:\Program Files\Mozilla Firefox\firefox.exe (25324)
Local 127.0.0.1:54008 ESTABLISHED Remote 127.0.0.1:54009 (Querying... )
Local 127.0.0.1:54009 ESTABLISHED Remote 127.0.0.1:54008 (Querying... )
C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (21368)
Local 127.0.0.1:4380 LISTEN
Local 127.0.0.1:4370 LISTEN
daemonu.exe (3088)
Local 127.0.0.1:2559 LISTEN
HD-Network.exe (2632)
Local 192.168.1.88:49196 ESTABLISHED Remote 74.125.137.188:5228 (Querying... )
Local 127.0.0.1:9999 LISTEN
Local 127.0.0.1:6666 LISTEN
Local 127.0.0.1:7777 LISTEN
Local 127.0.0.1:5555 LISTEN
Local 192.168.1.88:54615 CLOSE-WAIT Remote 74.125.229.165:443 (Querying... ) (HTTPS)
lsass.exe (780)
Local 0.0.0.0:5004 LISTEN
lxddcoms.exe (2540)
Local 0.0.0.0:10004 LISTEN
mDNSResponder.exe (2228)
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:49152 (Querying... )
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:54888 (Querying... )
Local 127.0.0.1:5354 LISTEN
MediaServer.exe (3708)
Local 0.0.0.0:41952 LISTEN
MotoHelperService.exe (2692)
Local 127.0.0.1:4573 ESTABLISHED Remote 127.0.0.1:49943 (Querying... )
Local 127.0.0.1:4573 LISTEN
nvstreamsvc.exe (22488)
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49935 (Querying... )
Local 127.0.0.1:49935 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49936 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49937 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49938 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49936 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49938 (Querying... )
Local 127.0.0.1:49939 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49939 (Querying... )
Local 127.0.0.1:54928 SYN-SENT Remote 127.0.0.1:47986 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49937 (Querying... )
Local 0.0.0.0:47985 LISTEN
rpdsvc.exe (3184)
Local 127.0.0.1:49157 ESTABLISHED Remote 127.0.0.1:49158 (Querying... )
Local 0.0.0.0:20121 LISTEN
Local 127.0.0.1:49176 ESTABLISHED Remote 127.0.0.1:49175 (Querying... )
Local 127.0.0.1:49175 ESTABLISHED Remote 127.0.0.1:49176 (Querying... )
Local 127.0.0.1:20121 ESTABLISHED Remote 127.0.0.1:54926 (Querying... )
Local 127.0.0.1:49171 ESTABLISHED Remote 127.0.0.1:49172 (Querying... )
Local 127.0.0.1:49174 ESTABLISHED Remote 127.0.0.1:49173 (Querying... )
Local 127.0.0.1:49153 ESTABLISHED Remote 127.0.0.1:49154 (Querying... )
Local 127.0.0.1:49154 ESTABLISHED Remote 127.0.0.1:49153 (Querying... )
Local 127.0.0.1:49155 ESTABLISHED Remote 127.0.0.1:49156 (Querying... )
Local 127.0.0.1:49156 ESTABLISHED Remote 127.0.0.1:49155 (Querying... )
Local 127.0.0.1:49172 ESTABLISHED Remote 127.0.0.1:49171 (Querying... )
Local 127.0.0.1:49158 ESTABLISHED Remote 127.0.0.1:49157 (Querying... )
Local 127.0.0.1:49160 ESTABLISHED Remote 127.0.0.1:49161 (Querying... )
Local 127.0.0.1:49161 ESTABLISHED Remote 127.0.0.1:49160 (Querying... )
Local 127.0.0.1:49162 ESTABLISHED Remote 127.0.0.1:49163 (Querying... )
Local 127.0.0.1:49163 ESTABLISHED Remote 127.0.0.1:49162 (Querying... )
Local 127.0.0.1:49164 ESTABLISHED Remote 127.0.0.1:49165 (Querying... )
Local 127.0.0.1:49165 ESTABLISHED Remote 127.0.0.1:49164 (Querying... )
Local 127.0.0.1:49167 ESTABLISHED Remote 127.0.0.1:49168 (Querying... )
Local 127.0.0.1:49168 ESTABLISHED Remote 127.0.0.1:49167 (Querying... )
Local 127.0.0.1:49169 ESTABLISHED Remote 127.0.0.1:49170 (Querying... )
Local 127.0.0.1:49170 ESTABLISHED Remote 127.0.0.1:49169 (Querying... )
Local 127.0.0.1:49927 ESTABLISHED Remote 127.0.0.1:49928 (Querying... )
Local 127.0.0.1:49928 ESTABLISHED Remote 127.0.0.1:49927 (Querying... )
Local 127.0.0.1:54888 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:49173 ESTABLISHED Remote 127.0.0.1:49174 (Querying... )
Local 127.0.0.1:54926 ESTABLISHED Remote 127.0.0.1:20121 (Querying... )
services.exe (736)
Local 0.0.0.0:5005 LISTEN
spoolsv.exe (2020)
Local 0.0.0.0:5003 LISTEN
svchost.exe (1320)
Local 0.0.0.0:135 (DCE) LISTEN
svchost.exe (1404)
Local 0.0.0.0:5001 LISTEN
svchost.exe (1548)
Local 0.0.0.0:5002 LISTEN
svchost.exe (1840)
Local 0.0.0.0:3390 LISTEN
System Process
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54875 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54890 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54886 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54881 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54885 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54884 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54883 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54882 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54880 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54877 (Querying... )
Local 127.0.0.1:20121 TIME-WAIT Remote 127.0.0.1:54838 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54876 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54874 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54841 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54872 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54873 (Querying... )
Local 127.0.0.1:54816 TIME-WAIT Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:54761 TIME-WAIT Remote 127.0.0.1:5354 (Querying... )
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 0.0.0.0:2869 LISTEN
Local 0.0.0.0:5357 LISTEN
Local 0.0.0.0:10243 LISTEN
Local 192.168.1.88:139 (NetBIOS session service) LISTEN
wininit.exe (688)
Local 0.0.0.0:5000 LISTEN
wmpnetwk.exe (5732)
Local 0.0.0.0:554 LISTEN
Generated with Speccy v1.24.632












Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 22-12-2013 01
Ran by Living Room at 2013-12-23 08:11:08 Run:1
Running from C:\Users\Living Room\Downloads
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
URLSearchHook: HKCU - Default Value = {CFBFAE00-17A6-11D0-99CB-00C04FD64497}
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {442CF095-5D34-49AC-843F-8C19EA99DAFF} URL = http://www.mysearchr...q={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg....fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
FF Plugin: @nielsen/FirefoxTracker - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll No File
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\[email protected]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151232 2013-12-02] (IObit)
R2 vToolbarUpdater17.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544
S3 catchme; \??\C:\Users\LIVING~1\AppData\Local\Temp\catchme.sys [x]
S3 motandroidusb; System32\Drivers\motoandroid.sys [x]
S3 MREMP50; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS [x]
S3 MRESP50; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS [x]
S1 myueyqsz; \??\C:\Windows\system32\drivers\myueyqsz.sys [x]










*****************

HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => Value not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{442CF095-5D34-49AC-843F-8C19EA99DAFF} => Key not found.
HKCR\Wow6432Node\CLSID\{442CF095-5D34-49AC-843F-8C19EA99DAFF} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKCR\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Key deleted successfully.
HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKCR\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} => Key deleted successfully.
HKCR\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{95B7759C-8C7F-4BF1-B163-73684A933233} => Value not found.
HKCR\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKLM\Software\MozillaPlugins\@nielsen/FirefoxTracker => Key not found.
C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll not found.
"C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml" => not found.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => not found.
C:\Program Files\Mozilla Firefox\extensions\[email protected] => Moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => not found.
HKLM\Software\Mozilla\Firefox\Extensions\\[email protected] => Value not found.
C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38 => not found.
LiveUpdateSvc => Service deleted successfully.
vToolbarUpdater17.2.0 => Service not found.
catchme => Service not found.
motandroidusb => Service not found.
MREMP50 => Service not found.
MRESP50 => Service not found.
myueyqsz => Service not found.

==== End of Fixlog ====












Rerunning of FRST after FIX was applied



Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-12-2013 01
Ran by Living Room (administrator) on LIVINGROOM-PC on 23-12-2013 08:12:35
Running from C:\Users\Living Room\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(Emsi Software GmbH) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corp.) C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Lexmark International, Inc.) C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
( ) C:\Windows\System32\lxddcoms.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
() C:\ProgramData\TVersity\Media Server\MediaServer.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(BlueStack Systems) C:\Program Files\BlueStacks\HD-Network.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-BlockDevice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-SharedFolder.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Spotify Ltd) C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Skillbrains) C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\Update\realsched.exe [295512 2013-10-17] (RealNetworks, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [LightShot] - C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] ()
HKCU\...\Run: [Spotify] - C:\Users\Living Room\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-15] (Spotify Ltd)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Ad\...\Run: [swg] - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Ad\...\Policies\system: [LogonHoursAction] 2
HKU\Ad\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Administrator\...\Policies\system: [LogonHoursAction] 2
HKU\Administrator\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Mcx1-LIVINGROOM-PC.LivingRoom-PC\...\Winlogon: [Shell] C:\Windows\eHome\McrMgr.exe [ 2009-07-13] (Microsoft Corporation) <==== ATTENTION
AppInit_DLLs: C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [ 2013-07-27] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0A32E1B72A7FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab
Handler: linkscanner - No CLSID Value -
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357
FF Homepage: hxxp://www.google.com/ig
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @MagellanGPS.com/CommunicationPlugin - C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 - C:\Program Files\Virtual Earth 3D\ ()
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.6.14 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\Living Room\AppData\Local\Roblox\Versions\version-28a069d7dccb4f92\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: CouponNetwork.com/CMDUniversalCouponPrintActivator - C:\Users\LIVING~1\AppData\Roaming\CATALI~2\NPBCSK~1.DLL (Catalina Marketing Corporation)
FF Extension: Play Pickle TextLinks - C:\Users\Living Room\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected]
FF Extension: Geocaching.com GPX Downloader - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\[email protected]
FF Extension: Adblock Plus - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Greasemonkey - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG2012\Firefox4\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM\...\Firefox\Extensions: [{1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\

Chrome:
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={3676D089-D678-4B66-9CA8-EB83DE303D18}&mid=d162516e7ece47d6853fd16b2e84a5ca-9a17500a96d428a5cdb8b2643968b9a928fc107f&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=hp
CHR RestoreOnStartup: "hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP&dt=070713", "https://www.google.com/"
CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll No File
CHR Plugin: (AVG Internet Security) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java™ Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (RealPlayer™ HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks™ Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
CHR Extension: (Angry Birds) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0
CHR Extension: (YouTube) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Swiki) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0
CHR Extension: (RealPlayer Downloader) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.1_0
CHR Extension: (Skype Click to Call) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0
CHR Extension: (Fieldrunners) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0
CHR Extension: (AVG SafeGuard) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.2.0.38_1
CHR Extension: ( "name":"Advanced SystemCare Surfing Protection",) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0
CHR Extension: (Google Wallet) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0
CHR Extension: (Gmail) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [gikoeigmfnoggdlhnobkbbbkohiahbko] - C:\Program Files\Swiki\chrome.crx
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM\...\Chrome\Extension: [joflpaafchojilpbjjbebljnikhkdhgf] - C:\ProgramData\wxDfast\joflpaafchojilpbjjbebljnikhkdhgf.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

========================== Services (Whitelisted) =================

R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [3046224 2012-02-21] (Emsi Software GmbH)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 BingDesktopUpdate; C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-05-13] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-05-13] (BlueStack Systems, Inc.)
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
R2 lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [99248 2007-05-25] (Lexmark International, Inc.)
R2 lxdd_device; C:\Windows\system32\lxddcoms.exe [537520 2007-05-25] ( )
S2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-23] ()
S2 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195400 2012-09-25] (NETGEAR)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14592288 2013-07-27] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-09-23] ()
R2 RealPlayer Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1418336 2013-10-17] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [29320 2013-09-25] ()
R2 TVersityMediaServer; C:\ProgramData\TVersity\Media Server\MediaServer.exe [1249064 2011-07-29] ()
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [297440 2011-07-28] ()

==================== Drivers (Whitelisted) ====================

S3 a2acc; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [51632 2011-11-02] (Emsi Software GmbH)
R1 A2DDA; C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [17904 2011-05-19] (Emsi Software GmbH)
R1 a2injectiondriver; C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [34768 2011-11-02] (Emsi Software GmbH)
R1 a2util; C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [11776 2010-05-05] (Emsi Software GmbH)
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1564160 2010-10-11] (Atheros Communications, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-05-13] (BlueStack Systems)
S3 D-Vitec; C:\Windows\System32\DRIVERS\dvitdcnt.sys [281344 2012-07-26] (D-vitec)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34592 2013-05-14] (NVIDIA Corporation)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21472 2011-07-22] (Windows ® Win 7 DDK provider)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [172416 2010-11-20] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2010-11-20] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [296064 2010-11-20] (Microsoft Corporation)
S3 zghsdiag; C:\Windows\System32\DRIVERS\zghsdiag.sys [106752 2011-01-13] (ZTE Incorporated)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-23 08:12 - 2013-12-23 08:12 - 00026033 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-23 07:44 - 2013-12-23 07:44 - 00081616 _____ C:\Users\Living Room\Desktop\LIVINGROOM-PC.txt
2013-12-23 07:38 - 2013-12-23 07:39 - 00012082 _____ C:\Users\Living Room\Desktop\System Idle Process.txt
2013-12-23 01:05 - 2013-12-23 07:55 - 00216164 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-22 19:12 - 2013-12-23 07:26 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-22 18:48 - 2013-12-23 07:42 - 00000000 ____D C:\Program Files\Speccy
2013-12-22 18:32 - 2013-12-23 07:37 - 00012168 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-22 17:39 - 2013-12-23 07:35 - 00002036 _____ C:\VEW.txt
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:36 - 2013-12-22 12:37 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-21 20:48 - 2013-12-21 20:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-23 07:58 - 00000840 _____ C:\Windows\setupact.log
2013-12-21 00:37 - 2013-12-22 13:10 - 00011806 _____ C:\Windows\PFRO.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:28 - 2013-12-21 00:32 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-18 23:17 - 2013-12-18 23:43 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:27 - 2013-12-18 22:32 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:25 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 20:54 - 2013-12-18 20:56 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:52 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 14:51 - 2013-12-18 15:03 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:43 - 2013-12-18 14:44 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-15 23:54 - 2013-12-16 02:06 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:53 - 2013-12-23 07:59 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-15 23:51 - 2013-12-15 23:52 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:09 - 2013-12-15 16:14 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:20 - 2013-12-11 17:31 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2011-07-22 10:35 - 00021472 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\SCMNdisP.sys
2013-12-10 19:42 - 2008-05-15 02:28 - 00020384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\jswpslwf.sys
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:08 - 2013-12-10 08:12 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:13 - 2013-12-18 22:14 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-10 07:12 - 2013-12-22 12:55 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 22:00 - 2013-06-27 18:05 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2013-12-09 21:47 - 2013-12-22 12:21 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\ProductData
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\IObit
2013-12-09 21:40 - 2013-12-18 21:02 - 00000000 ____D C:\Program Files\IObit
2013-12-09 21:40 - 2013-12-09 21:41 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:38 - 2013-12-09 21:39 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:25 - 2013-12-09 17:28 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 10:53 - 2013-12-09 11:09 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-05 23:19 - 2013-12-05 23:24 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url

==================== One Month Modified Files and Folders =======

2013-12-23 08:12 - 2013-12-23 08:12 - 00026033 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-23 08:08 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-23 08:08 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-23 08:07 - 2011-03-07 07:01 - 00000000 ____D C:\ProgramData\MFAData
2013-12-23 08:06 - 2013-11-01 09:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-23 08:06 - 2013-04-20 13:17 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Skype
2013-12-23 08:06 - 2013-04-20 13:16 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 07:59 - 2013-12-15 23:53 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-23 07:59 - 2011-03-22 09:06 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-23 07:58 - 2013-12-21 00:37 - 00000840 _____ C:\Windows\setupact.log
2013-12-23 07:58 - 2011-06-04 21:09 - 00586667 _____ C:\Windows\system32\TVersityMediaServer.log
2013-12-23 07:58 - 2011-03-08 03:19 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-23 07:58 - 2009-07-13 23:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-23 07:56 - 2013-06-06 09:27 - 01331891 _____ C:\Windows\WindowsUpdate.log
2013-12-23 07:55 - 2013-12-23 01:05 - 00216164 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 07:55 - 2013-01-08 18:47 - 00000000 ____D C:\Users\Living Room\AppData\Local\CrashDumps
2013-12-23 07:44 - 2013-12-23 07:44 - 00081616 _____ C:\Users\Living Room\Desktop\LIVINGROOM-PC.txt
2013-12-23 07:43 - 2013-08-23 10:58 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Nitro PDF
2013-12-23 07:42 - 2013-12-22 18:48 - 00000000 ____D C:\Program Files\Speccy
2013-12-23 07:39 - 2013-12-23 07:38 - 00012082 _____ C:\Users\Living Room\Desktop\System Idle Process.txt
2013-12-23 07:37 - 2013-12-22 18:32 - 00012168 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-23 07:35 - 2013-12-22 17:39 - 00002036 _____ C:\VEW.txt
2013-12-23 07:26 - 2013-12-22 19:12 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-23 07:26 - 2013-10-06 17:02 - 00000000 ____D C:\Users\Living Room\Desktop\Cache stuff
2013-12-23 07:24 - 2013-07-07 12:56 - 00000000 ____D C:\Users\Living Room\Desktop\Bobs stuff
2013-12-23 07:21 - 2011-03-22 09:06 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-23 05:43 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job
2013-12-23 05:37 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-sys.job
2013-12-23 01:12 - 2012-01-02 21:18 - 00001945 _____ C:\Windows\epplauncher.mif
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-22 16:34 - 2012-01-17 23:35 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\.minecraft
2013-12-22 13:10 - 2013-12-21 00:37 - 00011806 _____ C:\Windows\PFRO.log
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:55 - 2013-12-10 07:12 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-22 12:55 - 2013-06-06 08:05 - 00000000 ____D C:\Users\Administrator
2013-12-22 12:55 - 2012-05-13 00:21 - 00000000 ____D C:\Users\UpdatusUser.LivingRoom-PC
2013-12-22 12:55 - 2012-02-18 01:19 - 00000000 ____D C:\Users\Mcx1-LIVINGROOM-PC.LivingRoom-PC
2013-12-22 12:55 - 2011-03-18 12:54 - 00000000 ____D C:\Users\Ad
2013-12-22 12:55 - 2011-03-06 19:47 - 00000000 ____D C:\Users\Living Room
2013-12-22 12:37 - 2013-12-22 12:36 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-22 12:21 - 2013-12-09 21:47 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-21 20:51 - 2012-07-18 00:01 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-21 20:49 - 2013-12-21 20:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:25 - 2013-11-15 16:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-21 07:45 - 2011-03-06 19:50 - 00779306 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:37 - 2012-08-20 19:42 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-21 00:32 - 2013-12-21 00:28 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:32 - 2013-03-14 16:28 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Uniblue
2013-12-21 00:31 - 2013-03-14 16:28 - 00000000 ____D C:\Program Files\Uniblue
2013-12-21 00:26 - 2013-08-27 20:58 - 05155033 _____ (Swearware) C:\Users\Living Room\Downloads\ComboFix.exe
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-20 14:32 - 2011-03-06 22:00 - 00000000 ____D C:\Windows\Panther
2013-12-20 11:36 - 2013-09-07 13:39 - 00001371 _____ C:\Users\Living Room\Desktop\ROBLOX Studio 2013.lnk
2013-12-20 11:36 - 2013-09-05 16:52 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2013-12-19 01:20 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\rescache
2013-12-19 01:05 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-12-19 00:38 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-12-18 23:43 - 2013-12-18 23:17 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:32 - 2013-12-18 22:27 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:14 - 2013-12-10 07:13 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-18 21:27 - 2011-09-02 08:27 - 00000000 ____D C:\Windows\Minidump
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\ProductData
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\IObit
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 21:02 - 2013-12-09 21:40 - 00000000 ____D C:\Program Files\IObit
2013-12-18 21:01 - 2013-11-22 12:39 - 00000138 _____ C:\Users\Living Room\Desktop\Xmas Turkey Orders.txt
2013-12-18 20:56 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:54 - 2013-12-18 20:52 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 15:03 - 2013-12-18 14:51 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:44 - 2013-12-18 14:43 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-18 14:44 - 2013-08-26 15:59 - 00000000 ____D C:\Users\Living Room\Desktop\homework
2013-12-18 14:43 - 2013-10-06 17:13 - 00000000 ____D C:\Users\Living Room\Desktop\Tyler stuff
2013-12-18 14:28 - 2011-05-29 11:46 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\vlc
2013-12-16 02:06 - 2013-12-15 23:54 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:52 - 2013-12-15 23:51 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:14 - 2013-12-15 16:09 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-14 02:23 - 2011-03-22 09:06 - 00000000 ____D C:\Program Files\Google
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:31 - 2013-12-11 17:20 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 23:21 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\NDF
2013-12-10 22:06 - 2013-11-01 09:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-12-10 22:06 - 2013-11-01 09:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2012-01-16 19:47 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:12 - 2013-12-10 08:08 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:28 - 2011-05-14 12:59 - 00007607 _____ C:\Users\Living Room\AppData\Local\resmon.resmoncfg
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:19 - 2011-05-15 20:54 - 00000000 ___RD C:\Users\Living Room\Virtual Machines
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:05 - 2011-10-02 08:16 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:41 - 2013-12-09 21:40 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:41 - 2011-06-03 13:10 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Apple Computer
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:39 - 2013-12-09 21:38 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:28 - 2013-12-09 17:25 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 11:09 - 2013-12-09 10:53 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-08 20:52 - 2013-09-12 14:49 - 00003728 _____ C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2013-12-05 23:24 - 2013-12-05 23:19 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-12-01 14:42 - 2011-03-07 23:25 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-30 20:59 - 2012-05-01 12:46 - 00000000 ____D C:\Program Files\CCleaner
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url

Files to move or delete:
====================
C:\Users\Ad\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_loginapplet_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE1.dat
C:\Users\Living Room\random.dat


Some content of TEMP:
====================
C:\Users\Living Room\AppData\Local\temp\Quarantine.exe
C:\Users\Living Room\AppData\Local\temp\UNINSTALL.EXE


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 02:16

==================== End Of Log ============================
  • 0

#6
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
Process Explorer says your Windows Media Player Network Sharing Service is slowing you down. This service: Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play. You probably do not need it. Copy the next two lines:

sc stop WMPNetworkSvc
sc config WMPNetworkSvc start= disabled


Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied lines should appear. Hit Enter.

Run Process Explorer again and create a new log and post it.


If you find you miss it then:

[code]sc config WMPNetworkSvc start= delayed-auto
sc start WMPNetworkSvc[/code]

Will put it back.


We are missing a windows file. Let's see if you have a copy somewhere:

Copy the text in the code box by highlighting and Ctrl + c

/md5start
vpcnfltr.sys
/md5stop

then run OTL (rightclick and Run As Admin) and Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the Run SCAN button at the top
Let the program run unhindered, OTL will not reboot the PC when it is done. Save the log and copy and paste it to a reply.
  • 0

#7
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
Here you go RKinner,


OTL logfile created on: 12/23/2013 1:11:33 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Living Room\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16750)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.25 Gb Total Physical Memory | 1.27 Gb Available Physical Memory | 39.11% Memory free
6.49 Gb Paging File | 4.30 Gb Available in Paging File | 66.22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 508.38 Gb Total Space | 113.38 Gb Free Space | 22.30% Space Free | Partition Type: NTFS
Drive E: | 205.61 Gb Total Space | 181.37 Gb Free Space | 88.21% Space Free | Partition Type: NTFS
Drive F: | 100.00 Mb Total Space | 36.66 Mb Free Space | 36.66% Space Free | Partition Type: NTFS
Drive Z: | 217.42 Gb Total Space | 105.90 Gb Free Space | 48.71% Space Free | Partition Type: NTFS

Computer Name: LIVINGROOM-PC | User Name: Living Room | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/12/20 08:11:43 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013/12/15 23:53:59 | 001,168,896 | ---- | M] (Spotify Ltd) -- C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
PRC - [2013/12/09 22:41:59 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013/12/01 17:53:58 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Living Room\Downloads\OTL.exe
PRC - [2013/11/30 19:16:16 | 000,223,112 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
PRC - [2013/11/18 21:59:36 | 000,590,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exe
PRC - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe
PRC - [2013/11/07 22:03:50 | 004,956,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgui.exe
PRC - [2013/11/07 22:00:48 | 000,680,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgemcx.exe
PRC - [2013/10/28 23:24:02 | 000,729,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgrsx.exe
PRC - [2013/10/28 23:17:36 | 000,892,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
PRC - [2013/10/17 10:29:13 | 000,107,008 | ---- | M] () -- C:\Program Files\Real\RealPlayer\RPDS\Tools\ffmpeg\ffprobe.exe
PRC - [2013/10/17 10:29:09 | 001,418,336 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
PRC - [2013/10/17 10:29:09 | 000,877,664 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
PRC - [2013/10/17 10:29:05 | 000,295,512 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2013/09/27 12:39:50 | 000,313,120 | ---- | M] (Skillbrains) -- C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
PRC - [2013/09/25 14:48:30 | 000,029,320 | ---- | M] () -- C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
PRC - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe
PRC - [2013/09/23 22:25:20 | 000,253,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
PRC - [2013/09/23 22:24:58 | 000,039,056 | ---- | M] () -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/07/27 03:51:57 | 014,592,288 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2013/07/27 03:42:15 | 001,028,896 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
PRC - [2013/07/27 03:36:26 | 001,889,568 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2013/06/21 04:52:52 | 000,875,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013/06/21 04:52:51 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2013/06/21 04:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013/06/20 10:29:38 | 000,173,192 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
PRC - [2013/05/13 12:20:52 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files\BlueStacks\HD-LogRotatorService.exe
PRC - [2013/05/13 12:20:32 | 000,393,032 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files\BlueStacks\HD-Service.exe
PRC - [2013/05/13 12:20:28 | 000,366,408 | ---- | M] (BlueStack Systems) -- C:\Program Files\BlueStacks\HD-SharedFolder.exe
PRC - [2013/05/13 12:20:20 | 000,260,424 | ---- | M] (BlueStack Systems) -- C:\Program Files\BlueStacks\HD-BlockDevice.exe
PRC - [2013/05/13 12:20:16 | 000,376,648 | ---- | M] (BlueStack Systems) -- C:\Program Files\BlueStacks\HD-Network.exe
PRC - [2013/05/11 05:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013/04/04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/03/06 18:29:30 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/10/30 19:10:48 | 000,196,624 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
PRC - [2012/10/23 17:58:52 | 000,120,728 | ---- | M] () -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
PRC - [2012/10/23 17:58:40 | 000,694,168 | ---- | M] () -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
PRC - [2012/02/21 07:53:43 | 003,046,224 | ---- | M] (Emsi Software GmbH) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe
PRC - [2011/07/29 14:31:40 | 001,249,064 | ---- | M] () -- C:\ProgramData\TVersity\Media Server\MediaServer.exe
PRC - [2011/07/28 17:06:32 | 008,247,264 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
PRC - [2011/07/28 17:06:20 | 000,297,440 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
PRC - [2011/02/25 00:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 07:17:00 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
PRC - [2007/05/25 09:41:54 | 000,099,248 | ---- | M] (Lexmark International, Inc.) -- C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
PRC - [2007/05/25 09:41:38 | 000,537,520 | ---- | M] ( ) -- C:\Windows\System32\lxddcoms.exe


========== Modules (No Company Name) ==========

MOD - [2013/12/20 08:11:34 | 003,559,024 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013/10/17 10:29:11 | 000,565,856 | ---- | M] () -- C:\Program Files\Real\RealPlayer\RPDS\Lib\r1api.dll
MOD - [2012/10/23 17:58:40 | 000,694,168 | ---- | M] () -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
MOD - [2011/07/28 17:06:32 | 008,247,264 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
MOD - [2009/08/28 16:50:18 | 000,282,624 | ---- | M] () -- C:\Program Files\NETGEAR\WNA1100\WifiSvcLib.dll


========== Services (SafeList) ==========

SRV - [2013/12/20 08:11:42 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/10 22:06:19 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/10/17 10:29:09 | 001,418,336 | ---- | M] (RealNetworks, Inc.) [Auto | Running] -- C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe -- (RealPlayer Desktop Service)
SRV - [2013/09/25 14:48:30 | 000,029,320 | ---- | M] () [Auto | Running] -- C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2013/09/23 22:24:58 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/07/27 03:51:57 | 014,592,288 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2013/07/27 03:36:26 | 001,889,568 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2013/06/21 04:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013/06/20 10:29:38 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe -- (BingDesktopUpdate)
SRV - [2013/05/26 23:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/05/13 12:20:52 | 000,384,840 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files\BlueStacks\HD-LogRotatorService.exe -- (BstHdLogRotatorSvc)
SRV - [2013/05/13 12:20:32 | 000,393,032 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files\BlueStacks\HD-Service.exe -- (BstHdAndroidSvc)
SRV - [2013/05/11 05:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/10/30 19:10:48 | 000,196,624 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe -- (NitroReaderDriverReadSpool3)
SRV - [2012/10/23 17:58:52 | 000,120,728 | ---- | M] () [Auto | Running] -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe -- (Motorola Device Manager)
SRV - [2012/09/25 01:06:14 | 000,195,400 | ---- | M] (NETGEAR) [Auto | Stopped] -- C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe -- (NETGEARGenieDaemon)
SRV - [2012/02/21 07:53:43 | 003,046,224 | ---- | M] (Emsi Software GmbH) [Auto | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe -- (a2AntiMalware)
SRV - [2011/07/29 14:31:40 | 001,249,064 | ---- | M] () [Auto | Running] -- C:\ProgramData\TVersity\Media Server\MediaServer.exe -- (TVersityMediaServer)
SRV - [2011/07/28 17:06:20 | 000,297,440 | ---- | M] () [Auto | Running] -- C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe -- (WSWNA1100)
SRV - [2011/03/07 23:19:23 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/03/22 20:05:40 | 000,960,992 | ---- | M] (Atheros Communications, Inc.) [On_Demand | Stopped] -- C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe -- (jswpsapi)
SRV - [2009/07/13 20:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/13 20:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 20:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007/05/25 09:41:54 | 000,099,248 | ---- | M] () [Auto | Running] -- C:\Windows\System32\spool\DRIVERS\W32X86\3\\lxddserv.exe -- (lxddCATSCustConnectService)
SRV - [2007/05/25 09:41:38 | 000,537,520 | ---- | M] ( ) [Auto | Running] -- C:\Windows\System32\lxddcoms.exe -- (lxdd_device)


========== Driver Services (SafeList) ==========

DRV - [2013/11/05 21:50:48 | 000,120,600 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
DRV - [2013/11/04 21:57:30 | 000,209,176 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2013/10/31 23:00:28 | 000,176,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2013/10/31 22:30:08 | 000,222,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
DRV - [2013/10/24 22:28:32 | 000,147,768 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2013/10/01 00:49:38 | 000,102,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2013/09/17 00:57:26 | 000,022,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2013/09/10 00:43:20 | 000,027,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2013/08/20 06:02:14 | 000,182,680 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2013/08/20 06:02:14 | 000,084,248 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2013/08/01 15:08:52 | 000,193,848 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2013/06/21 07:02:43 | 009,069,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2013/06/20 19:07:34 | 000,153,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2013/06/20 19:07:34 | 000,136,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2013/06/20 19:07:34 | 000,130,248 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd)
DRV - [2013/06/20 19:07:34 | 000,017,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2013/05/14 14:28:30 | 000,034,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2013/05/13 12:20:38 | 000,063,816 | ---- | M] (BlueStack Systems) [Kernel | Auto | Running] -- C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys -- (BstHdDrv)
DRV - [2013/04/04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/08/23 09:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 09:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012/07/26 06:31:44 | 000,281,344 | ---- | M] (D-vitec) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dvitdcnt.sys -- (D-Vitec)
DRV - [2011/11/02 10:13:28 | 000,034,768 | ---- | M] (Emsi Software GmbH) [File_System | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys -- (a2injectiondriver)
DRV - [2011/11/02 10:13:12 | 000,051,632 | ---- | M] (Emsi Software GmbH) [File_System | On_Demand | Stopped] -- C:\Program Files\Emsisoft Anti-Malware\a2accx86.sys -- (a2acc)
DRV - [2011/07/22 10:35:16 | 000,021,472 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV - [2011/05/19 13:10:34 | 000,017,904 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys -- (A2DDA)
DRV - [2011/01/13 02:17:18 | 000,106,752 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zghsdiag.sys -- (zghsdiag)
DRV - [2010/11/20 07:30:17 | 000,296,064 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vpcvmm.sys -- (vpcvmm)
DRV - [2010/11/20 07:30:17 | 000,172,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vpchbus.sys -- (vpcbus)
DRV - [2010/11/20 07:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 07:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 07:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 05:50:38 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vpcusb.sys -- (vpcusb)
DRV - [2010/11/20 04:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 04:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 04:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/10/11 00:09:00 | 001,564,160 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athur.sys -- (athur)
DRV - [2010/06/01 23:33:42 | 000,049,904 | ---- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2010/05/05 08:40:32 | 000,011,776 | ---- | M] (Emsi Software GmbH) [Kernel | System | Running] -- C:\Program Files\Emsisoft Anti-Malware\a2util32.sys -- (a2util)
DRV - [2009/07/13 19:18:07 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV - [2009/07/13 18:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2008/05/15 02:28:00 | 000,020,384 | ---- | M] (Atheros Communications, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\jswpslwf.sys -- (jswpslwf)
DRV - [2007/04/09 09:50:34 | 000,009,600 | ---- | M] (Waytech Development, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UsbFltr.sys -- (UsbFltr)
DRV - [2006/11/02 07:57:08 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\irsir.sys -- (irsir)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0A 32 E1 B7 2A 7F CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {E9BBD11B-78CC-4566-A14B-155FB7D9F531}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{E9BBD11B-78CC-4566-A14B-155FB7D9F531}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\..\SearchScopes\DFEF316A7DF840789BE026CF4E2A55C1: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;192.168.*.*

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com/ig"
FF - prefs.js..extensions.enabledAddons: gpxdown%40geocaching.com:1.130522
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.13
FF - prefs.js..extensions.enabledAddons: %7B1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A%7D:1.5.1
FF - prefs.js..keyword.URL: ""
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@MagellanGPS.com/CommunicationPlugin: C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2011/08/18 10:14:03 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=17.0.1.181: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.6.14: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.5.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.5.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.5.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=17.0.1.181: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Users\Living Room\AppData\Local\Roblox\Versions\version-28a069d7dccb4f92\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\CouponNetwork.com/CMDUniversalCouponPrintActivator: C:\Users\LIVING~1\AppData\Roaming\CATALI~2\NPBCSK~1.DLL (Catalina Marketing Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/07/07 22:07:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/10/17 10:30:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/11/15 16:10:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/11/15 16:10:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.8\extensions\\Components: C:\Program Files\SeaMonkey\components [2012/12/15 06:25:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\SeaMonkey 2.8\extensions\\Plugins: C:\Program Files\SeaMonkey\plugins [2013/10/17 10:29:41 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/11/15 16:10:03 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/11/15 16:10:04 | 000,000,000 | ---D | M]

[2011/04/14 19:31:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Extensions
[2013/12/21 00:32:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions
[2013/12/22 09:02:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\4qub62kd.default\extensions
[2013/12/21 00:32:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\t0hqx41u.default\extensions
[2013/11/06 20:55:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions
[2013/06/19 12:02:04 | 000,000,000 | ---D | M] (ChatZilla) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
[2013/06/19 12:02:03 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions\[email protected]
[2013/11/06 20:55:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\SeaMonkey\Profiles\gcdr6068.default\extensions\staged
[2013/07/08 12:00:14 | 000,017,842 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions\[email protected]
[2013/10/10 10:35:00 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/12/15 10:45:44 | 000,287,503 | ---- | M] () (No name found) -- C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2013/12/23 08:11:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
[2013/10/17 10:30:25 | 000,000,000 | ---D | M] (RealDownloader) -- C:\PROGRAMDATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT
File not found (No name found) -- C:\USERS\LIVING ROOM\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3Z8PPDUY.DEFAULT-1373299741357\EXTENSIONS\[email protected]
[2013/01/06 12:12:25 | 000,466,944 | ---- | M] (Catalina Marketing Corporation) -- C:\Program Files\mozilla firefox\plugins\NPcol400.dll
[2013/10/17 10:29:25 | 000,124,504 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://mysearch.avg....fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=hp
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Windows Live Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Activation Technologies (Enabled) = C:\Windows\system32\Wat\npWatWeb.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - Extension: Angry Birds = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: YouTube = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Swiki = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0\
CHR - Extension: Swiki = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0\.svn\text-base\.svn-base
CHR - Extension: RealPlayer Downloader = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.1_0\
CHR - Extension: Skype Click to Call = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0\
CHR - Extension: Fieldrunners = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0\
CHR - Extension: AVG SafeGuard = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.2.0.38_1\
CHR - Extension: Store = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\
CHR - Extension: Google Wallet = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: DivX Plus Web Player HTML5 video = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0\
CHR - Extension: Gmail = C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/11/01 09:42:05 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Nvtmru] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [LightShot] C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\LightShot.exe ()
O4 - HKCU..\Run: [Spotify] C:\Users\Living Room\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O9 - Extra Button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra 'Tools' menuitem : ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll (Red Egg Software)
O9 - Extra Button: Launch Cooliris - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\cooliris.dll (Cooliris Inc.)
O9 - Extra Button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\paltalk.exe (AVM Software Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: custhelp.com ([247pearsoned] http in Trusted sites)
O15 - HKCU\..Trusted Domains: myitlab.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: pearsoncmg.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: pearsoned.com ([]* in Trusted sites)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{27179872-6506-4CE5-A886-8DC0AECD6550}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\linkscanner - No CLSID value found
O20 - AppInit_DLLs: (C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll (NVIDIA Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 16:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/12/23 00:39:40 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/12/22 19:12:06 | 000,000,000 | ---D | C] -- C:\Users\Living Room\Desktop\living room cleanup
[2013/12/22 18:48:36 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2013/12/22 12:34:46 | 000,000,000 | ---D | C] -- C:\FRST
[2013/12/21 08:25:08 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar
[2013/12/21 00:38:19 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/12/21 00:28:17 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/12/18 22:27:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2013/12/18 22:25:21 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2013/12/18 21:24:15 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/12/18 21:24:15 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/12/18 21:24:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/12/18 21:24:14 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/12/18 21:24:12 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013/12/18 21:24:12 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013/12/18 21:24:12 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013/12/18 21:24:11 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013/12/18 21:24:10 | 002,877,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/12/18 21:24:10 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013/12/18 21:23:14 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2013/12/18 21:22:55 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2013/12/18 21:22:36 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013/12/18 21:22:10 | 002,349,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/12/18 21:21:53 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2013/12/18 21:21:38 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2013/12/18 21:21:38 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2013/12/18 21:03:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
[2013/12/18 21:03:33 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
[2013/12/18 21:03:32 | 000,000,000 | ---D | C] -- C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
[2013/12/18 14:43:57 | 000,000,000 | ---D | C] -- C:\Users\Living Room\Desktop\Scanned DD214
[2013/12/15 23:54:12 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Local\Spotify
[2013/12/15 23:53:59 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Roaming\Spotify
[2013/12/14 02:23:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013/12/10 23:21:18 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Local\ElevatedDiagnostics
[2013/12/10 19:42:13 | 000,021,472 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\Windows\System32\drivers\SCMNdisP.sys
[2013/12/10 19:42:13 | 000,020,384 | ---- | C] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\jswpslwf.sys
[2013/12/10 19:42:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA1100 Genie
[2013/12/10 19:42:09 | 000,000,000 | ---D | C] -- C:\Program Files\NETGEAR
[2013/12/10 19:36:55 | 000,000,000 | ---D | C] -- C:\Windows\tasks\ImCleanDisabled
[2013/12/09 22:47:47 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013/12/09 22:47:46 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013/12/09 22:47:46 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013/12/09 22:41:59 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013/12/09 22:41:59 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013/12/09 22:41:58 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013/12/09 22:41:58 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013/12/09 22:14:14 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2013/12/09 22:14:14 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2013/12/09 22:11:47 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2013/12/09 22:11:47 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2013/12/09 22:11:17 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2013/12/09 22:11:17 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2013/12/09 22:10:56 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013/12/09 22:10:55 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013/12/09 22:09:59 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013/12/09 22:08:36 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013/12/09 22:08:36 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013/12/09 22:08:17 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013/12/09 22:08:17 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013/12/09 22:08:17 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013/12/09 22:08:17 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013/12/09 22:06:58 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013/12/09 22:03:38 | 000,133,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013/12/09 22:00:34 | 000,024,384 | ---- | C] (IObit) -- C:\Windows\System32\RegistryDefragBootTime.exe
[2013/12/09 21:40:55 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData
[2013/12/09 21:40:54 | 000,000,000 | ---D | C] -- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
[2013/12/09 21:40:40 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2013/12/09 21:40:37 | 000,000,000 | ---D | C] -- C:\Users\Living Room\AppData\Roaming\IObit
[2013/12/09 21:40:15 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2013/11/30 20:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\KB824146Scan
[2013/11/26 10:04:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[112 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/12/23 13:07:14 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/12/23 13:06:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/12/23 12:42:43 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/12/23 12:42:43 | 000,014,976 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/12/23 12:35:30 | 000,000,501 | ---- | M] () -- C:\Windows\System32\tversity.cookies
[2013/12/23 12:35:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/12/23 12:35:05 | 2615,812,096 | -HS- | M] () -- C:\hiberfil.sys
[2013/12/23 08:21:01 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/12/23 05:43:00 | 000,000,388 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job
[2013/12/23 05:37:00 | 000,000,388 | ---- | M] () -- C:\Windows\tasks\update-sys.job
[2013/12/23 01:12:06 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/12/22 19:44:13 | 000,094,510 | ---- | M] () -- C:\Users\Living Room\Desktop\Tenn_Tanks.jpg
[2013/12/22 12:55:00 | 000,000,000 | ---- | M] () -- C:\asc_rdflag
[2013/12/21 07:45:03 | 000,661,908 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/12/21 07:45:03 | 000,121,826 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/12/20 23:48:31 | 000,246,947 | ---- | M] () -- C:\Users\Living Room\Desktop\arpart.png
[2013/12/20 11:36:47 | 000,001,371 | ---- | M] () -- C:\Users\Living Room\Desktop\ROBLOX Studio 2013.lnk
[2013/12/19 16:42:06 | 000,072,477 | ---- | M] () -- C:\Users\Living Room\Desktop\Shim-Jun.png
[2013/12/18 22:14:20 | 000,324,112 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/12/18 21:24:15 | 000,493,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/12/18 21:24:15 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/12/18 21:24:15 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/12/18 21:24:14 | 002,706,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/12/18 21:24:12 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013/12/18 21:24:12 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013/12/18 21:24:12 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013/12/18 21:24:11 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013/12/18 21:24:10 | 002,877,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/12/18 21:24:10 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013/12/18 21:23:14 | 012,625,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2013/12/18 21:22:55 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2013/12/18 21:22:36 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013/12/18 21:22:10 | 002,349,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/12/18 21:21:53 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscript.exe
[2013/12/18 21:21:38 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2013/12/18 21:21:38 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\drmk.sys
[2013/12/18 10:40:43 | 000,005,222 | ---- | M] () -- C:\Users\Living Room\Desktop\lmao.jpg
[2013/12/18 01:22:54 | 000,020,686 | ---- | M] () -- C:\Users\Living Room\Desktop\oh shut up.jpg
[2013/12/18 01:14:05 | 000,010,037 | ---- | M] () -- C:\Users\Living Room\Desktop\STFU.jpg
[2013/12/15 23:54:08 | 000,001,840 | ---- | M] () -- C:\Users\Living Room\Desktop\Spotify.lnk
[2013/12/15 16:14:18 | 662,799,896 | ---- | M] () -- C:\Users\Living Room\Documents\clip0051.avi
[2013/12/14 02:23:27 | 000,002,130 | ---- | M] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/12/10 22:06:18 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013/12/10 22:06:18 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013/12/10 19:42:09 | 000,000,866 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Genie.lnk
[2013/12/10 07:28:44 | 000,007,607 | ---- | M] () -- C:\Users\Living Room\AppData\Local\resmon.resmoncfg
[2013/12/09 22:47:47 | 003,969,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013/12/09 22:47:47 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013/12/09 22:47:46 | 003,914,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013/12/09 22:41:59 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013/12/09 22:41:59 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013/12/09 22:41:59 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013/12/09 22:41:59 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013/12/09 22:41:58 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013/12/09 22:41:58 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013/12/09 22:41:58 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013/12/09 22:41:58 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013/12/09 22:14:14 | 001,796,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2013/12/09 22:14:14 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SmartcardCredentialProvider.dll
[2013/12/09 22:11:47 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2013/12/09 22:11:47 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2013/12/09 22:11:17 | 000,656,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2013/12/09 22:11:17 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2013/12/09 22:10:56 | 000,006,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013/12/09 22:10:55 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013/12/09 22:09:59 | 000,434,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013/12/09 22:08:36 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013/12/09 22:08:36 | 000,025,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013/12/09 22:08:17 | 000,295,424 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013/12/09 22:08:17 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013/12/09 22:08:17 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013/12/09 22:08:17 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013/12/09 22:06:58 | 000,102,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013/12/09 22:03:38 | 000,133,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013/12/09 11:59:25 | 041,172,090 | ---- | M] () -- C:\Users\Living Room\Documents\clip0050.avi
[2013/12/08 20:52:18 | 000,003,728 | ---- | M] () -- C:\Program Files\Mozilla Firefoxavg-secure-search.xml
[2013/12/07 23:06:10 | 000,048,024 | ---- | M] () -- C:\Users\Living Room\Desktop\walker [bleep] slap.jpg
[2013/12/06 17:11:37 | 000,025,644 | ---- | M] () -- C:\Users\Living Room\Desktop\urmom.jpg
[2013/12/04 19:49:03 | 000,014,514 | ---- | M] () -- C:\Users\Living Room\Desktop\KALEY.jpg
[2013/12/04 19:47:43 | 000,013,477 | ---- | M] () -- C:\Users\Living Room\Desktop\KALEYS FB.jpg
[2013/11/26 15:28:07 | 000,070,315 | ---- | M] () -- C:\Users\Living Room\Desktop\ROBLOX Studio fb tyler.jpg
[2013/11/25 11:03:48 | 000,000,188 | ---- | M] () -- C:\Users\Living Room\Desktop\turkey smoker.url
[2 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[112 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/12/22 19:44:12 | 000,094,510 | ---- | C] () -- C:\Users\Living Room\Desktop\Tenn_Tanks.jpg
[2013/12/22 12:55:00 | 000,000,000 | ---- | C] () -- C:\asc_rdflag
[2013/12/20 23:48:29 | 000,246,947 | ---- | C] () -- C:\Users\Living Room\Desktop\arpart.png
[2013/12/19 16:41:57 | 000,072,477 | ---- | C] () -- C:\Users\Living Room\Desktop\Shim-Jun.png
[2013/12/18 10:40:30 | 000,005,222 | ---- | C] () -- C:\Users\Living Room\Desktop\lmao.jpg
[2013/12/18 01:22:52 | 000,020,686 | ---- | C] () -- C:\Users\Living Room\Desktop\oh shut up.jpg
[2013/12/18 01:13:48 | 000,010,037 | ---- | C] () -- C:\Users\Living Room\Desktop\STFU.jpg
[2013/12/15 23:54:08 | 000,001,840 | ---- | C] () -- C:\Users\Living Room\Desktop\Spotify.lnk
[2013/12/15 23:54:08 | 000,001,826 | ---- | C] () -- C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2013/12/15 16:09:46 | 662,799,896 | ---- | C] () -- C:\Users\Living Room\Documents\clip0051.avi
[2013/12/14 02:23:27 | 000,002,130 | ---- | C] () -- C:\Users\Public\Desktop\Google Earth.lnk
[2013/12/10 19:42:09 | 000,000,866 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Genie.lnk
[2013/12/10 07:13:37 | 000,324,112 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/12/09 11:59:06 | 041,172,090 | ---- | C] () -- C:\Users\Living Room\Documents\clip0050.avi
[2013/12/07 23:05:58 | 000,048,024 | ---- | C] () -- C:\Users\Living Room\Desktop\walker [bleep] slap.jpg
[2013/12/06 17:11:35 | 000,025,644 | ---- | C] () -- C:\Users\Living Room\Desktop\urmom.jpg
[2013/12/04 19:48:52 | 000,014,514 | ---- | C] () -- C:\Users\Living Room\Desktop\KALEY.jpg
[2013/12/04 19:47:54 | 000,013,477 | ---- | C] () -- C:\Users\Living Room\Desktop\KALEYS FB.jpg
[2013/11/26 15:27:59 | 000,070,315 | ---- | C] () -- C:\Users\Living Room\Desktop\ROBLOX Studio fb tyler.jpg
[2013/11/25 11:03:41 | 000,000,188 | ---- | C] () -- C:\Users\Living Room\Desktop\turkey smoker.url
[2013/09/12 14:49:37 | 000,003,728 | ---- | C] () -- C:\Program Files\Mozilla Firefoxavg-secure-search.xml
[2013/08/06 08:27:51 | 000,001,800 | ---- | C] () -- C:\Users\Living Room\.TransferManager.db
[2013/07/18 12:02:00 | 000,893,239 | ---- | C] () -- C:\Users\Living Room\AppData\Local\a.zip
[2013/07/03 12:08:51 | 000,000,091 | RHS- | C] () -- C:\Windows\System32\CADlink.ini
[2013/07/03 12:07:20 | 000,207,872 | ---- | C] () -- C:\Windows\System32\patchw32.dll
[2013/07/03 12:07:20 | 000,052,474 | ---- | C] () -- C:\Windows\System32\CDLDIB.DRV
[2013/07/03 12:07:16 | 000,084,448 | ---- | C] () -- C:\Windows\System32\PCDLIB.DLL
[2013/06/06 09:04:04 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/06/06 09:04:04 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/06/06 09:04:04 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/06/06 09:04:04 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/06/06 09:04:04 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/04/25 14:22:42 | 000,173,048 | ---- | C] () -- C:\Windows\hpoins46.dat
[2013/04/25 14:22:42 | 000,000,601 | ---- | C] () -- C:\Windows\hpomdl46.dat
[2013/04/18 18:07:00 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2013/04/18 18:06:46 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013/04/18 18:06:46 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013/04/18 18:06:46 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013/04/18 18:06:46 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2013/03/16 00:15:17 | 000,000,632 | RHS- | C] () -- C:\Users\Living Room\ntuser.pol
[2013/01/25 12:24:06 | 000,000,853 | ---- | C] () -- C:\Users\Living Room\AppData\Local\recently-used.xbel
[2013/01/25 12:05:54 | 000,180,624 | ---- | C] () -- C:\Windows\System32\Primomonnt.dll
[2012/10/27 14:12:13 | 000,645,632 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2012/10/27 14:12:13 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2012/10/16 18:19:11 | 000,000,052 | ---- | C] () -- C:\Users\Living Room\jagex_cl_loginapplet_LIVE.dat
[2012/10/16 18:19:11 | 000,000,024 | ---- | C] () -- C:\Users\Living Room\random.dat
[2012/08/20 03:18:30 | 000,602,112 | ---- | C] () -- C:\Windows\System32\xvid.dll
[2012/05/21 23:57:44 | 000,001,056 | ---- | C] () -- C:\Users\Living Room\wxDownloadFast.ini
[2012/03/23 08:27:29 | 000,001,152 | ---- | C] () -- C:\Users\Living Room\AppData\Local\UserProducts.xml
[2012/02/05 14:35:02 | 000,000,051 | ---- | C] () -- C:\Users\Living Room\jagex_cl_runescape_LIVE1.dat
[2012/02/05 14:00:34 | 000,000,032 | ---- | C] () -- C:\Users\Living Room\jagex_cl_runescape_LIVE.dat
[2012/01/24 09:19:27 | 000,070,477 | ---- | C] () -- C:\Users\Living Room\FCAT Test Schedule 2012.pdf
[2012/01/16 19:47:40 | 000,000,616 | ---- | C] () -- C:\Windows\eReg.dat
[2011/12/02 23:46:54 | 000,005,632 | ---- | C] () -- C:\Users\Living Room\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/11/04 10:00:17 | 000,356,694 | ---- | C] () -- C:\Users\Living Room\FCAT Practice_GR4_TheRedFox.pdf
[2011/10/28 09:53:35 | 000,242,564 | ---- | C] () -- C:\Users\Living Room\Q2 Intensive Reading Checklist.pdf
[2011/10/28 09:53:15 | 000,287,596 | ---- | C] () -- C:\Users\Living Room\Good Readers_Ten Pegs.pdf
[2011/08/10 21:19:43 | 000,000,053 | ---- | C] () -- C:\ProgramData\lxdd
[2011/05/14 12:59:14 | 000,007,607 | ---- | C] () -- C:\Users\Living Room\AppData\Local\resmon.resmoncfg
[2011/05/06 10:08:31 | 000,020,485 | ---- | C] () -- C:\Users\Living Room\word-wizard.pdf
[2011/05/06 10:08:22 | 000,019,723 | ---- | C] () -- C:\Users\Living Room\story-connector.pdf
[2011/03/18 21:02:32 | 000,000,522 | RHS- | C] () -- C:\ProgramData\ntuser.pol

========== ZeroAccess Check ==========

[2009/07/13 23:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/12/09 22:04:04 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 20:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Custom Scans ==========

< MD5 for: VPCNFLTR.SYS >
[2009/09/22 20:19:31 | 000,055,040 | ---- | M] (Microsoft Corporation) MD5=5F04362CEB5FB5901037E9D9EADD3760 -- C:\Windows\winsxs\x86_microsoft-windows-virtualpc-vmnet_31bf3856ad364e35_7.1.7600.16393_none_f0140badfc4b6730\vpcnfltr.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:96D0C06F

< End of report >
  • 0

#8
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
Copy the text in the code box by highlighting and Ctrl + c

:OTL
File not found (No name found) -- C:\PROGRAM FILES\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\LIVING ROOM\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3Z8PPDUY.DEFAULT-1373299741357\EXTENSIONS\[email protected]


:files
C:\WINDOWS\System32\drivers\vpcnfltr.sys|C:\Windows\winsxs\x86_microsoft-windows-virtualpc-vmnet_31bf3856ad364e35_7.1.7600.16393_none_f0140badfc4b6730\vpcnfltr.sys /replace
    
:Commands
[EMPTYFLASH]
[EMPTYJAVA]
[purity]
[Reboot]


then Rightclick on OTL and select Run As Administrator to start. Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the RUN FIX button (NOT THE QUICK SCAN button!) at the top
Let the program run unhindered, OTL will reboot the PC when it is done.

Download and run Speedy Fox.
http://www.crystalidea.com/speedyfox . Close Chrome/Firefox. Hit Optimize.

How is it running now?
  • 0

#9
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
WOW, just WOW. I am seeing a major difference in speed over all. What used to take 30 seconds to a minute to boot up now takes maybe 15-20 seconds if that. I am hearing the PC doing a lot of thinking and hopefully a Defrag will remedy that (Defrag is already set to run ever Wed at 1am). Is there anything that should be run once more to give you an overall look at the system now that all your fixes have been applied? For instance another OTL scan?

If not then THANK YOU once again and I wish you and yours a Very Merry Christmas and Happy Holidays.
  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
Let's try this again:


Right click on (My) Computer and select Manage (Continue) Then click on the arrow in front of Event Viewer. Next Click on the arrow in front of Windows Logs Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).
sfc  /scannow

(This will check your critical system files. Does this finish without complaint? IF it says it couldn't fix everything then:

Copy the next two lines:

findstr /c:"[SR]" \windows\logs\cbs\cbs.log > \windows\logs\cbs\junk.txt
notepad \windows\logs\cbs\junk.txt

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter. Copy and paste the text from notepad or if it is too big, just attach the file.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:

2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

I should mention that your hard drive is not looking its best:


01 Read Error Rate 095 (095) Data 000008000A

03 Spin-Up Time 128 (128) Data 0001B901C6

05 Reallocated Sectors Count 100 (100) Data 000000005F

C2 Temperature 142 (142) Data 000016002A
C4 Reallocation Event Count 100 (100) Data 0000000073
C5 Current Pending Sector Count 100 (100) Data 0000000005

C7 UltraDMA CRC Error Count 200 (200) Data 0000000013

Make sure you back up any data you don't want to lose. (pictures, documents etc) Burn them to a CD/DVD or email them to a gmail account. Consider getting a new drive and cloning the old one before it fails. I can't say it is going to fail tomorrow or even next year but I don't like to see so many errors. If nothing else they slow you down since the CPU keeps having to ask for the data a second time. You have a 1 TB 3.5' Internal Hard Drive Hitachi HDT721010SLA360 ATA Device (SATA). Lots of deals available on that size drive right now. Expect you have already cloned it once since normally you don't get that big a drive unless you build the PC yourself. If you keep Speecy and run it once in a while you can monitor the values I highlighted in bold and see if they are increasing.
  • 0

Advertisements


#11
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
Thanks for the info on my hard drive, I've been hearing it click and pop more than normal lately and have been wondering. Yes, PC is self built and only bought drive that big due to good price at the time. I have a 500gb drive to fall back on when the time comes.

OK, here are the latest results:



2013-12-23 18:01:43, Info CSI 00000009 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:01:43, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2013-12-23 18:01:52, Info CSI 0000000c [SR] Verify complete
2013-12-23 18:01:53, Info CSI 0000000d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:01:53, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2013-12-23 18:02:00, Info CSI 00000010 [SR] Verify complete
2013-12-23 18:02:01, Info CSI 00000011 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:02:01, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2013-12-23 18:02:12, Info CSI 00000014 [SR] Verify complete
2013-12-23 18:02:14, Info CSI 00000015 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:02:14, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2013-12-23 18:02:31, Info CSI 00000018 [SR] Verify complete
2013-12-23 18:02:36, Info CSI 00000019 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:02:36, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2013-12-23 18:02:45, Info CSI 0000001c [SR] Verify complete
2013-12-23 18:02:45, Info CSI 0000001d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:02:45, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2013-12-23 18:02:53, Info CSI 00000020 [SR] Verify complete
2013-12-23 18:02:54, Info CSI 00000021 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:02:54, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:01, Info CSI 00000024 [SR] Verify complete
2013-12-23 18:03:02, Info CSI 00000025 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:02, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:15, Info CSI 00000028 [SR] Verify complete
2013-12-23 18:03:15, Info CSI 00000029 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:15, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:24, Info CSI 0000002c [SR] Verify complete
2013-12-23 18:03:25, Info CSI 0000002d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:25, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:29, Info CSI 00000030 [SR] Verify complete
2013-12-23 18:03:29, Info CSI 00000031 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:29, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:34, Info CSI 00000034 [SR] Verify complete
2013-12-23 18:03:34, Info CSI 00000035 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:34, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:42, Info CSI 00000038 [SR] Verify complete
2013-12-23 18:03:42, Info CSI 00000039 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:42, Info CSI 0000003a [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:45, Info CSI 0000003c [SR] Verify complete
2013-12-23 18:03:45, Info CSI 0000003d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:45, Info CSI 0000003e [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:48, Info CSI 00000040 [SR] Verify complete
2013-12-23 18:03:48, Info CSI 00000041 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:48, Info CSI 00000042 [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:53, Info CSI 00000044 [SR] Verify complete
2013-12-23 18:03:53, Info CSI 00000045 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:53, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2013-12-23 18:03:59, Info CSI 00000049 [SR] Verify complete
2013-12-23 18:03:59, Info CSI 0000004a [SR] Verifying 100 (0x00000064) components
2013-12-23 18:03:59, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:03, Info CSI 0000004f [SR] Verify complete
2013-12-23 18:04:03, Info CSI 00000050 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:03, Info CSI 00000051 [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:10, Info CSI 00000054 [SR] Verify complete
2013-12-23 18:04:10, Info CSI 00000055 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:10, Info CSI 00000056 [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:14, Info CSI 0000005a [SR] Verify complete
2013-12-23 18:04:15, Info CSI 0000005b [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:15, Info CSI 0000005c [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:22, Info CSI 00000066 [SR] Verify complete
2013-12-23 18:04:22, Info CSI 00000067 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:22, Info CSI 00000068 [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:27, Info CSI 0000006a [SR] Verify complete
2013-12-23 18:04:27, Info CSI 0000006b [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:27, Info CSI 0000006c [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:37, Info CSI 0000006e [SR] Verify complete
2013-12-23 18:04:37, Info CSI 0000006f [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:37, Info CSI 00000070 [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:44, Info CSI 00000072 [SR] Verify complete
2013-12-23 18:04:44, Info CSI 00000073 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:44, Info CSI 00000074 [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:48, Info CSI 00000076 [SR] Verify complete
2013-12-23 18:04:49, Info CSI 00000077 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:49, Info CSI 00000078 [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:53, Info CSI 0000007a [SR] Verify complete
2013-12-23 18:04:53, Info CSI 0000007b [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:53, Info CSI 0000007c [SR] Beginning Verify and Repair transaction
2013-12-23 18:04:58, Info CSI 0000007e [SR] Verify complete
2013-12-23 18:04:58, Info CSI 0000007f [SR] Verifying 100 (0x00000064) components
2013-12-23 18:04:58, Info CSI 00000080 [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:06, Info CSI 00000084 [SR] Verify complete
2013-12-23 18:05:06, Info CSI 00000085 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:06, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:13, Info CSI 00000088 [SR] Verify complete
2013-12-23 18:05:13, Info CSI 00000089 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:13, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:23, Info CSI 0000008c [SR] Verify complete
2013-12-23 18:05:23, Info CSI 0000008d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:23, Info CSI 0000008e [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:36, Info CSI 00000090 [SR] Verify complete
2013-12-23 18:05:36, Info CSI 00000091 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:36, Info CSI 00000092 [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:40, Info CSI 00000094 [SR] Verify complete
2013-12-23 18:05:41, Info CSI 00000095 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:41, Info CSI 00000096 [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:43, Info CSI 00000098 [SR] Verify complete
2013-12-23 18:05:43, Info CSI 00000099 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:43, Info CSI 0000009a [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:45, Info CSI 0000009c [SR] Verify complete
2013-12-23 18:05:45, Info CSI 0000009d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:45, Info CSI 0000009e [SR] Beginning Verify and Repair transaction
2013-12-23 18:05:54, Info CSI 000000a4 [SR] Verify complete
2013-12-23 18:05:54, Info CSI 000000a5 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:05:54, Info CSI 000000a6 [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:00, Info CSI 000000c0 [SR] Verify complete
2013-12-23 18:06:00, Info CSI 000000c1 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:00, Info CSI 000000c2 [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:03, Info CSI 000000c4 [SR] Verify complete
2013-12-23 18:06:04, Info CSI 000000c5 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:04, Info CSI 000000c6 [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:07, Info CSI 000000c8 [SR] Verify complete
2013-12-23 18:06:07, Info CSI 000000c9 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:07, Info CSI 000000ca [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:11, Info CSI 000000cc [SR] Verify complete
2013-12-23 18:06:11, Info CSI 000000cd [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:11, Info CSI 000000ce [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:17, Info CSI 000000d0 [SR] Verify complete
2013-12-23 18:06:17, Info CSI 000000d1 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:17, Info CSI 000000d2 [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:23, Info CSI 000000d5 [SR] Verify complete
2013-12-23 18:06:23, Info CSI 000000d6 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:23, Info CSI 000000d7 [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:26, Info CSI 000000d9 [SR] Verify complete
2013-12-23 18:06:26, Info CSI 000000da [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:26, Info CSI 000000db [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:29, Info CSI 000000dd [SR] Verify complete
2013-12-23 18:06:29, Info CSI 000000de [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:29, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:36, Info CSI 000000e1 [SR] Verify complete
2013-12-23 18:06:36, Info CSI 000000e2 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:36, Info CSI 000000e3 [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:42, Info CSI 000000e5 [SR] Verify complete
2013-12-23 18:06:42, Info CSI 000000e6 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:42, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:47, Info CSI 000000e9 [SR] Verify complete
2013-12-23 18:06:47, Info CSI 000000ea [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:47, Info CSI 000000eb [SR] Beginning Verify and Repair transaction
2013-12-23 18:06:56, Info CSI 000000fd [SR] Verify complete
2013-12-23 18:06:56, Info CSI 000000fe [SR] Verifying 100 (0x00000064) components
2013-12-23 18:06:56, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:02, Info CSI 00000115 [SR] Verify complete
2013-12-23 18:07:02, Info CSI 00000116 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:02, Info CSI 00000117 [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:08, Info CSI 00000119 [SR] Verify complete
2013-12-23 18:07:09, Info CSI 0000011a [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:09, Info CSI 0000011b [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:24, Info CSI 0000011d [SR] Verify complete
2013-12-23 18:07:24, Info CSI 0000011e [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:24, Info CSI 0000011f [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:36, Info CSI 00000122 [SR] Verify complete
2013-12-23 18:07:36, Info CSI 00000123 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:36, Info CSI 00000124 [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:43, Info CSI 00000126 [SR] Verify complete
2013-12-23 18:07:43, Info CSI 00000127 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:43, Info CSI 00000128 [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:48, Info CSI 0000012a [SR] Verify complete
2013-12-23 18:07:48, Info CSI 0000012b [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:48, Info CSI 0000012c [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:54, Info CSI 0000012e [SR] Verify complete
2013-12-23 18:07:54, Info CSI 0000012f [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:54, Info CSI 00000130 [SR] Beginning Verify and Repair transaction
2013-12-23 18:07:58, Info CSI 00000132 [SR] Verify complete
2013-12-23 18:07:58, Info CSI 00000133 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:07:58, Info CSI 00000134 [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:04, Info CSI 00000137 [SR] Verify complete
2013-12-23 18:08:04, Info CSI 00000138 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:04, Info CSI 00000139 [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:15, Info CSI 0000013b [SR] Verify complete
2013-12-23 18:08:15, Info CSI 0000013c [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:15, Info CSI 0000013d [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:22, Info CSI 00000140 [SR] Verify complete
2013-12-23 18:08:22, Info CSI 00000141 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:22, Info CSI 00000142 [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:28, Info CSI 00000144 [SR] Verify complete
2013-12-23 18:08:29, Info CSI 00000145 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:29, Info CSI 00000146 [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:34, Info CSI 00000148 [SR] Verify complete
2013-12-23 18:08:34, Info CSI 00000149 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:34, Info CSI 0000014a [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:42, Info CSI 0000014d [SR] Verify complete
2013-12-23 18:08:42, Info CSI 0000014e [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:42, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:49, Info CSI 00000151 [SR] Verify complete
2013-12-23 18:08:49, Info CSI 00000152 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:49, Info CSI 00000153 [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:54, Info CSI 00000155 [SR] Verify complete
2013-12-23 18:08:54, Info CSI 00000156 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:08:54, Info CSI 00000157 [SR] Beginning Verify and Repair transaction
2013-12-23 18:08:59, Info CSI 00000159 [SR] Verify complete
2013-12-23 18:09:00, Info CSI 0000015a [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:00, Info CSI 0000015b [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:05, Info CSI 0000015e [SR] Verify complete
2013-12-23 18:09:05, Info CSI 0000015f [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:05, Info CSI 00000160 [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:12, Info CSI 00000162 [SR] Verify complete
2013-12-23 18:09:12, Info CSI 00000163 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:12, Info CSI 00000164 [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:15, Info CSI 00000166 [SR] Verify complete
2013-12-23 18:09:16, Info CSI 00000167 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:16, Info CSI 00000168 [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:21, Info CSI 0000016a [SR] Verify complete
2013-12-23 18:09:21, Info CSI 0000016b [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:21, Info CSI 0000016c [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:24, Info CSI 0000016e [SR] Verify complete
2013-12-23 18:09:25, Info CSI 0000016f [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:25, Info CSI 00000170 [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:28, Info CSI 00000172 [SR] Verify complete
2013-12-23 18:09:28, Info CSI 00000173 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:28, Info CSI 00000174 [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:32, Info CSI 00000175 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 18:09:32, Info CSI 00000176 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 18:09:32, Info CSI 00000177 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 18:09:32, Info CSI 00000179 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 18:09:33, Info CSI 0000017b [SR] Verify complete
2013-12-23 18:09:33, Info CSI 0000017c [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:33, Info CSI 0000017d [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:39, Info CSI 00000180 [SR] Verify complete
2013-12-23 18:09:39, Info CSI 00000181 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:39, Info CSI 00000182 [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:47, Info CSI 00000184 [SR] Verify complete
2013-12-23 18:09:47, Info CSI 00000185 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:47, Info CSI 00000186 [SR] Beginning Verify and Repair transaction
2013-12-23 18:09:57, Info CSI 00000188 [SR] Verify complete
2013-12-23 18:09:57, Info CSI 00000189 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:09:57, Info CSI 0000018a [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:10, Info CSI 0000018c [SR] Verify complete
2013-12-23 18:10:10, Info CSI 0000018d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:10, Info CSI 0000018e [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:19, Info CSI 00000190 [SR] Verify complete
2013-12-23 18:10:19, Info CSI 00000191 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:19, Info CSI 00000192 [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:25, Info CSI 00000194 [SR] Verify complete
2013-12-23 18:10:25, Info CSI 00000195 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:25, Info CSI 00000196 [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:30, Info CSI 00000198 [SR] Verify complete
2013-12-23 18:10:30, Info CSI 00000199 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:30, Info CSI 0000019a [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:34, Info CSI 0000019c [SR] Verify complete
2013-12-23 18:10:34, Info CSI 0000019d [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:34, Info CSI 0000019e [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:38, Info CSI 000001a0 [SR] Verify complete
2013-12-23 18:10:39, Info CSI 000001a1 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:39, Info CSI 000001a2 [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:42, Info CSI 000001a4 [SR] Verify complete
2013-12-23 18:10:43, Info CSI 000001a5 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:43, Info CSI 000001a6 [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:46, Info CSI 000001a8 [SR] Verify complete
2013-12-23 18:10:46, Info CSI 000001a9 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:46, Info CSI 000001aa [SR] Beginning Verify and Repair transaction
2013-12-23 18:10:54, Info CSI 000001ac [SR] Verify complete
2013-12-23 18:10:54, Info CSI 000001ad [SR] Verifying 100 (0x00000064) components
2013-12-23 18:10:54, Info CSI 000001ae [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:18, Info CSI 000001b0 [SR] Verify complete
2013-12-23 18:11:18, Info CSI 000001b1 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:18, Info CSI 000001b2 [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:26, Info CSI 000001b4 [SR] Verify complete
2013-12-23 18:11:26, Info CSI 000001b5 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:26, Info CSI 000001b6 [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:34, Info CSI 000001b8 [SR] Verify complete
2013-12-23 18:11:34, Info CSI 000001b9 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:34, Info CSI 000001ba [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:37, Info CSI 000001bc [SR] Verify complete
2013-12-23 18:11:37, Info CSI 000001bd [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:37, Info CSI 000001be [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:41, Info CSI 000001c0 [SR] Verify complete
2013-12-23 18:11:41, Info CSI 000001c1 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:41, Info CSI 000001c2 [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:44, Info CSI 000001c4 [SR] Verify complete
2013-12-23 18:11:44, Info CSI 000001c5 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:44, Info CSI 000001c6 [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:48, Info CSI 000001c8 [SR] Verify complete
2013-12-23 18:11:48, Info CSI 000001c9 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:48, Info CSI 000001ca [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:53, Info CSI 000001cc [SR] Verify complete
2013-12-23 18:11:53, Info CSI 000001cd [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:53, Info CSI 000001ce [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:54, Info CSI 000001d0 [SR] Verify complete
2013-12-23 18:11:54, Info CSI 000001d1 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:54, Info CSI 000001d2 [SR] Beginning Verify and Repair transaction
2013-12-23 18:11:57, Info CSI 000001d4 [SR] Verify complete
2013-12-23 18:11:57, Info CSI 000001d5 [SR] Verifying 100 (0x00000064) components
2013-12-23 18:11:57, Info CSI 000001d6 [SR] Beginning Verify and Repair transaction
2013-12-23 18:12:01, Info CSI 000001d8 [SR] Verify complete
2013-12-23 18:12:01, Info CSI 000001d9 [SR] Verifying 46 (0x0000002e) components
2013-12-23 18:12:01, Info CSI 000001da [SR] Beginning Verify and Repair transaction
2013-12-23 18:12:03, Info CSI 000001dc [SR] Verify complete
2013-12-23 18:12:03, Info CSI 000001dd [SR] Repairing 1 components
2013-12-23 18:12:03, Info CSI 000001de [SR] Beginning Verify and Repair transaction
2013-12-23 18:12:03, Info CSI 000001df [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 18:12:03, Info CSI 000001e0 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 18:12:03, Info CSI 000001e1 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 18:12:03, Info CSI 000001e3 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 18:12:03, Info CSI 000001e5 [SR] Repair complete
2013-12-23 18:12:03, Info CSI 000001e6 [SR] Committing transaction
2013-12-23 18:12:03, Info CSI 000001e7 [SR] Cannot commit interactively, there are boot critical components being repaired
2013-12-23 18:12:03, Info CSI 000001e8 [SR] Repairing 1 components
2013-12-23 18:12:03, Info CSI 000001e9 [SR] Beginning Verify and Repair transaction
2013-12-23 18:12:03, Info CSI 000001ea [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 18:12:03, Info CSI 000001eb [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 18:12:03, Info CSI 000001ec [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 18:12:03, Info CSI 000001ee [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 18:12:03, Info CSI 000001f0 [SR] Repair complete






Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 23/12/2013 6:16:54 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 23/12/2013 10:58:51 PM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The NETGEARGenieDaemon service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

Log: 'System' Date/Time: 23/12/2013 10:58:51 PM
Type: Error Category: 0
Event: 7009 Source: Service Control Manager
A timeout was reached (30000 milliseconds) while waiting for the NETGEARGenieDaemon service to connect.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 23/12/2013 10:57:34 PM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.







Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 23/12/2013 6:17:53 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 23/12/2013 10:58:59 PM
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

Log: 'Application' Date/Time: 23/12/2013 10:58:52 PM
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 23/12/2013 11:02:17 PM
Type: Warning Category: 3
Event: 3036 Source: Microsoft-Windows-Search
The content source <csc://{S-1-5-21-21828565-3005677120-1819634571-1001}/> cannot be accessed.

Context: Application, SystemIndex Catalog

Details:
The object was not found. (HRESULT : 0x80041201) (0x80041201)


Log: 'Application' Date/Time: 23/12/2013 10:57:01 PM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 2 user registry handles leaked from \Registry\User\S-1-5-21-21828565-3005677120-1819634571-1001:
Process 2948 (\Device\HarddiskVolume2\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe) has opened key \REGISTRY\USER\S-1-5-21-21828565-3005677120-1819634571-1001\Software\RealNetworks\RealJukebox\1.0\Preferences\WatchFolders
Process 2948 (\Device\HarddiskVolume2\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe) has opened key \REGISTRY\USER\S-1-5-21-21828565-3005677120-1819634571-1001\Software\RealNetworks\RealJukebox\1.0\Preferences\WatchFolders
  • 0

#12
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
It didn't like the vpcnfltr.sys file we found. I have a 32 bit Win 7 laptop around here somewhere that should have a good copy. Will dig it up.

It is complaining about NETGEARGenieDaemon service. I assume this has something to do with your wireless and may be related to the vpcnfltr.sys file. If you are not using the service (usually Windows does a better job of controlling the wireless than the proprietary software) you can turn it off: in the Search box, type: services.msc and hit Enter and the Services window should open. Find the NETGEAR ... service and right click on it and select Properties then change the Startup Type: to Disabled and OK. If you do use it then I would download a new copy from Netgear and uninstall the old, reboot and reinstall (remember to right click and Run As Admin)


For the
"NvStreamSvc" error we can just turn it off too. (See: http://www.overclock...se-getting-them ) Either from the services Menu or by copying the next two lines:


sc stop NvStreamSvc
sc config NvStreamSvc start= disabled

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter


For the Search Error:


Method 1:
You may run the fixit from the following link and check for the issue:
Fix Windows Desktop Search when it crashes or not showing results
http://support.micro...windows_search/
Method 2:
You may try rebuilding the index to see if it works:
Change advanced indexing options
http://windows.micro...ndexing-options


The Final error is from some of the Real player software. Perhaps there is a newer version which does not hang up the registry.
  • 0

#13
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts

For the
"NvStreamSvc" error we can just turn it off too. (See: http://www.overclock...se-getting-them ) Either from the services Menu or by copying the next two lines:


sc stop NvStreamSvc
sc config NvStreamSvc start= disabled

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Right click and Paste or Edit then Paste and the copied line should appear.
Hit Enter



For the Search Error:


Method 1:
You may run the fixit from the following link and check for the issue:
Fix Windows Desktop Search when it crashes or not showing results
http://support.micro...windows_search/
Method 2:
You may try rebuilding the index to see if it works:
Change advanced indexing options
http://windows.micro...ndexing-options


The Final error is from some of the Real player software. Perhaps there is a newer version which does not hang up the registry.

DONE



It is complaining about NETGEARGenieDaemon service. I assume this has something to do with your wireless and may be related to the vpcnfltr.sys file. If you are not using the service (usually Windows does a better job of controlling the wireless than the proprietary software) you can turn it off: in the Search box, type: services.msc and hit Enter and the Services window should open. Find the NETGEAR ... service and right click on it and select Properties then change the Startup Type: to Disabled and OK. If you do use it then I would download a new copy from Netgear and uninstall the old, reboot and reinstall (remember to right click and Run As Admin)


Downloaded newest Netgear driver, uninstalled older one and installed new one but now windows is not detecting my adapter now. Netgear has me load the install program and at a point it tells me to plug in the adapter, this is where it says it is not detecting it.

Adapter works on wife's computer just fine though. When I view Device manager, it says adapter is working properly. I have uninstalled and reinstalled the Netgear a couple of times with no positive luck. I have also tried the adapter in all 3 of the USB ports on my PC.
  • 0

#14
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,024 posts
  • MVP
Try a system restore back to just before you updated the wireless driver
  • 0

#15
Izzy1665

Izzy1665

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
I hope you Christmas was good. Now that my in-laws are gone, I can get back to this.

I did the system restore back to before the driver was updated, the restore attempt wouldn't work due to some missing file so I went back another point where I removed Skype per your instructions and it worked that time. I then tried updating the driver again and had the same "cannot detect adapter" issue so I have just uninstalled that driver altogether and am online via ethernet cable now.

With the Netgear driver issue and finally giving up and deleting it altogether, I cleared the logs and reran the sfc/scannow and here is the log.

2013-12-29 19:06:43, Info CSI 00000009 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:06:43, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2013-12-29 19:07:08, Info CSI 0000000c [SR] Verify complete
2013-12-29 19:07:08, Info CSI 0000000d [SR] Verifying 100 (0x00000064) components
2013-12-29 19:07:08, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2013-12-29 19:07:19, Info CSI 00000010 [SR] Verify complete
2013-12-29 19:07:20, Info CSI 00000011 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:07:20, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2013-12-29 19:07:33, Info CSI 00000014 [SR] Verify complete
2013-12-29 19:07:33, Info CSI 00000015 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:07:33, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2013-12-29 19:07:41, Info CSI 00000018 [SR] Verify complete
2013-12-29 19:07:42, Info CSI 00000019 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:07:42, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2013-12-29 19:07:45, Info CSI 0000001c [SR] Verify complete
2013-12-29 19:07:45, Info CSI 0000001d [SR] Verifying 100 (0x00000064) components
2013-12-29 19:07:45, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2013-12-29 19:07:49, Info CSI 00000020 [SR] Verify complete
2013-12-29 19:07:50, Info CSI 00000021 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:07:50, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2013-12-29 19:07:54, Info CSI 00000024 [SR] Verify complete
2013-12-29 19:07:55, Info CSI 00000025 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:07:55, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:03, Info CSI 00000028 [SR] Verify complete
2013-12-29 19:08:04, Info CSI 00000029 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:04, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:11, Info CSI 0000002c [SR] Verify complete
2013-12-29 19:08:12, Info CSI 0000002d [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:12, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:17, Info CSI 00000030 [SR] Verify complete
2013-12-29 19:08:18, Info CSI 00000031 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:18, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:23, Info CSI 00000034 [SR] Verify complete
2013-12-29 19:08:24, Info CSI 00000035 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:24, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:30, Info CSI 00000038 [SR] Verify complete
2013-12-29 19:08:30, Info CSI 00000039 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:30, Info CSI 0000003a [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:34, Info CSI 0000003c [SR] Verify complete
2013-12-29 19:08:34, Info CSI 0000003d [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:34, Info CSI 0000003e [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:36, Info CSI 00000040 [SR] Verify complete
2013-12-29 19:08:36, Info CSI 00000041 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:36, Info CSI 00000042 [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:41, Info CSI 00000044 [SR] Verify complete
2013-12-29 19:08:41, Info CSI 00000045 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:41, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:47, Info CSI 00000049 [SR] Verify complete
2013-12-29 19:08:47, Info CSI 0000004a [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:47, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:51, Info CSI 0000004f [SR] Verify complete
2013-12-29 19:08:52, Info CSI 00000050 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:52, Info CSI 00000051 [SR] Beginning Verify and Repair transaction
2013-12-29 19:08:55, Info CSI 00000054 [SR] Verify complete
2013-12-29 19:08:56, Info CSI 00000055 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:08:56, Info CSI 00000056 [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:00, Info CSI 0000005a [SR] Verify complete
2013-12-29 19:09:00, Info CSI 0000005b [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:00, Info CSI 0000005c [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:07, Info CSI 00000066 [SR] Verify complete
2013-12-29 19:09:07, Info CSI 00000067 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:07, Info CSI 00000068 [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:13, Info CSI 0000006a [SR] Verify complete
2013-12-29 19:09:13, Info CSI 0000006b [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:13, Info CSI 0000006c [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:18, Info CSI 0000006e [SR] Verify complete
2013-12-29 19:09:18, Info CSI 0000006f [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:18, Info CSI 00000070 [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:22, Info CSI 00000072 [SR] Verify complete
2013-12-29 19:09:23, Info CSI 00000073 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:23, Info CSI 00000074 [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:27, Info CSI 00000076 [SR] Verify complete
2013-12-29 19:09:27, Info CSI 00000077 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:27, Info CSI 00000078 [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:31, Info CSI 0000007a [SR] Verify complete
2013-12-29 19:09:32, Info CSI 0000007b [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:32, Info CSI 0000007c [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:36, Info CSI 0000007e [SR] Verify complete
2013-12-29 19:09:36, Info CSI 0000007f [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:36, Info CSI 00000080 [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:43, Info CSI 00000084 [SR] Verify complete
2013-12-29 19:09:44, Info CSI 00000085 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:44, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2013-12-29 19:09:51, Info CSI 00000088 [SR] Verify complete
2013-12-29 19:09:51, Info CSI 00000089 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:09:51, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:04, Info CSI 0000008c [SR] Verify complete
2013-12-29 19:10:04, Info CSI 0000008d [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:04, Info CSI 0000008e [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:15, Info CSI 00000090 [SR] Verify complete
2013-12-29 19:10:15, Info CSI 00000091 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:15, Info CSI 00000092 [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:19, Info CSI 00000094 [SR] Verify complete
2013-12-29 19:10:19, Info CSI 00000095 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:19, Info CSI 00000096 [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:21, Info CSI 00000098 [SR] Verify complete
2013-12-29 19:10:21, Info CSI 00000099 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:21, Info CSI 0000009a [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:23, Info CSI 0000009c [SR] Verify complete
2013-12-29 19:10:23, Info CSI 0000009d [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:23, Info CSI 0000009e [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:28, Info CSI 000000a4 [SR] Verify complete
2013-12-29 19:10:28, Info CSI 000000a5 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:28, Info CSI 000000a6 [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:34, Info CSI 000000c0 [SR] Verify complete
2013-12-29 19:10:34, Info CSI 000000c1 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:34, Info CSI 000000c2 [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:37, Info CSI 000000c4 [SR] Verify complete
2013-12-29 19:10:37, Info CSI 000000c5 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:37, Info CSI 000000c6 [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:41, Info CSI 000000c8 [SR] Verify complete
2013-12-29 19:10:41, Info CSI 000000c9 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:41, Info CSI 000000ca [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:44, Info CSI 000000cc [SR] Verify complete
2013-12-29 19:10:44, Info CSI 000000cd [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:44, Info CSI 000000ce [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:50, Info CSI 000000d0 [SR] Verify complete
2013-12-29 19:10:50, Info CSI 000000d1 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:50, Info CSI 000000d2 [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:56, Info CSI 000000d5 [SR] Verify complete
2013-12-29 19:10:57, Info CSI 000000d6 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:57, Info CSI 000000d7 [SR] Beginning Verify and Repair transaction
2013-12-29 19:10:59, Info CSI 000000d9 [SR] Verify complete
2013-12-29 19:10:59, Info CSI 000000da [SR] Verifying 100 (0x00000064) components
2013-12-29 19:10:59, Info CSI 000000db [SR] Beginning Verify and Repair transaction
2013-12-29 19:11:02, Info CSI 000000dd [SR] Verify complete
2013-12-29 19:11:03, Info CSI 000000de [SR] Verifying 100 (0x00000064) components
2013-12-29 19:11:03, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2013-12-29 19:11:10, Info CSI 000000e1 [SR] Verify complete
2013-12-29 19:11:10, Info CSI 000000e2 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:11:10, Info CSI 000000e3 [SR] Beginning Verify and Repair transaction
2013-12-29 19:11:16, Info CSI 000000e5 [SR] Verify complete
2013-12-29 19:11:16, Info CSI 000000e6 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:11:16, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2013-12-29 19:11:22, Info CSI 000000e9 [SR] Verify complete
2013-12-29 19:11:22, Info CSI 000000ea [SR] Verifying 100 (0x00000064) components
2013-12-29 19:11:22, Info CSI 000000eb [SR] Beginning Verify and Repair transaction
2013-12-29 19:11:30, Info CSI 000000fd [SR] Verify complete
2013-12-29 19:11:31, Info CSI 000000fe [SR] Verifying 100 (0x00000064) components
2013-12-29 19:11:31, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2013-12-29 19:11:36, Info CSI 00000115 [SR] Verify complete
2013-12-29 19:11:37, Info CSI 00000116 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:11:37, Info CSI 00000117 [SR] Beginning Verify and Repair transaction
2013-12-29 19:11:46, Info CSI 00000119 [SR] Verify complete
2013-12-29 19:11:46, Info CSI 0000011a [SR] Verifying 100 (0x00000064) components
2013-12-29 19:11:46, Info CSI 0000011b [SR] Beginning Verify and Repair transaction
2013-12-29 19:12:08, Info CSI 0000011d [SR] Verify complete
2013-12-29 19:12:08, Info CSI 0000011e [SR] Verifying 100 (0x00000064) components
2013-12-29 19:12:08, Info CSI 0000011f [SR] Beginning Verify and Repair transaction
2013-12-29 19:12:20, Info CSI 00000122 [SR] Verify complete
2013-12-29 19:12:20, Info CSI 00000123 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:12:20, Info CSI 00000124 [SR] Beginning Verify and Repair transaction
2013-12-29 19:12:28, Info CSI 00000126 [SR] Verify complete
2013-12-29 19:12:28, Info CSI 00000127 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:12:28, Info CSI 00000128 [SR] Beginning Verify and Repair transaction
2013-12-29 19:12:33, Info CSI 0000012a [SR] Verify complete
2013-12-29 19:12:33, Info CSI 0000012b [SR] Verifying 100 (0x00000064) components
2013-12-29 19:12:33, Info CSI 0000012c [SR] Beginning Verify and Repair transaction
2013-12-29 19:12:38, Info CSI 0000012e [SR] Verify complete
2013-12-29 19:12:38, Info CSI 0000012f [SR] Verifying 100 (0x00000064) components
2013-12-29 19:12:38, Info CSI 00000130 [SR] Beginning Verify and Repair transaction
2013-12-29 19:12:43, Info CSI 00000132 [SR] Verify complete
2013-12-29 19:12:43, Info CSI 00000133 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:12:43, Info CSI 00000134 [SR] Beginning Verify and Repair transaction
2013-12-29 19:12:48, Info CSI 00000137 [SR] Verify complete
2013-12-29 19:12:48, Info CSI 00000138 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:12:48, Info CSI 00000139 [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:00, Info CSI 0000013b [SR] Verify complete
2013-12-29 19:13:00, Info CSI 0000013c [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:00, Info CSI 0000013d [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:06, Info CSI 00000140 [SR] Verify complete
2013-12-29 19:13:06, Info CSI 00000141 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:06, Info CSI 00000142 [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:13, Info CSI 00000144 [SR] Verify complete
2013-12-29 19:13:13, Info CSI 00000145 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:13, Info CSI 00000146 [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:18, Info CSI 00000148 [SR] Verify complete
2013-12-29 19:13:18, Info CSI 00000149 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:18, Info CSI 0000014a [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:25, Info CSI 0000014d [SR] Verify complete
2013-12-29 19:13:26, Info CSI 0000014e [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:26, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:32, Info CSI 00000151 [SR] Verify complete
2013-12-29 19:13:32, Info CSI 00000152 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:32, Info CSI 00000153 [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:37, Info CSI 00000155 [SR] Verify complete
2013-12-29 19:13:37, Info CSI 00000156 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:37, Info CSI 00000157 [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:43, Info CSI 00000159 [SR] Verify complete
2013-12-29 19:13:43, Info CSI 0000015a [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:43, Info CSI 0000015b [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:48, Info CSI 0000015e [SR] Verify complete
2013-12-29 19:13:48, Info CSI 0000015f [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:48, Info CSI 00000160 [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:55, Info CSI 00000162 [SR] Verify complete
2013-12-29 19:13:55, Info CSI 00000163 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:55, Info CSI 00000164 [SR] Beginning Verify and Repair transaction
2013-12-29 19:13:58, Info CSI 00000166 [SR] Verify complete
2013-12-29 19:13:58, Info CSI 00000167 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:13:58, Info CSI 00000168 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:03, Info CSI 0000016a [SR] Verify complete
2013-12-29 19:14:03, Info CSI 0000016b [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:03, Info CSI 0000016c [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:07, Info CSI 0000016e [SR] Verify complete
2013-12-29 19:14:07, Info CSI 0000016f [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:07, Info CSI 00000170 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:10, Info CSI 00000172 [SR] Verify complete
2013-12-29 19:14:10, Info CSI 00000173 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:10, Info CSI 00000174 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:14, Info CSI 00000175 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-29 19:14:14, Info CSI 00000176 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-29 19:14:14, Info CSI 00000177 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-29 19:14:14, Info CSI 00000178 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-29 19:14:15, Info CSI 0000017a [SR] Verify complete
2013-12-29 19:14:15, Info CSI 0000017b [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:15, Info CSI 0000017c [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:20, Info CSI 0000017f [SR] Verify complete
2013-12-29 19:14:20, Info CSI 00000180 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:20, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:26, Info CSI 00000183 [SR] Verify complete
2013-12-29 19:14:26, Info CSI 00000184 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:26, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:31, Info CSI 00000187 [SR] Verify complete
2013-12-29 19:14:31, Info CSI 00000188 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:31, Info CSI 00000189 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:38, Info CSI 0000018b [SR] Verify complete
2013-12-29 19:14:39, Info CSI 0000018c [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:39, Info CSI 0000018d [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:49, Info CSI 0000018f [SR] Verify complete
2013-12-29 19:14:49, Info CSI 00000190 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:49, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:53, Info CSI 00000193 [SR] Verify complete
2013-12-29 19:14:53, Info CSI 00000194 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:53, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2013-12-29 19:14:57, Info CSI 00000197 [SR] Verify complete
2013-12-29 19:14:57, Info CSI 00000198 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:14:57, Info CSI 00000199 [SR] Beginning Verify and Repair transaction
2013-12-29 19:15:02, Info CSI 0000019b [SR] Verify complete
2013-12-29 19:15:02, Info CSI 0000019c [SR] Verifying 100 (0x00000064) components
2013-12-29 19:15:02, Info CSI 0000019d [SR] Beginning Verify and Repair transaction
2013-12-29 19:15:07, Info CSI 0000019f [SR] Verify complete
2013-12-29 19:15:07, Info CSI 000001a0 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:15:07, Info CSI 000001a1 [SR] Beginning Verify and Repair transaction
2013-12-29 19:15:11, Info CSI 000001a3 [SR] Verify complete
2013-12-29 19:15:11, Info CSI 000001a4 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:15:11, Info CSI 000001a5 [SR] Beginning Verify and Repair transaction
2013-12-29 19:15:15, Info CSI 000001a7 [SR] Verify complete
2013-12-29 19:15:15, Info CSI 000001a8 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:15:15, Info CSI 000001a9 [SR] Beginning Verify and Repair transaction
2013-12-29 19:15:24, Info CSI 000001ab [SR] Verify complete
2013-12-29 19:15:24, Info CSI 000001ac [SR] Verifying 100 (0x00000064) components
2013-12-29 19:15:24, Info CSI 000001ad [SR] Beginning Verify and Repair transaction
2013-12-29 19:15:50, Info CSI 000001af [SR] Verify complete
2013-12-29 19:15:51, Info CSI 000001b0 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:15:51, Info CSI 000001b1 [SR] Beginning Verify and Repair transaction
2013-12-29 19:15:58, Info CSI 000001b3 [SR] Verify complete
2013-12-29 19:15:59, Info CSI 000001b4 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:15:59, Info CSI 000001b5 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:06, Info CSI 000001b7 [SR] Verify complete
2013-12-29 19:16:07, Info CSI 000001b8 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:07, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:09, Info CSI 000001bb [SR] Verify complete
2013-12-29 19:16:10, Info CSI 000001bc [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:10, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:14, Info CSI 000001bf [SR] Verify complete
2013-12-29 19:16:14, Info CSI 000001c0 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:14, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:17, Info CSI 000001c3 [SR] Verify complete
2013-12-29 19:16:17, Info CSI 000001c4 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:17, Info CSI 000001c5 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:21, Info CSI 000001c7 [SR] Verify complete
2013-12-29 19:16:21, Info CSI 000001c8 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:21, Info CSI 000001c9 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:26, Info CSI 000001cb [SR] Verify complete
2013-12-29 19:16:26, Info CSI 000001cc [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:26, Info CSI 000001cd [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:27, Info CSI 000001cf [SR] Verify complete
2013-12-29 19:16:27, Info CSI 000001d0 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:27, Info CSI 000001d1 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:30, Info CSI 000001d3 [SR] Verify complete
2013-12-29 19:16:30, Info CSI 000001d4 [SR] Verifying 100 (0x00000064) components
2013-12-29 19:16:30, Info CSI 000001d5 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:34, Info CSI 000001d7 [SR] Verify complete
2013-12-29 19:16:34, Info CSI 000001d8 [SR] Verifying 46 (0x0000002e) components
2013-12-29 19:16:34, Info CSI 000001d9 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:37, Info CSI 000001db [SR] Verify complete
2013-12-29 19:16:37, Info CSI 000001dc [SR] Repairing 1 components
2013-12-29 19:16:37, Info CSI 000001dd [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:37, Info CSI 000001de [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-29 19:16:37, Info CSI 000001df [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-29 19:16:37, Info CSI 000001e0 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-29 19:16:37, Info CSI 000001e1 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-29 19:16:37, Info CSI 000001e3 [SR] Repair complete
2013-12-29 19:16:37, Info CSI 000001e4 [SR] Committing transaction
2013-12-29 19:16:37, Info CSI 000001e5 [SR] Cannot commit interactively, there are boot critical components being repaired
2013-12-29 19:16:37, Info CSI 000001e6 [SR] Repairing 1 components
2013-12-29 19:16:37, Info CSI 000001e7 [SR] Beginning Verify and Repair transaction
2013-12-29 19:16:37, Info CSI 000001e8 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-29 19:16:37, Info CSI 000001e9 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-29 19:16:37, Info CSI 000001ea [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-29 19:16:37, Info CSI 000001eb [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-29 19:16:37, Info CSI 000001ed [SR] Repair complete
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP