Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Corrupted Windows Uninstaller

Started by Kristina , May 15 2014 10:04 AM

  • This topic is locked This topic is locked

#31
Pyxis
Posted 04 September 2014 - 08:44 AM

Pyxis

    Trusted Helper

  • Malware Removal
  • 1,228 posts
Hi Kristina,
 
I apologize for the delay--personal matters came up.
 

Now however I got again a notification to turn on Avira desktop (this had disappeared after the previous fixes in the beginning of the thread)


It sometimes happens when your anti-virus is performing a huge update. If it still occurs to date, please let me know. As far as your logs are concerned, we have removed all traces of what should not be there. Let's have a deeper look.
  • Step 1

    If you haven't already, download 'Farbar Recovery Scan Tool by Farbar' and save it to your desktop.
    • Simply double-click the program icon to run it. It will ask for administrator privileges.
    • The program will initialize. Press Yes to accept the disclaimer.
    • Put a check on Addition.
    • Press the Scan button after.
    • It will produce FRST.txt and Addition.txt on your desktop once done.
    • Copy (CTRL + A and CTRL + C) and paste (CTRL + V) the content of the logs in your next reply.
  • Logs to Post

    In summary of the above, I will need you to post the following log(s):
    • Addition.txt (Farbar Recovery Scan Tool)
    • FRST.txt (Farbar Recovery Scan Tool)

  • 0

Advertisements

#32
Kristina
Posted 04 September 2014 - 09:09 AM

Kristina

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 319 posts

Thank you for your help!

 

Indeed, the Avira notification only came once, now it seems ok. The startup remains the same. Here are the two logs:

 

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 03-09-2014
Ran by Adina at 2014-09-04 18:05:25
Running from C:\Users\Adina\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
 Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.31395 - BitTorrent Inc.)
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
ABBYY FineReader 11 Corporate Edition (HKLM\...\{F1100000-0010-0000-0000-074957833700}) (Version: 11.0.460 - ABBYY)
AC3Filter 1.63b (HKLM\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
ACDSee 4.0 PowerPack Suite (HKLM\...\{92E64C51-5096-442F-9A44-61CB2941391D}) (Version: 4.00.0000 - ACD Systems Ltd)
ACDSee Pro 6 (HKLM\...\{D40B2C78-30CA-4A8F-A157-C86B491C73AF}) (Version: 6.0.169 - ACD Systems International Inc.)
Adobe Digital Editions 2.0 (HKLM\...\Adobe Digital Editions 2.0) (Version: 2.0 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06)  MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Adobe® Photoshop® Album Starter Edition 3.2 (HKLM\...\Adobe® Photoshop® Album Starter Edition 3.2) (Version: 3.2.0 - http://www.adobe.com)
Adobe® Photoshop® Album Starter Edition 3.2 (Version: 3.2.0 - Adobe Systems, Inc.) Hidden
AIMP3 (HKLM\...\AIMP3) (Version: v3.55.1355, 14.07.2014 - AIMP DevTeam)
Angry Birds (HKLM\...\{01509AB1-84BB-4AB9-A142-38AFA0BBDA25}) (Version: 4.0.0 - Rovio Entertainment Ltd.)
Angry Birds Seasons (HKLM\...\{C8736F91-44EF-4E78-8215-8E1A2401F6F4}) (Version: 3.3.0 - Rovio Entertainment Ltd.)
AutoCorect 4.1.5 (HKLM\...\AutoCorect stil contemporan_is1) (Version:  - Cosmin Ciupercă & Dan Morlova)
Avira (HKLM\...\{e67154a7-9cc5-4167-b782-f3982bc6c70d}) (Version: 1.1.19.30000 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.19.30000 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira)
Battle.net (HKLM\...\Battle.net) (Version:  - Blizzard Entertainment)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.67.1076 - AB Team, d.o.o.)
Canon MP Navigator 3.0 (HKLM\...\MP Navigator 3.0) (Version:  - )
Canon MP460 (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP460) (Version:  - )
Catan: Creator's Edition (HKLM\...\Catan: Creator's Edition_is1) (Version: 1.0.0.0 - United Soft Media)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Clive Barker's Undying™ (HKLM\...\{631A0B87-B0B7-4B47-00A2-119A4B942EB6}) (Version:  - )
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.33 - Dropbox, Inc.)
Extended Asian Language font pack for Adobe Reader XI (HKLM\...\{AC76BA86-7AD7-2530-0000-A00000000004}) (Version: 11.0.0 - Adobe Systems Incorporated)
Fallout New Vegas (HKLM\...\Fallout New Vegas_is1) (Version:  - )
FileHippo.com Update Checker (HKLM\...\FileHippo.com) (Version:  - )
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
GeoGebra 4.2 (HKLM\...\GeoGebra 4.2) (Version: 4.2.5.0 - International GeoGebra Institute)
Google Book Downloader (HKLM\...\{6BFDC0CD-ADF5-49F6-8A47-3177EF2AE6D2}) (Version: 0.6.9 - adma)
Google Books Downloader version 1.6 (HKLM\...\{216729B6-014A-F413-814F-F17F74FBA113}_is1) (Version: 1.6 - GBOOKSDOWNLOADER.COM)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Haali Media Splitter (HKLM\...\HaaliMkx) (Version:  - )
Hearthstone (HKLM\...\Hearthstone) (Version:  - Blizzard Entertainment)
Image Compressor 2008 Free Edition (HKLM\...\{BCB74778-4397-4335-8455-A75ACE919510}) (Version: 6.8.0.0 - MasRizal & Partners)
Image Optimizer 3.0 (HKLM\...\{07EA4E9F-BD35-4F38-9809-D825B772B833}) (Version: 3.0 - Geeks Ltd)
Intel® Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2993 - Intel Corporation)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 11 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218011FF}) (Version: 8.0.110 - Oracle Corporation)
Java 8 Update 20 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218020F0}) (Version: 8.0.200 - Oracle Corporation)
Java Auto Updater (Version: 2.8.20.26 - Oracle Corporation) Hidden
Mathematica Extras 9.0 (4092550) (HKLM\...\A-WIN-Extras 9.0.1 4092550_is1) (Version: 9.0.1 - Wolfram Research, Inc.)
MathType 6 (HKLM\...\DSMT6) (Version: 6.7 - Design Science, Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2003 Proofing Tools (HKLM\...\{901F0409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 31.0 (x86 en-US) (HKLM\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mp3tag v2.54 (HKLM\...\Mp3tag) (Version: v2.54 - Florian Heidenreich)
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.2.2 - )
NVIDIA PhysX (HKLM\...\{5DB65884-C963-4454-AABA-4CA3089281FA}) (Version: 9.09.0720 - NVIDIA Corporation)
PC Connectivity Solution (HKLM\...\{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}) (Version: 8.47.7.0 - Nokia)
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.8 - Google, Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7183 - Realtek Semiconductor Corp.)
SAMSUNG Dr.Printer  (HKLM\...\{0DB87EAC-F695-4D59-9609-C93119AE6B35}) (Version: 1.00.0000 - Samsung)
Samsung ML-1640 Series (HKLM\...\Samsung ML-1640 Series) (Version:  - Samsung Electronics CO.,LTD)
Samsung PC Studio 7 (HKLM\...\Samsung PC Studio 7) (Version: 7.2.24.9 - Samsung)
Samsung PC Studio 7 (Version: 7.2.24.9 - Samsung) Hidden
SamsungConnectivityCableDriver (HKLM\...\{7E84FAC8-C518-40F9-9807-7455301D6D25}) (Version: 6.83.6.2.1 - Samsung)
SeaTools for Windows (HKLM\...\{98613C99-1399-416C-A07C-1EE1C585D872}) (Version: 1.2.0.7 - Seagate Technology)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.16 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
SpywareBlaster 5.0 (HKLM\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 6 (HKLM\...\TeamViewer 6) (Version: 6.0.10511 - TeamViewer GmbH)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B2260BC9-D561-46EE-B33D-739CF760A2A9}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Xvid Video Codec (HKLM\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
YTD Video Downloader 4.8.4 (HKLM\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.4 - GreenTree Applications SRL)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Adina\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{01CE0264-9B12-19F4-FF5E-F2986F822D3B}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{2228B5E8-1708-096F-DA1C-9DEC319C0CB7}\InprocServer32 -> C:\Windows\system32\windowscodecs.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{2FBDE67D-03CD-685D-810B-DCD303FE9778}\InprocServer32 -> C:\Windows\system32\windowscodecs.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{71CBC383-3431-D9AA-F516-CE93F8504CA3}\InprocServer32 -> C:\Windows\system32\windowscodecs.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{A9C3E504-32AB-1470-E638-35D8A871A37C}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{B2C04A9F-0E76-9D41-9657-160C2CFB375F}\InprocServer32 -> C:\Windows\system32\windowscodecs.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-747581154-1102267190-2633786192-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
 
==================== Restore Points  =========================
 
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-07 18:57 - 2014-08-28 10:45 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {2C59ECAF-3A27-4640-9F4B-519B05BDD70F} - \Microsoft\Windows\MUI\LPRemove No Task File <==== ATTENTION
Task: {383C0824-B0B2-4A93-B591-8DE3018EDA90} - System32\Tasks\{6F857E3C-F662-47AC-B15F-0F85DC725628} => C:\Program Files\Skype\Phone\Skype.exe [2014-05-08] (Skype Technologies S.A.)
Task: {3D17552A-0560-4344-A7DC-2CF6B0519E0A} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6b7df7503398 => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-11] (Google Inc.)
Task: {56E6B0C6-6A8E-43B8-AE09-B771292DF5C4} - \IJITECL No Task File <==== ATTENTION
Task: {75DE5D0C-102E-4ADE-883B-FEBB735C9139} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-11] (Google Inc.)
Task: {7DFC1119-8DEF-4D46-AE02-8C8F1CD164D9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {B39931D5-49B8-48D9-A3F2-653634A61257} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-09-11] (Google Inc.)
Task: {B853243D-B549-4618-925D-62B9A35A147E} - System32\Tasks\AdobeAAMUpdater-1.0-Adina-PC-Adina => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {E9242EA9-0516-405D-92F7-10785F7EB58E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-27] (Adobe Systems Incorporated)
Task: {F238EBB5-37FD-4CD5-BE84-2074F45A1A74} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-30] (Oracle Corporation)
Task: {F67E4213-6D99-45A1-9CF9-71A49FB91C85} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf6b7df7503398.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RunAsStdUser Task.job => C:\Program Files\iWin Games\iWinGames.exe
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
 
==================== Loaded Modules (whitelisted) =============
 
2010-12-29 18:33 - 2008-01-11 07:17 - 00022723 _____ () C:\Windows\System32\ssp2ml3.dll
2012-07-20 21:08 - 2012-07-20 21:08 - 08186368 _____ () C:\xampp\mysql\bin\mysqld.exe
2014-08-04 14:20 - 2014-08-04 14:20 - 00139056 _____ () C:\Program Files\Avira\My Avira\Avira.OE.NativeCore.dll
2014-08-04 14:20 - 2014-08-04 14:20 - 00067832 _____ () C:\Program Files\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2008-12-06 01:41 - 2008-12-06 01:41 - 00619008 _____ () C:\Program Files\Samsung\Samsung PC Studio 7\phonebrowser.dll
2009-05-16 00:22 - 2009-05-16 00:22 - 00716800 _____ () C:\Program Files\Samsung\Samsung PC Studio 7\PCSCM_Samsung.dll
2012-06-18 18:24 - 2012-06-18 18:24 - 00260096 _____ () C:\Program Files\Notepad++\NppShell_05.dll
2014-03-07 01:16 - 2014-08-04 14:20 - 00052472 _____ () C:\Users\Adina\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
2010-12-29 17:59 - 2012-05-25 04:25 - 00921600 _____ () C:\Program Files\Yahoo!\Messenger\yui.dll
2010-12-30 01:43 - 2012-05-25 04:25 - 00078336 _____ () C:\Program Files\Yahoo!\Messenger\pcre.dll
2014-09-04 17:50 - 2014-08-30 05:49 - 01098056 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\libglesv2.dll
2014-09-04 17:50 - 2014-08-30 05:49 - 00174408 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\libegl.dll
2014-09-04 17:50 - 2014-08-30 05:49 - 08577864 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\pdf.dll
2014-09-04 17:50 - 2014-08-30 05:49 - 00331592 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll
2014-09-04 17:50 - 2014-08-30 05:49 - 01660232 _____ () C:\Program Files\Google\Chrome\Application\37.0.2062.103\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\Services: ABBYY.Licensing.FineReader.Professional.10.0 => 2
MSCONFIG\Services: ACDaemon => 2
MSCONFIG\Services: AdvancedSystemCareService5 => 2
MSCONFIG\Services: AdvancedSystemCareService6 => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: NitroReaderDriverReadSpool => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Adina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Adina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Smile Desktop.lnk => C:\Windows\pss\Smile Desktop.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Adina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Webshots Wallpaper & Screensaver.lnk => C:\Windows\pss\Webshots Wallpaper & Screensaver.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Adina^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Webshots.lnk => C:\Windows\pss\Webshots.lnk.Startup
MSCONFIG\startupreg: ACPW05EN => "c:\program files\acd systems\acdsee pro\5.0\acdseeprointouch2.exe" /pid acpw05en
MSCONFIG\startupreg: ACPW06EN => "C:\Program Files\ACD Systems\ACDSee Pro\6.0\ACDSeePro6InTouch2.exe" /pid ACPW06EN
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Photo Downloader => "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Advanced SystemCare 6 => 
MSCONFIG\startupreg: Advanced SystemCare Ultimate => "C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe" /Auto
MSCONFIG\startupreg: ArcSoft Connection Service => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: FileHippo.com => "C:\Program Files\FileHippo.com\UpdateChecker.exe" /background
MSCONFIG\startupreg: GoogleChromeAutoLaunch_E3F547BBB24EEE87E4358AD8B726B125 => "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: IncrediMail => 
MSCONFIG\startupreg: IObit Malware Fighter => "C:\Program Files\IObit\IObit Malware Fighter\IMF.exe" /autostart
MSCONFIG\startupreg: Malwarebytes' Anti-Malware => "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
MSCONFIG\startupreg: Malwarebytes' Anti-Malware (reboot) => "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\PROGRA~1\Yahoo!\MESSEN~1\YahooMessenger.exe" -quiet
MSCONFIG\startupreg: Octoshape Streaming Services => "C:\Users\Adina\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
MSCONFIG\startupreg: S60 PC Suite Tray => "C:\Program Files\Samsung\Samsung PC Studio 7\PCSuite.exe" -onlytray
MSCONFIG\startupreg: Samsung PanelMgr => C:\Windows\Samsung\PanelMgr\ssmmgr.exe /autorun
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: uTorrent => "C:\Users\Adina\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: WinampAgent => "C:\Program Files\Winamp\winampa.exe"
MSCONFIG\startupreg: WinPatrol => C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
MSCONFIG\startupreg: Xvid => C:\Program Files\Xvid\CheckUpdate.exe
 
==================== Faulty Device Manager Devices =============
 
Name: Microsoft Teredo Tunneling Adapter
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (09/04/2014 11:22:46 AM) (Source: Apache Service) (EventID: 3299) (User: )
Description: The Apache service named  reported the following error:
>>> httpd.exe: Could not open configuration file C:/xampp/apache/conf/httpd.conf: The system cannot find the path specified.     .
 
Error: (09/04/2014 06:58:48 AM) (Source: Apache Service) (EventID: 3299) (User: )
Description: The Apache service named  reported the following error:
>>> httpd.exe: Could not open configuration file C:/xampp/apache/conf/httpd.conf: The system cannot find the path specified.     .
 
Error: (09/03/2014 03:58:05 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
 
Error: (09/03/2014 11:31:50 AM) (Source: Apache Service) (EventID: 3299) (User: )
Description: The Apache service named  reported the following error:
>>> httpd.exe: Could not open configuration file C:/xampp/apache/conf/httpd.conf: The system cannot find the path specified.     .
 
Error: (09/02/2014 10:15:47 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/02/2014 10:15:47 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.
 
Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/02/2014 10:15:47 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/02/2014 10:15:47 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
 
Error: (09/02/2014 10:15:46 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/02/2014 10:15:46 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: The Windows Search Service cannot load the property store information.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)
 
 
System errors:
=============
Error: (09/04/2014 11:25:22 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error: 
%%-2140993535
 
Error: (09/04/2014 11:25:22 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: 
%%-2140993535
 
Error: (09/04/2014 11:25:22 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error: 
%%-2140993535
 
Error: (09/04/2014 11:25:22 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: 
%%-2140993535
 
Error: (09/04/2014 11:25:22 AM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801
 
Error: (09/04/2014 11:25:22 AM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801
 
Error: (09/04/2014 11:25:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error: 
%%-2140993535
 
Error: (09/04/2014 11:25:11 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error: 
%%-2140993535
 
Error: (09/04/2014 11:25:11 AM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801
 
Error: (09/04/2014 11:25:05 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: The mysql service hung on starting.
 
 
Microsoft Office Sessions:
=========================
Error: (08/27/2014 10:03:31 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6700.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3544 seconds with 900 seconds of active time.  This session ended with a crash.
 
Error: (05/17/2014 11:53:30 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6695.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 6880 seconds with 3660 seconds of active time.  This session ended with a crash.
 
Error: (03/10/2014 01:03:04 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 14937 seconds with 3600 seconds of active time.  This session ended with a crash.
 
Error: (07/09/2013 07:29:29 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 90 seconds with 60 seconds of active time.  This session ended with a crash.
 
Error: (07/09/2013 07:27:50 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 342 seconds with 240 seconds of active time.  This session ended with a crash.
 
Error: (07/09/2013 07:22:00 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 18762 seconds with 8580 seconds of active time.  This session ended with a crash.
 
Error: (07/08/2013 02:51:39 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 71 seconds with 60 seconds of active time.  This session ended with a crash.
 
Error: (07/08/2013 02:50:19 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4870 seconds with 4500 seconds of active time.  This session ended with a crash.
 
Error: (06/13/2013 08:33:59 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 12709 seconds with 8160 seconds of active time.  This session ended with a crash.
 
Error: (01/10/2013 09:28:02 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 901 seconds with 900 seconds of active time.  This session ended with a crash.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i3 CPU 540 @ 3.07GHz
Percentage of memory in use: 46%
Total physical RAM: 3383.48 MB
Available physical RAM: 1808.69 MB
Total Pagefile: 4405.77 MB
Available Pagefile: 2416.13 MB
Total Virtual: 2047.88 MB
Available Virtual: 1902.42 MB
 
==================== Drives ================================
 
Drive c: (Windows7) (Fixed) (Total:97.56 GB) (Free:33.79 GB) NTFS
Drive d: (Media) (Fixed) (Total:368.1 GB) (Free:45.3 GB) NTFS
Drive e: (Filme) (Fixed) (Total:232.88 GB) (Free:173.79 GB) NTFS
Drive h: (Seagate) (Fixed) (Total:2794.51 GB) (Free:2383.62 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 232.9 GB) (Disk ID: 6B3001B9)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: E58DABCD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=368.1 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 2.
 
==================== End Of Log ============================
 
 
 
 
 
 
 
 
 
 
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-09-2014
Ran by Adina (administrator) on ADINA-PC on 04-09-2014 18:04:08
Running from C:\Users\Adina\Downloads
Platform: Microsoft Windows 7 Enterprise  Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
() C:\xampp\mysql\bin\mysqld.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Webshots.com) C:\Program Files\Webshots\3.1.5.7620\Webshots.scr
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
(ABBYY.) C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-06] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [161584 2014-08-04] (Avira Operations GmbH & Co. KG)
HKU\.DEFAULT\...\Run: [Samsung.PCSync] => C:\Program Files\Samsung\Samsung PC Studio 7\PcSync2.exe [1294336 2009-06-04] (Nokia)
HKU\S-1-5-21-747581154-1102267190-2633786192-1000\...\RunOnce: [Application Restart #1] => C:\Program Files\Google\Chrome\Application\chrome.exe [852808 2014-08-30] (Google Inc.)
Startup: C:\Users\Adina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Webshots.lnk
ShortcutTarget: Webshots.lnk -> C:\Program Files\Webshots\3.1.5.7620\Launcher.exe (Webshots.com)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Adina\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ro/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF0D104BBC56FCC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = ro-RO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL = 
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_20\bin\ssv.dll (Oracle Corporation)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_20\bin\jp2ssv.dll (Oracle Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
ShellExecuteHooks:  - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} -  No File [ ]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF ProfilePath: C:\Users\Adina\AppData\Roaming\Mozilla\Firefox\Profiles\lev0xhsv.default
FF NewTab: hxxp://www.google.com/firefox
FF SearchEngineOrder.1: Google
FF SearchEngineOrder.3: Bing 
FF Homepage: hxxp://www.google.ro
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.20.2 -> C:\Program Files\Java\jre1.8.0_20\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.20.2 -> C:\Program Files\Java\jre1.8.0_20\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @wolfram.com/Mathematica -> C:\Program Files\Common Files\Wolfram Research\Browser\9.0.1.4092550\npmathplugin.dll (Wolfram Research, Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdjvu.dll (Caminova, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Adina\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation)
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-23]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-23]
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.ro/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> 3EC7A963C9409EF23AA4A298668D6AF55F46B9CCC52CB8784F36EC5B7B897ECF
CHR DefaultSearchURL: Default -> C69F885F8AEFB777577BE1AD7B067839CF0D52D981283DD7AB341339FE9ACC30
CHR CustomProfile: C:\Users\Adina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YoWindow Weather) - C:\Users\Adina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fanogbnclpilemkifpjeglokomebpnef [2014-07-27]
CHR Extension: (AdBlock) - C:\Users\Adina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-10-02]
CHR Extension: (Google Wallet) - C:\Users\Adina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-27]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Adina\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-10-09]
CHR HKCU\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Adina\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx [2013-10-09]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 ABBYY.Licensing.FineReader.Corporate.11.0; C:\Program Files\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [818952 2011-12-22] (ABBYY)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-08-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-06] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1021520 2014-08-06] (Avira Operations GmbH & Co. KG)
S2 Apache2.4; C:\xampp\apache\bin\httpd.exe [22016 2012-08-18] (Apache Software Foundation) [File not signed]
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [149296 2014-08-04] (Avira Operations GmbH & Co. KG)
S2 FileZillaServer; C:\xampp\filezillaftp\filezillaserver.exe [632320 2012-05-11] (FileZilla Project) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
U2 mysql; C:\xampp\mysql\bin\mysqld.exe [8186368 2012-07-20] () [File not signed]
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [620544 2008-11-11] (Nokia.) [File not signed]
S4 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 adusbser; C:\Windows\System32\DRIVERS\adusbser.sys [106880 2009-11-06] (AnyDATA.NET INC.) [File not signed]
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [97648 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-05-09] (Avira Operations GmbH & Co. KG)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [49152 2004-10-18] (DeviceGuys, Inc.) [File not signed]
R3 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-14] (Disc Soft Ltd)
R1 ElRawDisk; C:\Windows\system32\drivers\rsdrv.sys [22312 2009-02-12] (EldoS Corporation)
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-07-29] (Initio Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-08-14] (Duplex Secure Ltd.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2014-05-09] (Avira GmbH)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2008-01-10] (Samsung Electronics) [File not signed]
R3 stdriver; C:\Windows\System32\DRIVERS\stdriverx86.sys [40344 2013-02-18] ()
U3 amf5xeg6; C:\Windows\system32\Drivers\amf5xeg6.sys [0 ] (Microsoft Corporation)
S3 gdrv; No ImagePath
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-04 18:04 - 2014-09-04 18:05 - 00013685 _____ () C:\Users\Adina\Downloads\FRST.txt
2014-09-04 18:03 - 2014-09-04 18:04 - 00000000 ____D () C:\FRST
2014-09-04 18:03 - 2014-09-04 18:03 - 01096704 _____ (Farbar) C:\Users\Adina\Downloads\FRST.exe
2014-09-03 17:48 - 2014-09-03 17:48 - 01512351 _____ () C:\Users\Adina\Desktop\dosar_Bereanu_prof5.rar
2014-09-03 17:19 - 2014-09-03 17:19 - 02646278 _____ () C:\Users\Adina\Downloads\Dosar Bereanu (1).zip
2014-09-03 16:55 - 2014-09-03 16:55 - 02646278 _____ () C:\Users\Adina\Downloads\Dosar Bereanu.zip
2014-09-03 16:53 - 2014-09-03 16:53 - 00294494 _____ () C:\Users\Adina\Downloads\Scrisori_recomandare_Bereanu.zip
2014-09-02 22:14 - 2014-09-04 11:22 - 00000224 _____ () C:\Windows\setupact.log
2014-09-02 22:14 - 2014-09-02 22:14 - 266890280 _____ () C:\Windows\MEMORY.DMP
2014-09-02 22:14 - 2014-09-02 22:14 - 00131072 _____ () C:\Windows\Minidump\090214-22245-01.dmp
2014-09-02 22:14 - 2014-09-02 22:14 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-02 13:32 - 2014-09-02 13:32 - 00000973 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-02 13:31 - 2014-09-02 13:31 - 04901352 _____ (Piriform Ltd) C:\Users\Adina\Downloads\ccsetup417.exe
2014-09-01 23:41 - 2014-09-01 23:41 - 00001026 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-09-01 23:41 - 2014-09-01 23:41 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-09-01 23:41 - 2014-09-01 23:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
2014-09-01 23:41 - 2014-09-01 23:41 - 00000000 ____D () C:\Program Files\YTD Video Downloader
2014-09-01 23:40 - 2014-09-01 23:40 - 13483368 _____ () C:\Users\Adina\Downloads\SetupYTD.exe
2014-08-28 11:05 - 2014-08-23 04:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 11:05 - 2014-08-23 03:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-28 10:43 - 2014-08-28 10:43 - 00601088 _____ (OldTimer Tools) C:\Users\Adina\Desktop\OTL (1).exe
2014-08-27 14:26 - 2014-05-14 19:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-27 14:26 - 2014-05-14 19:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-27 14:26 - 2014-05-14 19:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-27 14:26 - 2014-05-14 19:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-27 14:26 - 2014-05-14 19:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-27 14:26 - 2014-05-14 19:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-27 14:26 - 2014-05-14 19:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-27 14:26 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-27 14:26 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-25 20:48 - 2014-08-25 20:48 - 00000000 ____D () C:\Users\Adina\Desktop\Shortcuts
2014-08-24 21:08 - 2014-08-24 21:08 - 00067526 _____ () C:\Users\Adina\Downloads\Extras.Txt
2014-08-22 23:15 - 2014-08-22 23:15 - 03165825 _____ () C:\Users\Adina\Desktop\Dosar Joita.zip
2014-08-22 23:15 - 2014-08-22 23:15 - 02646278 _____ () C:\Users\Adina\Desktop\Dosar Bereanu.zip
2014-08-22 23:15 - 2014-08-22 23:15 - 00320016 _____ () C:\Users\Adina\Desktop\Scrisori_recomandare_Joita.rar
2014-08-20 14:47 - 2014-08-20 14:47 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-20 14:36 - 2014-08-20 14:37 - 33733032 _____ (Oracle Corporation) C:\Users\Adina\Downloads\jre-8u20-windows-i586.exe
2014-08-19 13:04 - 2014-09-02 13:32 - 00000000 ____D () C:\Users\Adina\AppData\Local\CrashDumps
2014-08-19 13:01 - 2014-08-19 13:01 - 00002836 _____ () C:\Windows\system32\SCOALA CENTRALA-simpozion - Shortcut ().lnk
2014-08-14 22:48 - 2014-08-19 17:29 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Adina\Documents\Catan
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Adina\AppData\Local\Chromium
2014-08-14 22:42 - 2014-08-14 22:42 - 00000000 ____D () C:\Users\Public\Documents\DAEMON Tools Images
2014-08-14 22:41 - 2014-08-14 22:41 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-08-14 22:31 - 2014-08-14 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-08-14 22:31 - 2014-08-14 22:31 - 00320120 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-08-14 22:30 - 2014-09-02 13:33 - 00000000 ____D () C:\Users\Adina\AppData\Roaming\DAEMON Tools Lite
2014-08-14 22:30 - 2014-08-14 22:41 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-08-14 22:29 - 2014-08-14 22:42 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-08-14 22:29 - 2014-08-14 22:29 - 13429504 _____ (Disc Soft Ltd) C:\Users\Adina\Downloads\DTLite4491-0356.exe
2014-08-14 03:03 - 2014-07-01 01:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 03:03 - 2014-06-06 09:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 03:03 - 2014-03-10 00:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 03:03 - 2014-03-10 00:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 23:10 - 2014-08-01 02:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-13 23:10 - 2014-07-25 16:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 23:10 - 2014-07-25 16:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 23:10 - 2014-07-25 16:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 23:10 - 2014-07-25 15:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 23:10 - 2014-07-25 15:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-13 23:10 - 2014-07-25 15:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-13 23:10 - 2014-07-25 15:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-13 23:10 - 2014-07-25 15:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 23:10 - 2014-07-25 15:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 23:10 - 2014-07-25 15:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-13 23:10 - 2014-07-25 15:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 23:10 - 2014-07-25 15:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 23:10 - 2014-07-25 15:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-13 23:10 - 2014-07-25 15:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-13 23:10 - 2014-07-25 15:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 23:10 - 2014-07-25 14:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 23:10 - 2014-07-25 14:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 23:10 - 2014-07-25 14:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 23:10 - 2014-07-25 14:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-13 23:10 - 2014-07-25 14:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 23:10 - 2014-07-25 14:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 23:10 - 2014-07-25 14:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 23:10 - 2014-07-25 14:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-13 23:10 - 2014-07-25 14:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 23:10 - 2014-07-25 14:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-13 23:10 - 2014-07-25 14:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 23:10 - 2014-07-25 13:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-13 23:10 - 2014-07-25 13:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 23:10 - 2014-07-25 13:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 23:10 - 2014-07-16 05:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 23:10 - 2014-07-14 04:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 23:10 - 2014-06-16 04:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 23:10 - 2014-06-16 04:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-13 23:10 - 2014-06-16 04:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-13 23:10 - 2014-06-03 12:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 23:10 - 2014-06-03 12:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 23:10 - 2014-06-03 12:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 23:10 - 2014-06-03 12:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 22:42 - 2014-08-12 22:42 - 00000000 ____D () C:\Users\Adina\AppData\Roaming\SUPERAntiSpyware.com
2014-08-12 22:41 - 2014-08-12 22:41 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-12 22:38 - 2014-08-12 22:38 - 07771936 _____ (AIMP DevTeam) C:\Users\Adina\Downloads\aimp_3.55.1355.exe
2014-08-12 22:37 - 2014-08-12 22:37 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-11 18:50 - 2014-08-12 22:37 - 00176552 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-11 18:50 - 2014-08-12 22:37 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-11 18:49 - 2014-08-11 18:50 - 00004121 _____ () C:\Windows\system32\jupdate-1.7.0_67-b01.log
2014-08-11 18:48 - 2014-08-11 18:48 - 00918440 _____ (Oracle Corporation) C:\Users\Adina\Downloads\chromeinstall-7u67.exe
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-09-04 18:05 - 2014-09-04 18:04 - 00013685 _____ () C:\Users\Adina\Downloads\FRST.txt
2014-09-04 18:04 - 2014-09-04 18:03 - 00000000 ____D () C:\FRST
2014-09-04 18:03 - 2014-09-04 18:03 - 01096704 _____ (Farbar) C:\Users\Adina\Downloads\FRST.exe
2014-09-04 17:50 - 2011-09-11 19:37 - 00000884 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-04 17:45 - 2013-11-02 00:12 - 00000000 ____D () C:\Users\Adina\AppData\Local\Battle.net
2014-09-04 17:25 - 2009-07-14 07:34 - 00022592 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-04 17:25 - 2009-07-14 07:34 - 00022592 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-04 17:14 - 2014-06-20 20:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-04 14:47 - 2014-05-09 14:58 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf6b7df7503398.job
2014-09-04 12:14 - 2012-11-09 18:41 - 01367967 _____ () C:\Windows\WindowsUpdate.log
2014-09-04 11:22 - 2014-09-02 22:14 - 00000224 _____ () C:\Windows\setupact.log
2014-09-04 11:22 - 2009-07-14 07:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-04 07:38 - 2014-05-14 14:26 - 03361280 ___SH () C:\Users\Adina\Desktop\Thumbs.db
2014-09-03 18:51 - 2014-07-27 14:06 - 00000000 ____D () C:\Users\Adina\AppData\Local\Adobe
2014-09-03 17:48 - 2014-09-03 17:48 - 01512351 _____ () C:\Users\Adina\Desktop\dosar_Bereanu_prof5.rar
2014-09-03 17:19 - 2014-09-03 17:19 - 02646278 _____ () C:\Users\Adina\Downloads\Dosar Bereanu (1).zip
2014-09-03 16:55 - 2014-09-03 16:55 - 02646278 _____ () C:\Users\Adina\Downloads\Dosar Bereanu.zip
2014-09-03 16:53 - 2014-09-03 16:53 - 00294494 _____ () C:\Users\Adina\Downloads\Scrisori_recomandare_Bereanu.zip
2014-09-03 11:32 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\tracing
2014-09-02 22:14 - 2014-09-02 22:14 - 266890280 _____ () C:\Windows\MEMORY.DMP
2014-09-02 22:14 - 2014-09-02 22:14 - 00131072 _____ () C:\Windows\Minidump\090214-22245-01.dmp
2014-09-02 22:14 - 2014-09-02 22:14 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-02 22:14 - 2011-03-03 23:07 - 00000000 ____D () C:\Windows\Minidump
2014-09-02 13:33 - 2014-08-14 22:30 - 00000000 ____D () C:\Users\Adina\AppData\Roaming\DAEMON Tools Lite
2014-09-02 13:33 - 2013-09-01 15:54 - 00000000 ____D () C:\Users\Adina\AppData\Roaming\uTorrent
2014-09-02 13:32 - 2014-09-02 13:32 - 00000973 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-02 13:32 - 2014-08-19 13:04 - 00000000 ____D () C:\Users\Adina\AppData\Local\CrashDumps
2014-09-02 13:32 - 2010-12-30 03:26 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-02 13:31 - 2014-09-02 13:31 - 04901352 _____ (Piriform Ltd) C:\Users\Adina\Downloads\ccsetup417.exe
2014-09-02 13:11 - 2012-11-08 00:09 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-02 13:11 - 2010-12-30 01:53 - 00000000 ____D () C:\Program Files\SpywareBlaster
2014-09-02 11:58 - 2010-12-13 22:29 - 01677484 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-01 23:41 - 2014-09-01 23:41 - 00001026 _____ () C:\Users\Public\Desktop\YTD Video Downloader.lnk
2014-09-01 23:41 - 2014-09-01 23:41 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
2014-09-01 23:41 - 2014-09-01 23:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
2014-09-01 23:41 - 2014-09-01 23:41 - 00000000 ____D () C:\Program Files\YTD Video Downloader
2014-09-01 23:40 - 2014-09-01 23:40 - 13483368 _____ () C:\Users\Adina\Downloads\SetupYTD.exe
2014-08-28 11:08 - 2009-07-14 07:33 - 03994664 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-28 10:43 - 2014-08-28 10:43 - 00601088 _____ (OldTimer Tools) C:\Users\Adina\Desktop\OTL (1).exe
2014-08-28 09:44 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-08-28 09:44 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-08-26 10:18 - 2013-08-22 00:22 - 00000000 ____D () C:\ProgramData\InstallMate
2014-08-26 10:17 - 2013-12-16 19:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-08-26 10:17 - 2010-12-30 01:50 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-08-25 20:48 - 2014-08-25 20:48 - 00000000 ____D () C:\Users\Adina\Desktop\Shortcuts
2014-08-24 21:08 - 2014-08-24 21:08 - 00067526 _____ () C:\Users\Adina\Downloads\Extras.Txt
2014-08-24 21:07 - 2014-05-15 18:59 - 00002628 _____ () C:\Users\Adina\Downloads\OTL.Txt
2014-08-23 04:46 - 2014-08-28 11:05 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 03:42 - 2014-08-28 11:05 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 23:15 - 2014-08-22 23:15 - 03165825 _____ () C:\Users\Adina\Desktop\Dosar Joita.zip
2014-08-22 23:15 - 2014-08-22 23:15 - 02646278 _____ () C:\Users\Adina\Desktop\Dosar Bereanu.zip
2014-08-22 23:15 - 2014-08-22 23:15 - 00320016 _____ () C:\Users\Adina\Desktop\Scrisori_recomandare_Joita.rar
2014-08-22 11:59 - 2013-11-02 00:12 - 00000000 ____D () C:\Program Files\Battle.net
2014-08-22 11:37 - 2011-12-07 14:04 - 00000000 ____D () C:\Windows\pss
2014-08-20 14:47 - 2014-08-20 14:47 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-20 14:42 - 2014-05-29 22:39 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-20 14:42 - 2013-09-12 23:08 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-20 14:42 - 2010-12-29 16:24 - 00000000 ____D () C:\Program Files\Java
2014-08-20 14:37 - 2014-08-20 14:36 - 33733032 _____ (Oracle Corporation) C:\Users\Adina\Downloads\jre-8u20-windows-i586.exe
2014-08-19 17:29 - 2014-08-14 22:48 - 00000000 ____D () C:\ProgramData\boost_interprocess
2014-08-19 13:21 - 2014-06-20 18:33 - 00000000 ____D () C:\Program Files\Hearthstone
2014-08-19 13:01 - 2014-08-19 13:01 - 00002836 _____ () C:\Windows\system32\SCOALA CENTRALA-simpozion - Shortcut ().lnk
2014-08-18 16:35 - 2014-06-01 22:38 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-18 16:35 - 2014-06-01 22:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-08-18 16:35 - 2013-08-08 12:58 - 00000000 ____D () C:\Program Files\Avira
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Adina\Documents\Catan
2014-08-14 22:48 - 2014-08-14 22:48 - 00000000 ____D () C:\Users\Adina\AppData\Local\Chromium
2014-08-14 22:42 - 2014-08-14 22:42 - 00000000 ____D () C:\Users\Public\Documents\DAEMON Tools Images
2014-08-14 22:42 - 2014-08-14 22:29 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-08-14 22:41 - 2014-08-14 22:41 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-08-14 22:41 - 2014-08-14 22:30 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-08-14 22:33 - 2014-08-14 22:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-08-14 22:31 - 2014-08-14 22:31 - 00320120 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-08-14 22:29 - 2014-08-14 22:29 - 13429504 _____ (Disc Soft Ltd) C:\Users\Adina\Downloads\DTLite4491-0356.exe
2014-08-14 03:11 - 2011-09-10 11:35 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-14 03:11 - 2009-07-14 05:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 03:10 - 2013-08-07 17:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 03:05 - 2010-12-13 22:35 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-12 22:42 - 2014-08-12 22:42 - 00000000 ____D () C:\Users\Adina\AppData\Roaming\SUPERAntiSpyware.com
2014-08-12 22:41 - 2014-08-12 22:41 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-08-12 22:39 - 2012-06-04 16:21 - 00000000 ____D () C:\Program Files\AIMP3
2014-08-12 22:38 - 2014-08-12 22:38 - 07771936 _____ (AIMP DevTeam) C:\Users\Adina\Downloads\aimp_3.55.1355.exe
2014-08-12 22:37 - 2014-08-12 22:37 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-12 22:37 - 2014-08-11 18:50 - 00176552 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-12 22:37 - 2014-08-11 18:50 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-11 18:50 - 2014-08-11 18:49 - 00004121 _____ () C:\Windows\system32\jupdate-1.7.0_67-b01.log
2014-08-11 18:48 - 2014-08-11 18:48 - 00918440 _____ (Oracle Corporation) C:\Users\Adina\Downloads\chromeinstall-7u67.exe
 
Some content of TEMP:
====================
C:\Users\Adina\AppData\Local\temp\avgnt.exe
C:\Users\Adina\AppData\Local\temp\System.Data.SQLite.dll
C:\Users\Adina\AppData\Local\temp\System.Data.SQLite37375.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-08-27 00:39
 
==================== End Of Log ============================
 
 

  • 0

#33
Pyxis
Posted 06 September 2014 - 10:17 AM

Pyxis

    Trusted Helper

  • Malware Removal
  • 1,228 posts
A slow computer does not mean there is malware present. I don't see anything in your log to indicate that your problem is malware-related. I will post the following information to get you started in the right direction, but if you need further help with this you will have to post a new topic in the proper forum, Operating Systems. I'm closing this topic.

Here are some routine maintenance practices that you should do on a regular basis to keep your machine running efficiently:

Disk cleanup:

The Elder Geek - Disk Cleanup Utility

Defragment your hard drive:

University of Birmingham - Defragmenting

Run check disk:

To use chkdsk, click Start and My Computer. Right-click the hard drive you want to check, and click Properties. Select the Tools tab and click Check Now. Check both boxes. Click Start. You'll get a message that the computer must be rebooted to run a complete check. Click Yes and reboot. chkdsk will take awhile, so run it when you don't need to use the computer for something else.

Remove unnecessary startup items:

This should be done through the System Configuration Utility. Go to Start > Run and type in msconfig. Click OK or hit the Enter key. Click on the Startup tab and remove the check by the items that you have determined are unnecessary. Click Apply then Close. You will be prompted to restart. Go ahead and restart.

Upon restart you will be confronted with a dialogue box warning about running in selective startup. Just ignore that message and put a check in the box by Don't show me this message or launch the System Configuration Utility when Windows starts and click OK. You will not be bothered by the message again.

Keep in mind that some entries will be re-enabled each time you use that particular program. Therefore, you will have to find the option in that program's preferences that says something like "load with windows" or "run when Windows starts" and disable that option.
 

Go here for information on msconfig:

Pacman's Portal

You can look up the startup items at the following links to help determine what is needed and what is not:

AnswersThatWork
Bleeping Computer


Since this issue appears to be resolved, this topic has been closed. Glad we could help. :)

If you're the topic starter, have followed the steps above, and still suspect you may be infected, please contact a staff member with the address of the thread to have it reopened.

Everyone else please begin a new topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP