Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer Crashes or Shuts Down without Warning

Started by periwinkle , Jun 30 2014 07:22 PM

  • Please log in to reply

#31
periwinkle
Posted 08 July 2014 - 05:51 AM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

I just found ilivid in my list of programs and features!!!  We removed that recently, but it's not gone and the uninstall button disappears when I try to uninstall it!  


  • 0

Advertisements

#32
zep516
Posted 08 July 2014 - 11:32 AM

zep516

    Trusted Helper

  • Malware Removal
  • 8,090 posts

Hello,

 

I just found ilivid in my list of programs and features!!!  We removed that recently, but it's not gone and the uninstall button disappears when I try to uninstall it!

 

OK. That may be an orphaned entry. As it was deleted here by AdwCleaner:

 

Key Deleted : HKCU\Software\ilivid
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\ilivid
Folder Deleted : C:\Users\Veronica\AppData\Local\Ilivid Player

 

Next

 

Lets get rid of the some of the things ESET found. We will use OTL for that file deletion.

 

 

  • Double click on the OTLicon.jpg to open the program. On Vista/Win7/Win8 right click select Run As Administrator to start the program. If prompted by UAC, please allow it.
  • Under the Custom Scans/Fixes box at the bottom, paste in the following 
    :COMMANDS

[CREATERESTOREPOINT]

:OTL
:Files

C:\Users\Veronica\Desktop\drivermax_7_34_cnet.exe

C:\Users\Veronica\Documents\debutsetup.exe

C:\Users\Veronica\Downloads\drivermax_7_34_cnet.exe

C:\Users\Veronica\Downloads\LimeWireWin.exe

C:\Users\Veronica\Downloads\m4a-to-mp3-converter.exe

C:\Users\Veronica\Program Files (x86)\FreemakeVideoConverterSetup.exe

C:\Users\Veronica\Program Files (x86)\FreeVideoFlipAndRotate.exe:Commands[emptytemp]
  • Make sure all other windows are closed.
  • Click the Run Fix button at the top
  • Let the program run uninterrupted. The computer should reboot when the scan is done. If not, please reboot the computer.
  • Post the log that is found in C:\_OTL\Moved Files in your next reply.
  • Open OTL again and click the Quick Scan button.

 

 

Then lets see if we find ilivid

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror#2

 

  • Double-click SystemLook.exe to run it.
  • Copy the content of the following codebox into the main textfield:
    :filefind
ilivid
:folderfind
ilivid
  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.

Note: The log can also be found on your Desktop entitled SystemLook.txt

 

 

 

1-Once again post the fix log

2-A new OTL after quick scan.

3-Systemlook.txt

 

Thanks

Joe :)


  • 0

#33
periwinkle
Posted 08 July 2014 - 11:45 AM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

MalwareBytes keeps informing me of malicious website protection for outbound "iesearch".  I don't even remember this one!


  • 0

#34
zep516
Posted 08 July 2014 - 11:51 AM

zep516

    Trusted Helper

  • Malware Removal
  • 8,090 posts

Maybe we will see it it the OTL log, when you finish the instructions given above in post 32, and it's possible we missed something along the way.


  • 0

#35
periwinkle
Posted 08 July 2014 - 07:30 PM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

OTL Log with Fix:

 

All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
========== FILES ==========
C:\Users\Veronica\Desktop\drivermax_7_34_cnet.exe moved successfully.
C:\Users\Veronica\Documents\debutsetup.exe moved successfully.
C:\Users\Veronica\Downloads\drivermax_7_34_cnet.exe moved successfully.
File\Folder C:\Users\Veronica\Downloads\LimeWireWin.exe not found.
C:\Users\Veronica\Downloads\m4a-to-mp3-converter.exe moved successfully.
C:\Users\Veronica\Program Files (x86)\FreemakeVideoConverterSetup.exe moved successfully.
File\Folder C:\Users\Veronica\Program Files (x86)\FreeVideoFlipAndRotate.exe:Commands[emptytemp] not found.
 
OTL by OldTimer - Version 3.2.69.0 log created on 07082014_173542
 
Files\Folders moved on Reboot...
 
PendingFileRenameOperations files...
 
Registry entries deleted on Reboot...
 
 
Here's the Quick Scan after the Reboot:
 
OTL logfile created on: 7/8/2014 5:51:25 PM - Run 10
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Veronica\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.75 Gb Total Physical Memory | 1.06 Gb Available Physical Memory | 28.15% Memory free
7.71 Gb Paging File | 4.44 Gb Available in Paging File | 57.66% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 580.72 Gb Total Space | 62.00 Gb Free Space | 10.68% Space Free | Partition Type: NTFS
Drive D: | 15.45 Gb Total Space | 7.90 Gb Free Space | 51.14% Space Free | Partition Type: NTFS
 
Computer Name: VERONICA-PC | User Name: Veronica | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Veronica\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions)
PRC - C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.15\GoogleCrashHandler.exe (Google Inc.)
PRC - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe ()
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
PRC - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
PRC - C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe (Alexander Nikiforov)
PRC - C:\Program Files (x86)\Webshots\Webshots.scr (Webshots.com)
PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
PRC - C:\Program Files (x86)\IOI\ButtonMonitor.exe ()
PRC - C:\Program Files (x86)\Google\Google Talk\googletalk.exe (Google)
PRC - C:\Windows\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
PRC - C:\Program Files (x86)\HDD Thermometer\HDD Thermometer.exe ()
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Program Files (x86)\Innovative Solutions\DriverMax\sync.dll ()
MOD - C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppgooglenaclpluginchrome.dll ()
MOD - C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
MOD - C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\d17ceca243fabda73eefb21d9bd072df\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f87e71868aedbc6c4e8fe7160d17c4ab\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d2b605fc7deda872727d1ed37710420e\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\8e6265a54260bddfc05951e764f5bc48\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\957628d9dd7b3bf370a56dca7835a997\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\694a37a84dee2cd2609a1dfab27c0433\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\IOI\ButtonMonitor.exe ()
MOD - C:\Program Files (x86)\HDD Thermometer\HDD Thermometer.exe ()
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - (LavasoftAdAwareService11) -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe ()
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV:64bit: - (XAudioService) -- C:\Windows\SysNative\DRIVERS\xaudio64.exe (Conexant Systems, Inc.)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (DragonUpdater) -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe ()
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (MBAMSwissArmy) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys (Malwarebytes Corporation)
DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\DRIVERS\atikmpag.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (MBAMWebAccessControl) -- C:\Windows\SysNative\drivers\mwac.sys (Malwarebytes Corporation)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (Trufos) -- C:\Windows\SysNative\DRIVERS\Trufos.sys (BitDefender S.R.L.)
DRV:64bit: - (gzflt) -- C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\gzflt.sys (BitDefender LLC)
DRV:64bit: - (ZCLDRV) -- C:\Windows\SysNative\DRIVERS\ZclDrv64.sys (TechnoScope Co., Ltd.)
DRV:64bit: - (amdide64) -- C:\Windows\SysNative\DRIVERS\amdide64.sys (Advanced Micro Devices Inc.)
DRV:64bit: - (yukonx64) -- C:\Windows\SysNative\DRIVERS\yk60x64.sys (Marvell)
DRV:64bit: - (amdkmafd) -- C:\Windows\SysNative\DRIVERS\amdkmafd.sys (Advanced Micro Devices, Inc.)
DRV:64bit: - (LPCFilter) -- C:\Windows\SysNative\DRIVERS\LPCFilter.sys (Windows ® Win 7 DDK provider)
DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW86.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (MxEFUF) -- C:\Windows\SysNative\DRIVERS\MxEFUF64.sys (Matrox Graphics Inc.)
DRV:64bit: - (74385989) -- C:\Windows\SysNative\DRIVERS\74385989.sys (Kaspersky Lab ZAO)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\Drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (RTL8187B) -- C:\Windows\SysNative\DRIVERS\RTL8187B.sys (Realtek Semiconductor Corporation                           )
DRV:64bit: - (WpdUsb) -- C:\Windows\SysNative\DRIVERS\wpdusb.sys (Microsoft Corporation)
DRV:64bit: - (R300) -- C:\Windows\SysNative\DRIVERS\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\DRIVERS\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\DRIVERS\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\Drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (BlackBox) -- C:\Windows\SysNative\blackbox.dll (Microsoft Corporation)
DRV:64bit: - (RTSTOR) -- C:\Windows\SysNative\drivers\RTSTOR64.SYS (Realtek Semiconductor Corp.)
DRV:64bit: - (mdmxsdk) -- C:\Windows\SysNative\DRIVERS\mdmxsdk.sys (Conexant)
DRV:64bit: - (RTHDMIAzAudService) -- C:\Windows\SysNative\drivers\RtHDMIVX.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\DRIVERS\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\DRIVERS\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (Pnp680) -- C:\Windows\SysNative\DRIVERS\pnp680.sys (Silicon Image, Inc)
DRV:64bit: - (PAC7302) -- C:\Windows\SysNative\DRIVERS\PAC7302.SYS (PixArt Imaging Inc.)
DRV:64bit: - (XAudio) -- C:\Windows\SysNative\DRIVERS\xaudio64.sys (Conexant Systems, Inc.)
DRV:64bit: - (HSF_DPV) -- C:\Windows\SysNative\DRIVERS\CAX_DPV.sys (Conexant Systems, Inc.)
DRV:64bit: - (CAXHWBS2) -- C:\Windows\SysNative\DRIVERS\CAXHWBS2.sys (Conexant Systems, Inc.)
DRV:64bit: - (winachsf) -- C:\Windows\SysNative\DRIVERS\CAX_CNXT.sys (Conexant Systems, Inc.)
DRV:64bit: - (AtiPcie) -- C:\Windows\SysNative\DRIVERS\AtiPcie.sys (ATI Technologies Inc.)
DRV:64bit: - (BCM43XV) -- C:\Windows\SysNative\DRIVERS\bcmwl664.sys (Broadcom Corporation)
DRV - (Normandy) -- C:\Windows\SysWow64\drivers\Normandy.sys ()
DRV - (BlackBox) -- C:\Windows\SysWow64\drivers\BlackBox.sys ()
DRV - (IDSvia64) -- C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20081023.002\IDSviA64.sys (Symantec Corporation)
DRV - (RTL8187B) -- C:\Windows\SysWOW64\drivers\rtl8187B.sys (Realtek Semiconductor Corporation                           )
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page = http://www.Google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Local Page Restore = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.gateway.c...ys=DTP&M=GT5694
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = {DAAF7918-570D-4407-A264-57D857AE91E9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{DAAF7918-570D-4407-A264-57D857AE91E9}: "URL" = http://www.google.co...ie7&rlz=1I7GWYE
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:30.0
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/06/19 17:20:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2014/07/06 03:30:36 | 000,000,000 | ---D | M]
 
[2010/04/30 22:16:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Veronica\AppData\Roaming\Mozilla\Extensions
[2010/04/30 22:16:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Veronica\AppData\Roaming\Mozilla\Extensions\[email protected]
[2014/07/07 03:36:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Veronica\AppData\Roaming\Mozilla\Firefox\Profiles\25qs7hd5.default-1404101501971\extensions
[2014/07/06 03:30:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2014/07/06 03:30:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/07/06 03:30:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2014/07/06 03:30:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014/07/06 03:30:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2014/07/06 03:31:05 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2011/04/06 07:40:00 | 000,182,936 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npMcAfeeSRPlgn.dll
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Widevine Content Decryption Module (Enabled) = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll
CHR - plugin: Microsoft® Windows Media Player Firefox Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.2 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: McAfeeScanAndRepair (Enabled) = C:\Users\Veronica\AppData\Local\Google\Chrome\Application\plugins\npMcAfeeSRPlgn.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Plus Web Player (Enabled) = C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Java Deployment Toolkit 7.0.550.13 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java™ Platform SE 7 U55 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nprpjplug.dll
CHR - plugin: Windows Live™ Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Renderer (Enabled) = C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npo1d.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: PasswordBox - Log in with 1-Click = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajgnnllmjadopdlmpplonojbfogkjlcl\1.34.1.3629_0\
CHR - Extension: Google Voice Search Hotword (Beta) = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5019_0\
CHR - Extension: YouTube = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.3_0\
CHR - Extension: Google Search = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.5_0\
CHR - Extension: Google Wallet = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2014/07/06 23:12:05 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1       localhost
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AdAwareTray] C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe ()
O4:64bit: - HKLM..\Run: [PAC7302_Monitor] C:\Windows\PixArt\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
O4 - HKLM..\Run: [ButtonMonitor] C:\Program Files (x86)\IOI\ButtonMonitor.exe ()
O4 - HKLM..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe (Google)
O4 - HKCU..\Run: [DriverMax] C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions)
O4 - HKCU..\Run: [DriverMax_RESTART] C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions)
O4 - HKCU..\Run: [MP3 Skype Recorder] C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe (Alexander Nikiforov)
O4 - HKCU..\Run: [RSD_HDDThermo] C:\Program Files (x86)\HDD Thermometer\HDD Thermometer.exe ()
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe File not found
O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Launcher] C:\Windows\SMINST\Launcher.exe (soft thinks)
O4 - Startup: C:\Users\Veronica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Webshots.lnk = C:\Program Files (x86)\Webshots\Launcher.exe (Webshots.com)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255
O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O1364bit: - gopher Prefix: missing
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...t/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {62789780-B744-11D0-986B-00609731A21D} http://www.maricopa....in/mgaxctrl.cab (Autodesk MapGuide ActiveX Control)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab (OnlineScanner Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.55.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.2.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4FBEC332-55DA-4912-8DF7-4AB47DEDE417}: DhcpNameServer = 192.168.0.1 205.171.2.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4FBEC332-55DA-4912-8DF7-4AB47DEDE417}: NameServer = 8.8.8.8,8.8.4.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FB6D127E-1638-46AA-BE60-19496E8DBAD3}: DhcpNameServer = 192.168.0.1 205.171.2.25
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Veronica\AppData\Roaming\Webshots\The Webshots Desktop\Webshots Wallpaper.bmp
O24 - Desktop BackupWallPaper: C:\Users\Veronica\AppData\Roaming\Webshots\The Webshots Desktop\Webshots Wallpaper.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/03/16 07:49:12 | 000,000,053 | -HS- | M] () - D:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/07/08 04:02:28 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Local\Adobe
[2014/07/07 20:16:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2014/07/07 18:02:20 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/07/07 18:01:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/07/07 18:00:54 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014/07/07 18:00:54 | 000,064,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014/07/07 18:00:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/07/07 17:29:26 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Local\ElevatedDiagnostics
[2014/07/07 17:26:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft ATS
[2014/07/07 00:56:05 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\SysWow64\sqlite3.dll
[2014/07/07 00:54:30 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/07/06 20:55:17 | 001,016,261 | ---- | C] (Thisisu) -- C:\Users\Veronica\Desktop\JRT.exe
[2014/07/06 20:51:31 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Roaming\Lavasoft
[2014/07/06 20:32:44 | 001,025,536 | ---- | C] (Farbar) -- C:\Users\Veronica\Desktop\ListParts64.exe
[2014/07/06 15:39:30 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Roaming\LavasoftStatistics
[2014/07/06 15:39:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus
[2014/07/06 15:37:32 | 000,000,000 | ---D | C] -- C:\Program Files\Lavasoft
[2014/07/06 15:36:34 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Local\adawarebp
[2014/07/06 15:36:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
[2014/07/06 12:40:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Lavasoft
[2014/07/06 03:38:54 | 000,000,000 | ---D | C] -- C:\_OTL
[2014/07/06 03:30:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2014/07/05 20:14:08 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014/07/05 20:10:55 | 002,162,992 | ---- | C] (Yamaha Corporation) -- C:\Windows\SysNative\YamahaAE.dll
[2014/07/05 20:10:54 | 002,101,848 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll
[2014/07/05 20:10:50 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2014/07/05 20:10:50 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2014/07/05 20:10:49 | 000,724,728 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll
[2014/07/05 20:10:49 | 000,246,008 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysNative\slprp64.dll
[2014/07/05 20:10:49 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2014/07/05 20:10:49 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2014/07/05 20:10:48 | 001,048,824 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\slcnt64.dll
[2014/07/05 20:10:48 | 000,889,592 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll
[2014/07/05 20:10:48 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2014/07/05 20:10:47 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2014/07/05 20:10:47 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2014/07/05 20:10:47 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2014/07/05 20:10:40 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2014/07/05 20:10:40 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2014/07/05 20:10:40 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2014/07/05 20:10:40 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2014/07/05 20:10:38 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2014/07/05 20:10:38 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2014/07/05 20:10:14 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2014/07/05 20:10:14 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2014/07/05 20:10:13 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2014/07/05 20:10:13 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2014/07/05 20:10:13 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2014/07/05 20:10:12 | 005,751,048 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll
[2014/07/05 20:10:12 | 000,942,384 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOSettingsIPC.dll
[2014/07/05 20:10:11 | 000,662,784 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2014/07/05 20:10:10 | 012,894,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO3064.dll
[2014/07/05 20:10:09 | 000,956,504 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll
[2014/07/05 20:10:08 | 003,959,384 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioVnN64.dll
[2014/07/05 20:10:08 | 001,313,904 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxSpeechAPO64.dll
[2014/07/05 20:10:06 | 028,343,384 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioVnA64.dll
[2014/07/05 20:10:00 | 014,863,448 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
[2014/07/05 20:09:58 | 001,934,424 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek264.dll
[2014/07/05 20:09:57 | 002,041,432 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
[2014/07/05 20:09:56 | 001,317,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO6064.dll
[2014/07/05 20:09:56 | 001,063,512 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2014/07/05 20:09:56 | 000,900,696 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysWow64\MaxxAudioAPOShell.dll
[2014/07/05 20:09:55 | 001,168,472 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll
[2014/07/05 20:09:55 | 001,136,728 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO4064.dll
[2014/07/05 20:09:55 | 000,663,296 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2014/07/05 20:09:55 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2014/07/05 20:09:55 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2014/07/05 20:09:54 | 000,291,488 | ---- | C] (ICEpower a/s) -- C:\Windows\SysNative\ICEsoundAPO64.dll
[2014/07/05 20:09:53 | 002,770,976 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2014/07/05 20:09:52 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2014/07/05 20:09:52 | 000,501,184 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
[2014/07/05 20:09:52 | 000,415,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
[2014/07/05 20:09:51 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2014/07/05 20:09:51 | 000,487,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
[2014/07/05 20:09:50 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2014/07/05 20:09:50 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2014/07/05 20:09:50 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2014/07/05 20:09:50 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2014/07/05 20:09:49 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2014/07/05 20:09:49 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2014/07/05 20:09:49 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2014/07/05 20:09:49 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2014/07/05 20:09:48 | 006,218,072 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64A.dll
[2014/07/05 20:09:48 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2014/07/05 20:09:48 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2014/07/05 20:09:47 | 000,315,736 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64A.dll
[2014/07/05 20:09:46 | 001,939,800 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64A.dll
[2014/07/05 20:09:46 | 000,261,464 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64.dll
[2014/07/05 20:09:44 | 000,113,576 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
[2014/07/04 18:39:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Veronica\Desktop\OTL.exe
[2014/07/03 01:57:17 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Roaming\spelling
[2014/07/03 01:56:56 | 000,000,000 | ---D | C] -- C:\Users\Veronica\.lawson
[2014/07/03 01:56:47 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Roaming\repository
[2014/07/02 22:34:48 | 000,031,024 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\Windows\SysNative\drivers\LPCFilter.sys
[2014/07/01 18:38:24 | 000,425,472 | ---- | C] (TechnoScope Co., Ltd.) -- C:\Windows\SysNative\Zcl64.dll
[2014/07/01 18:38:24 | 000,071,680 | ---- | C] (TechnoScope Co., Ltd.) -- C:\Windows\SysNative\drivers\ZCLDrv64.sys
[2014/07/01 18:38:24 | 000,042,496 | ---- | C] (TechnoScope Co., Ltd.) -- C:\Windows\SysNative\ZclDrv64.dll
[2014/07/01 18:38:24 | 000,036,352 | ---- | C] (TechnoScope Co., Ltd.) -- C:\Windows\SysWow64\ZclDrv.dll
[2014/07/01 18:38:23 | 000,393,216 | ---- | C] (TechnoScope Co., Ltd.) -- C:\Windows\SysWow64\Zcl.dll
[2014/07/01 18:38:23 | 000,040,960 | ---- | C] (TechnoScope) -- C:\Windows\SysWow64\Ccm.dll
[2014/07/01 07:34:19 | 000,390,112 | ---- | C] (Marvell) -- C:\Windows\SysNative\drivers\yk60x64.sys
[2014/06/30 23:47:21 | 000,000,000 | ---D | C] -- C:\Users\Veronica\Documents\My Drivers
[2014/06/30 20:13:27 | 000,826,368 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_64.dll
[2014/06/30 20:12:29 | 000,054,784 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2014/06/30 20:12:29 | 000,050,176 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2014/06/30 20:10:57 | 000,110,080 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysNative\DelayAPO.dll
[2014/06/30 00:49:13 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2014/06/30 00:49:12 | 000,000,000 | ---D | C] -- C:\cpqsystem
[2014/06/29 21:21:52 | 000,000,000 | ---D | C] -- C:\Users\Veronica\Desktop\DriverMax Recommended Drivers
[2014/06/29 21:20:57 | 000,000,000 | ---D | C] -- C:\Users\Veronica\Desktop\AdAware Scans
[2014/06/29 21:11:58 | 000,000,000 | ---D | C] -- C:\Users\Veronica\Desktop\Old Firefox Data
[2014/06/29 19:30:27 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Local\Innovative Solutions
[2014/06/29 19:30:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
[2014/06/29 19:30:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Innovative Solutions
[2014/06/28 00:47:31 | 000,000,000 | ---D | C] -- C:\Users\Veronica\AppData\Roaming\ImgBurn
[2014/06/28 00:31:03 | 000,439,296 | ---- | C] (Sendori) -- C:\Windows\SysNative\plsapp64.dll
[2014/06/28 00:25:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
[2014/06/27 23:58:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Memory Test
[2014/06/26 22:19:18 | 094,714,880 | ---- | C] (AVAST Software) -- C:\Users\Veronica\Desktop\avast_free_antivirus_setup.exe
[2014/06/25 21:13:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWMonitor
[2014/06/25 21:06:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
[2014/06/25 21:06:39 | 000,000,000 | ---D | C] -- C:\Program Files\WhoCrashed
[2014/06/25 20:58:24 | 002,668,480 | ---- | C] (Resplendence Software Projects Sp.                          ) -- C:\Users\Veronica\Desktop\whocrashedSetup.exe
[2014/06/25 20:37:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NirSoft
[4 C:\Users\Veronica\Documents\*.tmp files -> C:\Users\Veronica\Documents\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014/07/08 17:59:17 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/07/08 17:51:53 | 000,139,264 | ---- | M] () -- C:\Users\Veronica\Desktop\SystemLook.exe
[2014/07/08 17:45:58 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/07/08 17:43:29 | 000,002,215 | ---- | M] () -- C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
[2014/07/08 17:43:08 | 000,003,344 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2014/07/08 17:43:08 | 000,003,344 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2014/07/08 17:42:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/07/08 17:42:53 | 4025,667,584 | -HS- | M] () -- C:\hiberfil.sys
[2014/07/08 17:11:00 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA.job
[2014/07/08 16:20:00 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA.job
[2014/07/08 10:10:05 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core.job
[2014/07/08 07:20:00 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core.job
[2014/07/07 17:35:03 | 000,393,752 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014/07/07 05:07:25 | 000,000,732 | ---- | M] () -- C:\Users\Veronica\AppData\Local\d3d9caps64.dat
[2014/07/06 23:24:14 | 000,001,356 | ---- | M] () -- C:\Users\Veronica\AppData\Local\d3d9caps.dat
[2014/07/06 20:55:18 | 001,016,261 | ---- | M] (Thisisu) -- C:\Users\Veronica\Desktop\JRT.exe
[2014/07/06 20:54:23 | 001,346,519 | ---- | M] () -- C:\Users\Veronica\Desktop\adwcleaner_3.214.exe
[2014/07/06 20:32:48 | 001,025,536 | ---- | M] (Farbar) -- C:\Users\Veronica\Desktop\ListParts64.exe
[2014/07/06 12:37:55 | 001,707,144 | ---- | M] () -- C:\Users\Veronica\Desktop\Adaware_Installer.exe
[2014/07/06 12:27:18 | 000,000,084 | -H-- | M] () -- C:\aaw7boot.cmd
[2014/07/05 20:16:07 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl
[2014/07/05 20:12:51 | 000,707,584 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014/07/05 20:12:51 | 000,607,406 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014/07/05 20:12:51 | 000,105,046 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014/07/05 13:18:43 | 002,909,752 | ---- | M] () -- C:\Users\Veronica\Desktop\Gia Video July 2014.AVI
[2014/07/04 20:23:58 | 000,000,064 | ---- | M] () -- C:\Windows\SysWow64\rp_stats.dat
[2014/07/04 20:23:58 | 000,000,044 | ---- | M] () -- C:\Windows\SysWow64\rp_rules.dat
[2014/07/04 18:39:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Veronica\Desktop\OTL.exe
[2014/07/03 19:45:10 | 000,000,823 | ---- | M] () -- C:\Users\Veronica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Webshots.lnk
[2014/06/29 19:30:27 | 000,001,040 | ---- | M] () -- C:\Users\Veronica\Desktop\DriverMax.lnk
[2014/06/29 19:16:28 | 000,190,178 | ---- | M] () -- C:\Users\Veronica\Desktop\PitStop Results.jpg
[2014/06/28 00:25:52 | 000,001,699 | ---- | M] () -- C:\Users\Veronica\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2014/06/28 00:25:52 | 000,001,675 | ---- | M] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2014/06/27 23:53:17 | 000,069,043 | ---- | M] () -- C:\Users\Veronica\Desktop\memtest86+-4.20.iso.zip
[2014/06/26 22:20:43 | 094,714,880 | ---- | M] (AVAST Software) -- C:\Users\Veronica\Desktop\avast_free_antivirus_setup.exe
[2014/06/25 21:21:48 | 000,158,387 | ---- | M] () -- C:\Users\Veronica\Desktop\Speedfan Results.jpg
[2014/06/25 21:17:34 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
[2014/06/25 21:00:26 | 001,141,408 | ---- | M] (                                                            ) -- C:\Users\Veronica\Desktop\hwmonitor_1.25-setup.exe
[2014/06/25 20:58:26 | 002,668,480 | ---- | M] (Resplendence Software Projects Sp.                          ) -- C:\Users\Veronica\Desktop\whocrashedSetup.exe
[2014/06/25 20:36:29 | 000,141,480 | ---- | M] () -- C:\Users\Veronica\Desktop\bluescreenview_setup.exe
[2014/06/17 16:08:18 | 001,205,934 | ---- | M] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2014/06/10 21:53:41 | 000,002,112 | ---- | M] () -- C:\Users\Veronica\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[4 C:\Users\Veronica\Documents\*.tmp files -> C:\Users\Veronica\Documents\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014/07/08 17:51:48 | 000,139,264 | ---- | C] () -- C:\Users\Veronica\Desktop\SystemLook.exe
[2014/07/07 17:34:45 | 4025,667,584 | -HS- | C] () -- C:\hiberfil.sys
[2014/07/06 20:54:22 | 001,346,519 | ---- | C] () -- C:\Users\Veronica\Desktop\adwcleaner_3.214.exe
[2014/07/06 17:45:01 | 006,416,928 | ---- | C] () -- C:\Windows\System\DriveIcon.dll
[2014/07/06 15:39:24 | 000,002,215 | ---- | C] () -- C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
[2014/07/06 12:37:27 | 001,707,144 | ---- | C] () -- C:\Users\Veronica\Desktop\Adaware_Installer.exe
[2014/07/06 12:27:18 | 000,000,084 | -H-- | C] () -- C:\aaw7boot.cmd
[2014/07/05 20:16:07 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014/07/05 20:10:51 | 002,119,472 | ---- | C] () -- C:\Windows\SysNative\SStudio.dll
[2014/07/05 20:10:47 | 005,804,772 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2014/07/05 20:10:38 | 001,205,934 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2014/07/05 20:09:42 | 000,096,568 | ---- | C] () -- C:\Windows\SysNative\audioLibVc.dll
[2014/07/05 20:09:41 | 000,109,848 | ---- | C] () -- C:\Windows\SysNative\AcpiServiceVnA64.dll
[2014/07/05 13:18:39 | 002,909,752 | ---- | C] () -- C:\Users\Veronica\Desktop\Gia Video July 2014.AVI
[2014/06/30 20:13:27 | 000,230,912 | ---- | C] () -- C:\Windows\SysNative\clinfo.exe
[2014/06/30 20:13:27 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2014/06/30 20:13:27 | 000,204,952 | ---- | C] () -- C:\Windows\SysNative\ativvsvl.dat
[2014/06/30 20:13:27 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2014/06/30 20:13:27 | 000,157,144 | ---- | C] () -- C:\Windows\SysNative\ativvsva.dat
[2014/06/30 20:13:13 | 000,045,056 | ---- | C] () -- C:\Windows\SysNative\atitmp64.dll
[2014/06/30 20:13:11 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2014/06/30 20:13:11 | 000,003,917 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat
[2014/06/30 20:12:39 | 002,852,480 | ---- | C] () -- C:\Windows\SysWow64\aticldxva.cap
[2014/06/30 20:12:38 | 002,818,784 | ---- | C] () -- C:\Windows\SysNative\aticldx6a.cap
[2014/06/30 20:12:30 | 000,550,456 | ---- | C] () -- C:\Windows\SysWow64\atiapfxx.blb
[2014/06/30 20:12:30 | 000,550,456 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb
[2014/06/30 20:12:28 | 001,187,342 | ---- | C] () -- C:\Windows\SysNative\amdocl_as.exe
[2014/06/30 20:12:28 | 001,061,902 | ---- | C] () -- C:\Windows\SysNative\amdocl_ld.exe
[2014/06/30 20:12:28 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld.exe
[2014/06/30 20:12:27 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as.exe
[2014/06/29 19:30:27 | 000,001,040 | ---- | C] () -- C:\Users\Veronica\Desktop\DriverMax.lnk
[2014/06/29 19:16:27 | 000,190,178 | ---- | C] () -- C:\Users\Veronica\Desktop\PitStop Results.jpg
[2014/06/28 00:25:52 | 000,001,699 | ---- | C] () -- C:\Users\Veronica\Application Data\Microsoft\Internet Explorer\Quick Launch\ImgBurn.lnk
[2014/06/28 00:25:52 | 000,001,687 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
[2014/06/28 00:25:52 | 000,001,675 | ---- | C] () -- C:\Users\Public\Desktop\ImgBurn.lnk
[2014/06/28 00:09:15 | 001,839,104 | ---- | C] () -- C:\Users\Veronica\Desktop\mt420.iso
[2014/06/27 23:53:07 | 000,069,043 | ---- | C] () -- C:\Users\Veronica\Desktop\memtest86+-4.20.iso.zip
[2014/06/25 21:21:47 | 000,158,387 | ---- | C] () -- C:\Users\Veronica\Desktop\Speedfan Results.jpg
[2014/06/25 21:00:24 | 001,141,408 | ---- | C] (                                                            ) -- C:\Users\Veronica\Desktop\hwmonitor_1.25-setup.exe
[2014/06/25 20:35:50 | 000,141,480 | ---- | C] () -- C:\Users\Veronica\Desktop\bluescreenview_setup.exe
[2012/06/13 09:21:43 | 000,151,166 | ---- | C] () -- C:\ProgramData\1339604266.bdinstall.bin
[2012/06/08 04:28:08 | 000,148,808 | ---- | C] () -- C:\ProgramData\1339154345.bdinstall.bin
[2012/06/07 20:55:06 | 000,224,937 | ---- | C] () -- C:\ProgramData\1339125945.bdinstall.bin
[2011/12/04 22:42:09 | 000,000,040 | -HS- | C] () -- C:\ProgramData\.zreglib
[2010/10/18 22:10:03 | 000,000,732 | ---- | C] () -- C:\Users\Veronica\AppData\Local\d3d9caps64.dat
[2010/03/27 01:20:09 | 000,000,000 | ---- | C] () -- C:\Users\Veronica\AppData\Local\prvlcl.dat
[2009/09/03 17:56:18 | 000,072,080 | ---- | C] () -- C:\Users\Veronica\g2mdlhlpx.exe
[2008/10/27 04:41:56 | 000,007,649 | ---- | C] () -- C:\ProgramData\N360BUOptions.ini
[2008/10/20 06:09:47 | 000,000,139 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2008/09/03 08:32:00 | 000,000,873 | ---- | C] () -- C:\Program Files (x86)\WinRAR.lnk
[2008/08/30 21:45:48 | 000,001,356 | ---- | C] () -- C:\Users\Veronica\AppData\Local\d3d9caps.dat
[2008/08/29 04:24:49 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2008/08/28 17:13:44 | 000,189,952 | ---- | C] () -- C:\Users\Veronica\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
 
========== ZeroAccess Check ==========
 
[2006/11/02 08:30:40 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/03/25 09:30:37 | 012,900,864 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/25 06:26:04 | 011,587,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/04/11 00:11:14 | 000,891,392 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/10 23:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2008/01/20 19:50:58 | 000,513,024 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2013/12/30 22:23:35 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Audacity
[2010/02/20 01:12:51 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\AVG9
[2011/08/15 18:28:14 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\BeadTool
[2011/08/18 13:11:50 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\BitTorrent
[2011/08/03 23:44:04 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Cache
[2013/07/14 23:35:00 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Dropbox
[2011/07/26 14:12:49 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\eFax Messenger
[2008/08/23 23:13:31 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\HDD Thermometer
[2014/06/29 02:19:12 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\ImgBurn
[2011/07/26 14:15:24 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\j2 Global
[2013/06/17 21:47:20 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Lawson
[2011/10/08 18:33:04 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\MP3SkypeRecorder
[2009/11/25 21:08:44 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\NCH Swift Sound
[2013/10/29 21:25:05 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Oracle
[2009/03/18 14:23:42 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\OverDrive
[2012/06/07 20:21:43 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\QuickScan
[2009/10/20 03:59:29 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Recordpad
[2014/07/03 01:56:47 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\repository
[2010/07/03 07:30:37 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Returnil
[2014/07/03 01:57:17 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\spelling
[2008/08/24 00:39:26 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Webshots
[2012/10/25 01:13:33 | 000,000,000 | ---D | M] -- C:\Users\Veronica\AppData\Roaming\Wondershare Video Converter Ultimate
 
========== Purity Check ==========
 
 
 
========== Files - Unicode (All) ==========
[2011/10/24 15:21:29 | 000,010,039 | ---- | M] ()(C:\Users\Veronica\Documents\? Om Symbol.docx) -- C:\Users\Veronica\Documents\ॐ Om Symbol.docx
[2011/10/24 15:21:22 | 000,010,039 | ---- | C] ()(C:\Users\Veronica\Documents\? Om Symbol.docx) -- C:\Users\Veronica\Documents\ॐ Om Symbol.docx
 
< End of report >
 
 
 
I noticed that the scan said my results might be more accurate since I have a 64 bit system, so I downloaded the SystemLook64 and also ran it.  The problem is that I'm still seeing the ilivid icon in my list of programs and features and I was not seeing that before when you asked me if it was in the list.  I think it's still hanging around.  Also, the uninstall button disappears when I click on the icon.  It doesn't do that for the other programs.
 
 
Here's the System Look Scan:
 

SystemLook 30.07.11 by jpshortstuff
Log created at 18:18 on 08/07/2014 by Veronica
Administrator - Elevation successful
 
========== filefind ==========
 
Searching for "ilivid"
No files found.
 
========== folderfind ==========
 
Searching for "ilivid"
No folders found.
 
-= EOF =-
 
Here's the first scan of System Look using the download link you gave me:
 
 
SystemLook 30.07.11 by jpshortstuff
Log created at 18:15 on 08/07/2014 by Veronica
Administrator - Elevation successful
WARNING: SystemLook running under WOW64. Use SystemLook_x64 for accurate results.
 
========== filefind ==========
 
Searching for "ilivid"
No files found.
 
========== folderfind ==========
 
Searching for "ilivid"
No folders found.
 
-= EOF =-

  • 0

#36
zep516
Posted 08 July 2014 - 07:57 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,090 posts

Hello,

Also, the uninstall button disappears when I click on the icon.

 

 

"When facing this no uninstall/change/repair button problem, users should still be able to trigger uninstallation process for the program and updates by double click on the item, or highlight the item and press Enter, or right click and select appropriate action command."

 

 

See if that works, right click on ilivid and choose uninstall.

 

Is Malwarebytes still crying about anything?

 

How is the computer now ?


  • 0

#37
periwinkle
Posted 08 July 2014 - 09:13 PM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

Joe, I usually try more than one way to do something.  I'd already tried right clicking it.  Nothing happens.  It's as if it's protected somehow.  I did do some research online to remove ilivid.  It involves running Malwarebytes and then "when it finds something" cleaning it up with CC Cleaner.  However, since the scan that found all that crap, it hasn't found anything in subsequent scans.  I still plan to run CC Cleaner.  When I look for the item in the computer by the Windows search, it finds nothing, but there sits the icon in my Programs and Features.  I haven't seen any evidence of it doing anything unless that "iesearch" is somehow related to ilivid.

 

Malwarebytes just occasionally puts up a warning and if I happen to be at the computer, it says something about an outbound iesearch.  

 

The computer has not shutdown once on its own.  I still cannot find the J: & K: drives, but it's interesting that the ESET seemed to detect them.  Because when I set it up to scan, I chose the C:, D:, J: & K: drives.  Maybe it presents all possible drives automatically, but it seemed to be detecting my drives.

 

I still need to transfer my photos to the terabyte drive.  I suppose I'm stalling on that because it will be another box to put somewhere and connect to my computer.  Plus, I'm having to clean up the area where my computer is.  


  • 0

#38
zep516
Posted 08 July 2014 - 09:32 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,090 posts

Malwarebytes just occasionally puts up a warning and if I happen to be at the computer, it says something about an outbound iesearch.

 

Can you let me know exactly what it says next time you see it. The Internet explorer settings look fine in the last OTL log

 

I don't believe there are any  ilivid files or folders left, but I'm stumped on the uninstall button issue at the moment.

 

My list parts program that we downloaded would have found those drives. So not sure what's going on there just yet. Very odd that listparts did not see them!

 

I want to do another scan too, when you get time. I need to sign off for tonite. I'll look at in the morning.

 

 

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

 

Post the 2 logs in you next reply,

 

1-FRST.txt

 

2-Addition.txt


  • 0

#39
periwinkle
Posted 09 July 2014 - 12:36 AM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

Here's the FRST scan:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-07-2014 01
Ran by Veronica (administrator) on VERONICA-PC on 08-07-2014 23:21:12
Running from C:\Users\Veronica\Desktop
Platform: Windows Vista ™ Home Premium Service Pack 2 (X64) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio64.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac7302\Monitor.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe
() C:\Program Files (x86)\HDD Thermometer\HDD Thermometer.exe
(Alexander Nikiforov) C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
() C:\Program Files (x86)\IOI\ButtonMonitor.exe
(Google) C:\Program Files (x86)\Google\Google Talk\googletalk.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Lavasoft) C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
(Webshots.com) C:\Program Files (x86)\Webshots\Webshots.scr
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Veronica\AppData\Local\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-06-17] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2008-03-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe [7715160 2014-06-03] ()
HKLM-x32\...\Run: [ButtonMonitor] => C:\Program Files (x86)\IOI\ButtonMonitor.exe [53248 2008-03-16] ()
HKLM-x32\...\Run: [googletalk] => C:\Program Files (x86)\Google\Google Talk\googletalk.exe [3739648 2007-01-01] (Google)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2012-04-18] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] => C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)
HKLM-x32\...\Runonce: [AvgUninstallURL] - cmd.exe /c start http://www.avg.com/w...dback-appf?lic="&"inst=NwA3AC0ANAAyADkAOQA2ADUAOAA1ADIALQBUADUALQBCAEEAKwAxAC0ASwBWADMAKwA3AC0AWABMACsAMQAtAEYAUAA5ACsANgAtAEIAQQBSADkARwArADEALQBUAEIAOQArADIALQBGAEwAKwA5AC0AWABPADMANgArADEALQBGADkATQA3AEMAKwA1AC0ARgA5AE0AMQAwAEIAKwAxAC0AWABPADkAKwAxAC0ARgA5AE0AMgArADEALQBEAEQAVAArADAA"&"prod=0"&"ver=9.0.894 [X]
HKLM-x32\...\Runonce: [Launcher] - %WINDIR%\SMINST\launcher.exe [X]
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-2932777127-504153465-3726424614-1000\...\Run: [RSD_HDDThermo] => C:\Program Files (x86)\HDD Thermometer\HDD Thermometer.exe [215040 2005-04-01] ()
HKU\S-1-5-21-2932777127-504153465-3726424614-1000\...\Run: [Google Update] => C:\Users\Veronica\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-02-21] (Google Inc.)
HKU\S-1-5-21-2932777127-504153465-3726424614-1000\...\Run: [MP3 Skype Recorder] => C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe [1975296 2011-11-17] (Alexander Nikiforov)
HKU\S-1-5-21-2932777127-504153465-3726424614-1000\...\Run: [GoogleChromeAutoLaunch_E4479FD7F732273378D06E166F1696C7] => C:\Users\Veronica\AppData\Local\Google\Chrome\Application\chrome.exe [860488 2014-06-05] (Google Inc.)
HKU\S-1-5-21-2932777127-504153465-3726424614-1000\...\Run: [DriverMax] => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [8482680 2014-06-25] (Innovative Solutions)
HKU\S-1-5-21-2932777127-504153465-3726424614-1000\...\Run: [DriverMax_RESTART] => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [8482680 2014-06-25] (Innovative Solutions)
HKU\S-1-5-21-2932777127-504153465-3726424614-1000\...\Run: [WMPNSCFG] => C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
Startup: C:\Users\Veronica\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Webshots.lnk
ShortcutTarget: Webshots.lnk -> C:\Program Files (x86)\Webshots\Launcher.exe (Webshots.com)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...t/PCPitStop.CAB
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} http://www.maricopa....in/mgaxctrl.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset...lineScanner.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\MP3 Skype Recorder\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.2.25
Tcpip\..\Interfaces\{4FBEC332-55DA-4912-8DF7-4AB47DEDE417}: [NameServer]8.8.8.8,8.8.4.4
 
FireFox:
========
FF ProfilePath: C:\Users\Veronica\AppData\Roaming\Mozilla\Firefox\Profiles\25qs7hd5.default-1404101501971
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.46 - C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.46 - C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMcAfeeSRPlgn.dll (McAfee, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Veronica\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Veronica\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-06]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-07-06]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-07-06]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-26]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-06-19]
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.4.600\_platform_specific\win_x86\widevinecdmadapter.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (DivX Player Netscape Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files (x86)\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (McAfeeScanAndRepair) - C:\Users\Veronica\AppData\Local\Google\Chrome\Application\plugins\npMcAfeeSRPlgn.dll (McAfee, Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Java Deployment Toolkit 7.0.550.13) - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java™ Platform SE 7 U55) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files (x86)\VistaCodecPack\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Users\Veronica\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\Veronica\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (PasswordBox - Log in with 1-Click) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajgnnllmjadopdlmpplonojbfogkjlcl [2014-07-06]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-29]
CHR Extension: (YouTube) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-17]
CHR Extension: (Adblock Plus) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-29]
CHR Extension: (Google Search) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-17]
CHR Extension: (AdBlock) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-10-06]
CHR Extension: (Google Wallet) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-27]
CHR Extension: (Gmail) - C:\Users\Veronica\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-17]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
 
==================== Services (Whitelisted) =================
 
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2008-10-15] (Adobe Systems) [File not signed]
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-05-21] ()
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe [706864 2014-06-03] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [809296 2008-07-07] (Safer Networking Ltd.)
S2 AGCoreService; "C:\Program Files (x86)\AGI\core\4.2.0.10752\AGCoreService.exe" [X]
S2 AGWinService; "C:\Program Files (x86)\AGI\common\win32\PythonService.exe" [X]
S3 getPlusHelper; C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll [X]
S4 McAfee ScanAndRepair Svc; "C:\Program Files (x86)\McAfeeScanAndRepair\McAfeeScanRepairSvc.exe" [X]
 
==================== Drivers (Whitelisted) ====================
 
R0 74385989; C:\Windows\System32\DRIVERS\74385989.sys [460888 2011-08-10] (Kaspersky Lab ZAO)
R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2013-03-08] (Advanced Micro Devices Inc.)
S0 amdkmafd; C:\Windows\System32\DRIVERS\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW86.sys [237968 2012-06-05] (Realtek Semiconductor Corp.)
S3 BlackBox; C:\Windows\SysWow64\Drivers\BlackBox.sys [35712 2011-08-20] () [File not signed]
R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\gzflt.sys [150256 2014-04-22] (BitDefender LLC)
R1 IDSvia64; C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20081023.002\IDSviA64.sys [368688 2008-09-12] (Symantec Corporation)
R0 LPCFilter; C:\Windows\System32\DRIVERS\LPCFilter.sys [31024 2012-08-02] (Windows ® Win 7 DDK provider)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-07-08] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF64.sys [157696 2011-10-20] (Matrox Graphics Inc.)
S3 Normandy; C:\Windows\SysWow64\Drivers\Normandy.sys [34560 2011-08-20] () [File not signed]
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [527872 2007-11-08] (PixArt Imaging Inc.)
R0 Pnp680; C:\Windows\System32\DRIVERS\pnp680.sys [80424 2007-11-13] (Silicon Image, Inc)
R3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [420864 2010-03-31] (Realtek Semiconductor Corporation                           )
R3 RTL8187B; C:\Windows\SysWOW64\DRIVERS\RTL8187B.sys [340000 2008-03-16] (Realtek Semiconductor Corporation                           )
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-04-22] (BitDefender S.R.L.)
R3 ZCLDRV; C:\Windows\System32\DRIVERS\ZclDrv64.sys [71680 2013-06-27] (TechnoScope Co., Ltd.)
U4 bdselfpr; 
S3 cpuz132; \??\C:\Users\Veronica\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X]
S3 EuMusDesignVirtualAudioCableWdm_lcs; system32\DRIVERS\vaclcskd.sys [X]
S3 hcdriver; system32\DRIVERS\hcdriver.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-08 23:21 - 2014-07-08 23:22 - 00026390 _____ () C:\Users\Veronica\Desktop\FRST.txt
2014-07-08 23:21 - 2014-07-08 23:21 - 00000000 ___DC () C:\FRST
2014-07-08 23:16 - 2014-07-08 23:16 - 02084352 _____ (Farbar) C:\Users\Veronica\Desktop\FRST64.exe
2014-07-08 23:01 - 2014-07-08 23:01 - 00274336 _____ () C:\Windows\Minidump\Mini070814-01.dmp
2014-07-08 23:00 - 2014-07-08 23:00 - 508951059 _____ () C:\Windows\MEMORY.DMP
2014-07-08 18:23 - 2014-07-08 18:23 - 00000752 _____ () C:\Users\Veronica\Desktop\SystemLook32 Scan 7-08-14.txt
2014-07-08 18:19 - 2014-07-08 18:19 - 00000586 _____ () C:\Users\Veronica\Desktop\SystemLook Scan 7-08-14.txt
2014-07-08 18:18 - 2014-07-08 18:18 - 00165376 _____ () C:\Users\Veronica\Desktop\SystemLook_x64.exe
2014-07-08 18:15 - 2014-07-08 18:18 - 00000584 _____ () C:\Users\Veronica\Desktop\SystemLook.txt
2014-07-08 18:14 - 2014-07-08 18:14 - 00113822 _____ () C:\Users\Veronica\Desktop\OTL Quick Scan After Fix 7-08-14.Txt
2014-07-08 17:51 - 2014-07-08 17:51 - 00139264 _____ () C:\Users\Veronica\Desktop\SystemLook.exe
2014-07-08 04:02 - 2014-07-08 04:02 - 00000000 ____D () C:\Users\Veronica\AppData\Local\Adobe
2014-07-08 02:30 - 2014-07-08 02:30 - 00002258 _____ () C:\Users\Veronica\Desktop\Eset Scan 7-08-14.txt
2014-07-08 02:29 - 2014-07-08 02:29 - 00002258 _____ () C:\Users\Veronica\Desktop\ESET Online.txt
2014-07-07 20:16 - 2014-07-07 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-07 18:02 - 2014-07-08 23:21 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-07 18:01 - 2014-07-07 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-07 18:00 - 2014-07-07 18:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-07 18:00 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-07 18:00 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-07 17:26 - 2014-07-07 17:26 - 00000000 ____D () C:\Program Files\Microsoft ATS
2014-07-07 03:38 - 2014-07-07 03:38 - 00001648 _____ () C:\Users\Veronica\Desktop\JRT.txt
2014-07-07 00:56 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-07 00:54 - 2014-07-07 03:21 - 00000000 ___DC () C:\AdwCleaner
2014-07-06 20:55 - 2014-07-06 20:55 - 01016261 _____ (Thisisu) C:\Users\Veronica\Desktop\JRT.exe
2014-07-06 20:54 - 2014-07-06 20:54 - 01346519 _____ () C:\Users\Veronica\Desktop\adwcleaner_3.214.exe
2014-07-06 20:51 - 2014-07-06 20:51 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\Lavasoft
2014-07-06 20:35 - 2014-07-06 20:35 - 00002721 _____ () C:\Users\Veronica\Desktop\Result 7-06-14 Listparts Scan.txt
2014-07-06 20:32 - 2014-07-06 20:32 - 01025536 _____ (Farbar) C:\Users\Veronica\Desktop\ListParts64.exe
2014-07-06 17:45 - 2008-11-13 16:47 - 00068096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTSTOR64.sys
2014-07-06 17:45 - 2008-05-06 17:41 - 06416928 _____ () C:\Windows\system\DriveIcon.dll
2014-07-06 15:39 - 2014-07-08 23:02 - 00002215 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-07-06 15:39 - 2014-07-06 15:39 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\LavasoftStatistics
2014-07-06 15:39 - 2014-07-06 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus
2014-07-06 15:37 - 2014-07-06 15:37 - 00000000 ____D () C:\Program Files\Lavasoft
2014-07-06 15:36 - 2014-07-08 23:05 - 00000000 ____D () C:\ProgramData\Ad-Aware Browsing Protection
2014-07-06 15:36 - 2014-07-06 15:36 - 00000000 ____D () C:\Users\Veronica\AppData\Local\adawarebp
2014-07-06 12:40 - 2014-07-06 12:40 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-07-06 12:37 - 2014-07-06 12:37 - 01707144 _____ () C:\Users\Veronica\Desktop\Adaware_Installer.exe
2014-07-06 12:27 - 2014-07-06 12:27 - 00000084 ___HC () C:\aaw7boot.cmd
2014-07-06 03:50 - 2014-07-07 22:47 - 00006390 _____ () C:\Windows\PFRO.log
2014-07-06 03:38 - 2014-07-07 19:14 - 00000000 ___DC () C:\_OTL
2014-07-06 03:30 - 2014-07-06 03:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-05 20:16 - 2014-07-05 20:16 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-05 20:14 - 2014-07-05 20:14 - 00000000 ____D () C:\Program Files\Realtek
2014-07-05 20:10 - 2014-06-17 19:27 - 04001752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-07-05 20:10 - 2014-06-17 19:17 - 00856992 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-07-05 20:10 - 2014-06-17 16:08 - 01205934 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-07-05 20:10 - 2014-06-17 15:41 - 64228864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-07-05 20:10 - 2014-06-17 13:32 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-07-05 20:10 - 2014-06-13 16:24 - 02804952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-07-05 20:10 - 2014-06-11 17:08 - 00949464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-07-05 20:10 - 2014-06-11 11:44 - 01024728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-07-05 20:10 - 2014-06-09 16:57 - 02860248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-07-05 20:10 - 2014-05-14 15:47 - 02119472 _____ () C:\Windows\system32\SStudio.dll
2014-07-05 20:10 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-07-05 20:10 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2014-07-05 20:10 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-07-05 20:10 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-07-05 20:10 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-07-05 20:10 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-07-05 20:10 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-07-05 20:10 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-07-05 20:10 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-07-05 20:10 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-07-05 20:10 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-07-05 20:10 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-07-05 20:10 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-07-05 20:10 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-07-05 20:10 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2014-07-05 20:10 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-07-05 20:10 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-07-05 20:10 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-07-05 20:10 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-07-05 20:10 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-07-05 20:10 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-07-05 20:10 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-07-05 20:10 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2014-07-05 20:10 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-07-05 20:10 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-07-05 20:10 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-07-05 20:10 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-07-05 20:10 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-07-05 20:10 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2014-07-05 20:10 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-07-05 20:10 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-07-05 20:10 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-07-05 20:10 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-07-05 20:10 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-07-05 20:10 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2014-07-05 20:10 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2014-07-05 20:10 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-07-05 20:10 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-07-05 20:10 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-07-05 20:10 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-07-05 20:10 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-07-05 20:10 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-07-05 20:10 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-07-05 20:10 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-07-05 20:10 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-07-05 20:10 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-07-05 20:10 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-07-05 20:10 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-07-05 20:09 - 2014-06-09 13:52 - 01530048 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2014-07-05 20:09 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-07-05 20:09 - 2014-05-22 16:24 - 00096568 _____ () C:\Windows\system32\audioLibVc.dll
2014-07-05 20:09 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2014-07-05 20:09 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-07-05 20:09 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-07-05 20:09 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-07-05 20:09 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-07-05 20:09 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-07-05 20:09 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-07-05 20:09 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-07-05 20:09 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-07-05 20:09 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-07-05 20:09 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-07-05 20:09 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2014-07-05 20:09 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-07-05 20:09 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-07-05 20:09 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-07-05 20:09 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-07-05 20:09 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-07-05 20:09 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-07-05 20:09 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll
2014-07-05 20:09 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-07-05 20:09 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-07-05 20:09 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-07-05 20:09 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-07-05 13:18 - 2014-07-05 13:18 - 02909752 _____ () C:\Users\Veronica\Desktop\Gia Video July 2014.AVI
2014-07-04 18:58 - 2014-07-08 18:13 - 00113822 _____ () C:\Users\Veronica\Desktop\OTL.Txt
2014-07-04 18:39 - 2014-07-04 18:39 - 00602112 _____ (OldTimer Tools) C:\Users\Veronica\Desktop\OTL.exe
2014-07-04 15:35 - 2013-03-08 22:47 - 00011944 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\Drivers\amdide64.sys
2014-07-04 15:33 - 2014-07-04 15:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-04 15:33 - 2014-07-04 15:33 - 00000000 _____ () C:\Windows\setupact.log
2014-07-03 20:21 - 2014-07-07 04:36 - 00308148 _____ () C:\Windows\DPINST.LOG
2014-07-03 01:57 - 2014-07-03 01:57 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\spelling
2014-07-03 01:56 - 2014-07-03 01:56 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\repository
2014-07-03 01:56 - 2014-07-03 01:56 - 00000000 ____D () C:\Users\Veronica\.lawson
2014-07-02 22:34 - 2012-08-02 16:50 - 00031024 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\LPCFilter.sys
2014-07-02 22:15 - 2011-10-20 11:24 - 00157696 _____ (Matrox Graphics Inc.) C:\Windows\system32\Drivers\MxEFUF64.sys
2014-07-01 22:13 - 2014-04-04 21:26 - 01417664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-07-01 22:13 - 2014-04-04 19:32 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-07-01 22:10 - 2014-05-28 11:53 - 17857536 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-01 22:10 - 2014-05-28 11:37 - 02338816 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-01 22:10 - 2014-05-28 11:35 - 10890240 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-01 22:10 - 2014-05-28 11:31 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-01 22:10 - 2014-05-28 11:31 - 01348608 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-01 22:10 - 2014-05-28 11:30 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-01 22:10 - 2014-05-28 11:30 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-07-01 22:10 - 2014-05-28 11:29 - 02148352 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-01 22:10 - 2014-05-28 11:29 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-01 22:10 - 2014-05-28 11:29 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-01 22:10 - 2014-05-28 11:29 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-01 22:10 - 2014-05-28 11:29 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-01 22:10 - 2014-05-28 11:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-01 22:10 - 2014-05-28 11:28 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-01 22:10 - 2014-05-28 11:28 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-01 22:10 - 2014-05-28 11:28 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-01 22:10 - 2014-05-28 11:28 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-01 22:10 - 2014-05-28 11:28 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-07-01 22:10 - 2014-05-28 11:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-07-01 22:10 - 2014-05-28 11:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-07-01 22:10 - 2014-05-28 11:27 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-01 22:10 - 2014-05-28 09:48 - 12356608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-01 22:10 - 2014-05-28 09:39 - 01810432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-01 22:10 - 2014-05-28 09:38 - 09711104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-01 22:10 - 2014-05-28 09:33 - 01106432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-01 22:10 - 2014-05-28 09:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-01 22:10 - 2014-05-28 09:32 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-01 22:10 - 2014-05-28 09:31 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-07-01 22:10 - 2014-05-28 09:31 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-01 22:10 - 2014-05-28 09:30 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-01 22:10 - 2014-05-28 09:30 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-01 22:10 - 2014-05-28 09:30 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-01 22:10 - 2014-05-28 09:30 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-01 22:10 - 2014-05-28 09:30 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-01 22:10 - 2014-05-28 09:30 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-01 22:10 - 2014-05-28 09:30 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-07-01 22:10 - 2014-05-28 09:29 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-01 22:10 - 2014-05-28 09:29 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-01 22:10 - 2014-05-28 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-01 22:10 - 2014-05-28 09:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-07-01 22:10 - 2014-05-28 09:29 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-07-01 22:10 - 2014-05-28 09:28 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-01 22:09 - 2014-04-26 11:21 - 00622592 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-07-01 22:09 - 2014-04-26 09:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-07-01 18:38 - 2013-06-27 16:04 - 00042496 _____ (TechnoScope Co., Ltd.) C:\Windows\system32\ZclDrv64.dll
2014-07-01 18:38 - 2013-06-27 16:04 - 00036352 _____ (TechnoScope Co., Ltd.) C:\Windows\SysWOW64\ZclDrv.dll
2014-07-01 18:38 - 2013-06-27 16:02 - 00393216 _____ (TechnoScope Co., Ltd.) C:\Windows\SysWOW64\Zcl.dll
2014-07-01 18:38 - 2013-06-27 16:01 - 00425472 _____ (TechnoScope Co., Ltd.) C:\Windows\system32\Zcl64.dll
2014-07-01 18:38 - 2013-06-27 13:08 - 00071680 _____ (TechnoScope Co., Ltd.) C:\Windows\system32\Drivers\ZCLDrv64.sys
2014-07-01 18:38 - 2005-09-08 11:25 - 00040960 _____ (TechnoScope) C:\Windows\SysWOW64\Ccm.dll
2014-07-01 07:34 - 2013-01-08 09:10 - 00390112 _____ (Marvell) C:\Windows\system32\Drivers\yk60x64.sys
2014-06-30 22:45 - 2014-03-09 23:26 - 01869824 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-30 22:45 - 2014-03-09 23:26 - 01794560 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-30 22:45 - 2014-03-09 18:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-30 22:45 - 2014-03-09 18:22 - 01248768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 26352128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axxA.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 22157824 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxxA.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 15983104 _____ (ATI Technologies Inc.) C:\Windows\system32\atio6axxB.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 11513856 _____ (ATI Technologies Inc.) C:\Windows\SysWOW64\atioglxxB.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 07040928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64A.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 06036160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdagA.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 05205504 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64B.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 03839488 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atiumdagB.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 01828864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 01113088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6v.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2014-06-30 20:13 - 2014-06-08 07:58 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2014-06-30 20:13 - 2014-06-08 07:58 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2014-06-30 20:13 - 2014-06-08 07:58 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2014-06-30 20:13 - 2014-06-08 07:58 - 00142280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 00125824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 00051152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 00045056 _____ () C:\Windows\system32\atitmp64.dll
2014-06-30 20:13 - 2014-06-08 07:58 - 00038768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-06-30 20:13 - 2014-05-23 05:18 - 00826368 _____ (AMD) C:\Windows\system32\coinst_64.dll
2014-06-30 20:13 - 2013-12-07 01:38 - 00230912 _____ () C:\Windows\system32\clinfo.exe
2014-06-30 20:13 - 2013-12-07 01:38 - 00099840 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-06-30 20:13 - 2013-12-07 01:38 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-06-30 20:13 - 2013-12-07 01:38 - 00083968 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-06-30 20:13 - 2013-12-07 01:38 - 00073728 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-06-30 20:13 - 2011-09-13 02:06 - 00003917 _____ () C:\Windows\SysWOW64\atipblag.dat
2014-06-30 20:13 - 2011-09-13 02:06 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-06-30 20:12 - 2014-06-08 07:58 - 11837976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdagA.sys
2014-06-30 20:12 - 2014-06-08 07:58 - 05357080 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdagB.sys
2014-06-30 20:12 - 2014-06-08 07:58 - 04782960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticldxva.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 04292192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticldx6a.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 02852480 _____ () C:\Windows\SysWOW64\aticldxva.cap
2014-06-30 20:12 - 2014-06-08 07:58 - 02818784 _____ () C:\Windows\system32\aticldx6a.cap
2014-06-30 20:12 - 2014-06-08 07:58 - 01094024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00929736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00612888 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpagA.sys
2014-06-30 20:12 - 2014-06-08 07:58 - 00550456 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-06-30 20:12 - 2014-06-08 07:58 - 00550456 _____ () C:\Windows\system32\atiapfxx.blb
2014-06-30 20:12 - 2014-06-08 07:58 - 00466944 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atildimgx.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atildimgy.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-06-30 20:12 - 2014-06-08 07:58 - 00331288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-06-30 20:12 - 2014-06-08 07:58 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2014-06-30 20:12 - 2014-06-08 07:58 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00041984 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00017920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-06-30 20:12 - 2014-06-08 07:58 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-06-30 20:12 - 2013-12-09 20:16 - 16457216 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-06-30 20:12 - 2013-12-09 20:16 - 13008384 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-06-30 20:12 - 2013-12-09 20:16 - 00054784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-06-30 20:12 - 2013-12-09 20:16 - 00050176 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-06-30 20:12 - 2013-12-07 01:38 - 01187342 _____ () C:\Windows\system32\amdocl_as.exe
2014-06-30 20:12 - 2013-12-07 01:38 - 01061902 _____ () C:\Windows\system32\amdocl_ld.exe
2014-06-30 20:12 - 2013-12-07 01:38 - 00995342 _____ () C:\Windows\SysWOW64\amdocl_as.exe
2014-06-30 20:12 - 2013-12-07 01:38 - 00798734 _____ () C:\Windows\SysWOW64\amdocl_ld.exe
2014-06-30 20:10 - 2013-11-20 21:14 - 00110080 _____ (TODO: <Company name>) C:\Windows\system32\DelayAPO.dll
2014-06-30 20:10 - 2012-06-05 21:45 - 00237968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\AtihdW86.sys
2014-06-30 20:08 - 2012-09-23 05:17 - 00021160 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmafd.sys
2014-06-30 00:49 - 2014-06-30 00:49 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-06-30 00:49 - 2014-06-30 00:49 - 00000000 ____D () C:\cpqsystem
2014-06-29 21:20 - 2014-06-29 21:21 - 00000000 ____D () C:\Users\Veronica\Desktop\AdAware Scans
2014-06-29 21:11 - 2014-06-29 21:11 - 00000000 ____D () C:\Users\Veronica\Desktop\Old Firefox Data
2014-06-29 19:30 - 2014-06-29 19:30 - 00001040 _____ () C:\Users\Veronica\Desktop\DriverMax.lnk
2014-06-29 19:30 - 2014-06-29 19:30 - 00000000 ____D () C:\Users\Veronica\AppData\Local\Innovative Solutions
2014-06-29 19:30 - 2014-06-29 19:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
2014-06-29 19:30 - 2014-06-29 19:30 - 00000000 ____D () C:\Program Files (x86)\Innovative Solutions
2014-06-28 00:47 - 2014-06-29 02:19 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\ImgBurn
2014-06-28 00:31 - 2013-11-13 20:41 - 00439296 _____ (Sendori) C:\Windows\system32\plsapp64.dll
2014-06-28 00:25 - 2014-06-28 00:25 - 00001687 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2014-06-28 00:25 - 2014-06-28 00:25 - 00001675 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-06-28 00:25 - 2014-06-28 00:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2014-06-28 00:09 - 2011-01-23 20:09 - 01839104 _____ () C:\Users\Veronica\Desktop\mt420.iso
2014-06-27 23:58 - 2014-06-27 23:58 - 00000000 ____D () C:\Program Files (x86)\Memory Test
2014-06-27 23:53 - 2014-06-27 23:53 - 00069043 _____ () C:\Users\Veronica\Desktop\memtest86+-4.20.iso.zip
2014-06-26 22:19 - 2014-06-26 22:20 - 94714880 _____ (AVAST Software) C:\Users\Veronica\Desktop\avast_free_antivirus_setup.exe
2014-06-25 21:16 - 2014-06-25 21:16 - 00003177 _____ () C:\Users\Veronica\Desktop\hwm_smbus.txt
2014-06-25 21:15 - 2014-06-25 21:15 - 00027252 _____ () C:\Users\Veronica\Desktop\HWMonitor - Monitoring Data.txt
2014-06-25 21:13 - 2014-06-25 21:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWMonitor
2014-06-25 21:06 - 2014-06-25 21:09 - 00000000 ____D () C:\Program Files\WhoCrashed
2014-06-25 21:06 - 2014-06-25 21:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2014-06-25 21:00 - 2014-06-25 21:00 - 01141408 _____ ( ) C:\Users\Veronica\Desktop\hwmonitor_1.25-setup.exe
2014-06-25 20:58 - 2014-06-25 20:58 - 02668480 _____ (Resplendence Software Projects Sp. ) C:\Users\Veronica\Desktop\whocrashedSetup.exe
2014-06-25 20:37 - 2014-06-25 20:37 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-06-25 20:35 - 2014-06-25 20:36 - 00141480 _____ () C:\Users\Veronica\Desktop\bluescreenview_setup.exe
2014-06-24 20:30 - 2014-07-06 12:15 - 00003618 _____ () C:\Windows\System32\Tasks\Ad-Aware Update (Weekly)
 
==================== One Month Modified Files and Folders =======
 
2014-07-08 23:22 - 2014-07-08 23:21 - 00026390 _____ () C:\Users\Veronica\Desktop\FRST.txt
2014-07-08 23:21 - 2014-07-08 23:21 - 00000000 ___DC () C:\FRST
2014-07-08 23:21 - 2014-07-07 18:02 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-08 23:16 - 2014-07-08 23:16 - 02084352 _____ (Farbar) C:\Users\Veronica\Desktop\FRST64.exe
2014-07-08 23:11 - 2011-02-21 13:16 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA.job
2014-07-08 23:10 - 2013-01-23 22:59 - 01441002 _____ () C:\Windows\WindowsUpdate.log
2014-07-08 23:08 - 2006-11-02 05:46 - 00707584 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-08 23:05 - 2014-07-06 15:36 - 00000000 ____D () C:\ProgramData\Ad-Aware Browsing Protection
2014-07-08 23:05 - 2008-08-23 23:13 - 00000000 ____D () C:\ProgramData\HDD Thermometer
2014-07-08 23:02 - 2014-07-06 15:39 - 00002215 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-07-08 23:01 - 2014-07-08 23:01 - 00274336 _____ () C:\Windows\Minidump\Mini070814-01.dmp
2014-07-08 23:01 - 2010-08-23 15:57 - 00000000 ____D () C:\Windows\Minidump
2014-07-08 23:01 - 2006-11-02 08:42 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-08 23:01 - 2006-11-02 08:22 - 00003344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-08 23:01 - 2006-11-02 08:22 - 00003344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-08 23:00 - 2014-07-08 23:00 - 508951059 _____ () C:\Windows\MEMORY.DMP
2014-07-08 19:59 - 2012-04-05 16:52 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-08 19:20 - 2012-09-05 07:15 - 00000940 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA.job
2014-07-08 18:23 - 2014-07-08 18:23 - 00000752 _____ () C:\Users\Veronica\Desktop\SystemLook32 Scan 7-08-14.txt
2014-07-08 18:19 - 2014-07-08 18:19 - 00000586 _____ () C:\Users\Veronica\Desktop\SystemLook Scan 7-08-14.txt
2014-07-08 18:18 - 2014-07-08 18:18 - 00165376 _____ () C:\Users\Veronica\Desktop\SystemLook_x64.exe
2014-07-08 18:18 - 2014-07-08 18:15 - 00000584 _____ () C:\Users\Veronica\Desktop\SystemLook.txt
2014-07-08 18:14 - 2014-07-08 18:14 - 00113822 _____ () C:\Users\Veronica\Desktop\OTL Quick Scan After Fix 7-08-14.Txt
2014-07-08 18:13 - 2014-07-04 18:58 - 00113822 _____ () C:\Users\Veronica\Desktop\OTL.Txt
2014-07-08 17:51 - 2014-07-08 17:51 - 00139264 _____ () C:\Users\Veronica\Desktop\SystemLook.exe
2014-07-08 17:39 - 2006-11-02 08:42 - 00032642 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-08 10:10 - 2011-02-21 13:15 - 00000868 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core.job
2014-07-08 07:20 - 2012-09-05 07:15 - 00000918 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core.job
2014-07-08 04:09 - 2008-08-23 22:08 - 00000000 ____D () C:\Users\Veronica
2014-07-08 04:06 - 2010-11-03 23:29 - 00000000 ____D () C:\Users\Veronica\Downloads\Pulp Fiction (1994)
2014-07-08 04:02 - 2014-07-08 04:02 - 00000000 ____D () C:\Users\Veronica\AppData\Local\Adobe
2014-07-08 02:30 - 2014-07-08 02:30 - 00002258 _____ () C:\Users\Veronica\Desktop\Eset Scan 7-08-14.txt
2014-07-08 02:29 - 2014-07-08 02:29 - 00002258 _____ () C:\Users\Veronica\Desktop\ESET Online.txt
2014-07-07 22:47 - 2014-07-06 03:50 - 00006390 _____ () C:\Windows\PFRO.log
2014-07-07 20:16 - 2014-07-07 20:16 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-07-07 19:35 - 2010-02-12 20:01 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-07 19:14 - 2014-07-06 03:38 - 00000000 ___DC () C:\_OTL
2014-07-07 18:01 - 2014-07-07 18:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-07 18:01 - 2014-07-07 18:00 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-07 18:01 - 2010-02-12 20:01 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\Malwarebytes
2014-07-07 18:00 - 2010-02-12 20:01 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-07-07 17:35 - 2006-11-02 08:21 - 00393752 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-07 17:26 - 2014-07-07 17:26 - 00000000 ____D () C:\Program Files\Microsoft ATS
2014-07-07 05:07 - 2010-10-18 22:10 - 00000732 _____ () C:\Users\Veronica\AppData\Local\d3d9caps64.dat
2014-07-07 04:36 - 2014-07-03 20:21 - 00308148 _____ () C:\Windows\DPINST.LOG
2014-07-07 04:22 - 2008-05-06 19:22 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-07-07 03:38 - 2014-07-07 03:38 - 00001648 _____ () C:\Users\Veronica\Desktop\JRT.txt
2014-07-07 03:22 - 2010-07-03 03:21 - 00000000 ____D () C:\Windows\ERUNT
2014-07-07 03:21 - 2014-07-07 00:54 - 00000000 ___DC () C:\AdwCleaner
2014-07-06 23:24 - 2008-08-30 21:45 - 00001356 _____ () C:\Users\Veronica\AppData\Local\d3d9caps.dat
2014-07-06 20:55 - 2014-07-06 20:55 - 01016261 _____ (Thisisu) C:\Users\Veronica\Desktop\JRT.exe
2014-07-06 20:54 - 2014-07-06 20:54 - 01346519 _____ () C:\Users\Veronica\Desktop\adwcleaner_3.214.exe
2014-07-06 20:51 - 2014-07-06 20:51 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\Lavasoft
2014-07-06 20:35 - 2014-07-06 20:35 - 00002721 _____ () C:\Users\Veronica\Desktop\Result 7-06-14 Listparts Scan.txt
2014-07-06 20:32 - 2014-07-06 20:32 - 01025536 _____ (Farbar) C:\Users\Veronica\Desktop\ListParts64.exe
2014-07-06 17:47 - 2006-11-02 06:33 - 00000000 ____D () C:\Windows\system
2014-07-06 15:39 - 2014-07-06 15:39 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\LavasoftStatistics
2014-07-06 15:39 - 2014-07-06 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus
2014-07-06 15:37 - 2014-07-06 15:37 - 00000000 ____D () C:\Program Files\Lavasoft
2014-07-06 15:36 - 2014-07-06 15:36 - 00000000 ____D () C:\Users\Veronica\AppData\Local\adawarebp
2014-07-06 15:35 - 2009-01-21 22:37 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-07-06 12:42 - 2008-08-23 22:45 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-07-06 12:40 - 2014-07-06 12:40 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-07-06 12:37 - 2014-07-06 12:37 - 01707144 _____ () C:\Users\Veronica\Desktop\Adaware_Installer.exe
2014-07-06 12:27 - 2014-07-06 12:27 - 00000084 ___HC () C:\aaw7boot.cmd
2014-07-06 12:15 - 2014-06-24 20:30 - 00003618 _____ () C:\Windows\System32\Tasks\Ad-Aware Update (Weekly)
2014-07-06 03:49 - 2014-02-24 18:42 - 00014203 ____C () C:\aaw7boot.log
2014-07-06 03:49 - 2012-04-26 07:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-06 03:31 - 2014-07-06 03:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-05 20:16 - 2014-07-05 20:16 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-07-05 20:14 - 2014-07-05 20:14 - 00000000 ____D () C:\Program Files\Realtek
2014-07-05 20:07 - 2008-05-06 19:25 - 00000000 ____D () C:\Program Files\CONEXANT
2014-07-05 13:18 - 2014-07-05 13:18 - 02909752 _____ () C:\Users\Veronica\Desktop\Gia Video July 2014.AVI
2014-07-04 20:23 - 2011-04-21 20:02 - 00000064 _____ () C:\Windows\SysWOW64\rp_stats.dat
2014-07-04 20:23 - 2011-04-21 20:02 - 00000044 _____ () C:\Windows\SysWOW64\rp_rules.dat
2014-07-04 18:50 - 2008-08-28 18:12 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-07-04 18:39 - 2014-07-04 18:39 - 00602112 _____ (OldTimer Tools) C:\Users\Veronica\Desktop\OTL.exe
2014-07-04 15:33 - 2014-07-04 15:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-04 15:33 - 2014-07-04 15:33 - 00000000 _____ () C:\Windows\setupact.log
2014-07-04 13:30 - 2009-10-19 22:29 - 00000000 ____D () C:\Program Files (x86)\NCH Swift Sound
2014-07-04 13:28 - 2011-07-23 02:53 - 00000000 ____D () C:\Users\Veronica\AppData\Local\Deployment
2014-07-04 13:23 - 2012-10-25 00:41 - 00000000 ____D () C:\ProgramData\Freemake
2014-07-03 01:57 - 2014-07-03 01:57 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\spelling
2014-07-03 01:56 - 2014-07-03 01:56 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\repository
2014-07-03 01:56 - 2014-07-03 01:56 - 00000000 ____D () C:\Users\Veronica\.lawson
2014-07-03 00:24 - 2008-08-23 22:41 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-07-02 21:54 - 2010-03-01 20:00 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-07-01 22:41 - 2013-08-13 21:34 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-01 22:35 - 2008-05-06 19:36 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-01 22:35 - 2006-11-02 05:35 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-07-01 01:00 - 2011-10-08 18:25 - 00000000 ____D () C:\Program Files (x86)\MP3 Skype Recorder
2014-07-01 01:00 - 2008-05-06 19:06 - 00000000 ____D () C:\Windows\SMINST
2014-07-01 01:00 - 2006-11-02 06:34 - 00000000 ____D () C:\Windows\system32\spool
2014-07-01 01:00 - 2006-11-02 06:33 - 00000000 __RSD () C:\Windows\Media
2014-07-01 01:00 - 2006-11-02 06:33 - 00000000 ____D () C:\Windows\registration
2014-06-30 00:49 - 2014-06-30 00:49 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-06-30 00:49 - 2014-06-30 00:49 - 00000000 ____D () C:\cpqsystem
2014-06-29 21:21 - 2014-06-29 21:20 - 00000000 ____D () C:\Users\Veronica\Desktop\AdAware Scans
2014-06-29 21:11 - 2014-06-29 21:11 - 00000000 ____D () C:\Users\Veronica\Desktop\Old Firefox Data
2014-06-29 19:30 - 2014-06-29 19:30 - 00001040 _____ () C:\Users\Veronica\Desktop\DriverMax.lnk
2014-06-29 19:30 - 2014-06-29 19:30 - 00000000 ____D () C:\Users\Veronica\AppData\Local\Innovative Solutions
2014-06-29 19:30 - 2014-06-29 19:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
2014-06-29 19:30 - 2014-06-29 19:30 - 00000000 ____D () C:\Program Files (x86)\Innovative Solutions
2014-06-29 14:09 - 2012-04-05 16:52 - 00003682 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-29 14:09 - 2012-04-05 16:51 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-29 14:09 - 2011-05-18 14:20 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-29 02:19 - 2014-06-28 00:47 - 00000000 ____D () C:\Users\Veronica\AppData\Roaming\ImgBurn
2014-06-28 00:25 - 2014-06-28 00:25 - 00001687 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk
2014-06-28 00:25 - 2014-06-28 00:25 - 00001675 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-06-28 00:25 - 2014-06-28 00:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn
2014-06-27 23:58 - 2014-06-27 23:58 - 00000000 ____D () C:\Program Files (x86)\Memory Test
2014-06-27 23:53 - 2014-06-27 23:53 - 00069043 _____ () C:\Users\Veronica\Desktop\memtest86+-4.20.iso.zip
2014-06-26 22:20 - 2014-06-26 22:19 - 94714880 _____ (AVAST Software) C:\Users\Veronica\Desktop\avast_free_antivirus_setup.exe
2014-06-25 21:18 - 2013-11-10 19:26 - 00000000 ____D () C:\Program Files (x86)\SpeedFan
2014-06-25 21:17 - 2013-11-10 19:26 - 00000817 _____ () C:\Users\Administrator\Desktop\SpeedFan.lnk
2014-06-25 21:17 - 2013-11-10 19:26 - 00000045 _____ () C:\Windows\SysWOW64\initdebug.nfo
2014-06-25 21:16 - 2014-06-25 21:16 - 00003177 _____ () C:\Users\Veronica\Desktop\hwm_smbus.txt
2014-06-25 21:15 - 2014-06-25 21:15 - 00027252 _____ () C:\Users\Veronica\Desktop\HWMonitor - Monitoring Data.txt
2014-06-25 21:13 - 2014-06-25 21:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWMonitor
2014-06-25 21:09 - 2014-06-25 21:06 - 00000000 ____D () C:\Program Files\WhoCrashed
2014-06-25 21:06 - 2014-06-25 21:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2014-06-25 21:00 - 2014-06-25 21:00 - 01141408 _____ ( ) C:\Users\Veronica\Desktop\hwmonitor_1.25-setup.exe
2014-06-25 20:58 - 2014-06-25 20:58 - 02668480 _____ (Resplendence Software Projects Sp. ) C:\Users\Veronica\Desktop\whocrashedSetup.exe
2014-06-25 20:37 - 2014-06-25 20:37 - 00000000 ____D () C:\Program Files (x86)\NirSoft
2014-06-25 20:36 - 2014-06-25 20:35 - 00141480 _____ () C:\Users\Veronica\Desktop\bluescreenview_setup.exe
2014-06-21 10:06 - 2011-02-21 13:16 - 00003900 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA
2014-06-21 10:06 - 2011-02-21 13:15 - 00003504 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core
2014-06-17 19:27 - 2014-07-05 20:10 - 04001752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-06-17 19:17 - 2014-07-05 20:10 - 00856992 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2014-06-17 16:08 - 2014-07-05 20:10 - 01205934 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-06-17 15:41 - 2014-07-05 20:10 - 64228864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-06-17 13:32 - 2014-07-05 20:10 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-06-14 12:15 - 2011-06-05 23:21 - 00000000 __HDC () C:\ProgramData\{4EF77D37-415C-4195-AE30-904ED23A3940}
2014-06-13 16:24 - 2014-07-05 20:10 - 02804952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-06-12 20:18 - 2009-01-24 12:23 - 00000000 ____D () C:\Users\Veronica\Documents\EMPLOYMENT
2014-06-11 17:08 - 2014-07-05 20:10 - 00949464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-06-11 11:44 - 2014-07-05 20:10 - 01024728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-06-09 16:57 - 2014-07-05 20:10 - 02860248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-06-09 13:52 - 2014-07-05 20:09 - 01530048 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2014-06-09 10:59 - 2014-07-05 20:09 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 26352128 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axxA.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 22157824 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxxA.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 15983104 _____ (ATI Technologies Inc.) C:\Windows\system32\atio6axxB.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 11513856 _____ (ATI Technologies Inc.) C:\Windows\SysWOW64\atioglxxB.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 07040928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64A.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 06036160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdagA.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 05205504 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64B.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 03839488 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atiumdagB.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 01828864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdmv.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 01113088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6v.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2014-06-08 07:58 - 2014-06-30 20:13 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2014-06-08 07:58 - 2014-06-30 20:13 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2014-06-08 07:58 - 2014-06-30 20:13 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2014-06-08 07:58 - 2014-06-30 20:13 - 00142280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 00125824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 00051152 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 00045056 _____ () C:\Windows\system32\atitmp64.dll
2014-06-08 07:58 - 2014-06-30 20:13 - 00038768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 11837976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdagA.sys
2014-06-08 07:58 - 2014-06-30 20:12 - 05357080 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdagB.sys
2014-06-08 07:58 - 2014-06-30 20:12 - 04782960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticldxva.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 04292192 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticldx6a.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 02852480 _____ () C:\Windows\SysWOW64\aticldxva.cap
2014-06-08 07:58 - 2014-06-30 20:12 - 02818784 _____ () C:\Windows\system32\aticldx6a.cap
2014-06-08 07:58 - 2014-06-30 20:12 - 01094024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00929736 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00612888 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpagA.sys
2014-06-08 07:58 - 2014-06-30 20:12 - 00550456 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-06-08 07:58 - 2014-06-30 20:12 - 00550456 _____ () C:\Windows\system32\atiapfxx.blb
2014-06-08 07:58 - 2014-06-30 20:12 - 00466944 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atildimgx.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atildimgy.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-06-08 07:58 - 2014-06-30 20:12 - 00331288 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-06-08 07:58 - 2014-06-30 20:12 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2014-06-08 07:58 - 2014-06-30 20:12 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00041984 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00033280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00017920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-06-08 07:58 - 2014-06-30 20:12 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
 
Some content of TEMP:
====================
C:\Users\Veronica\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-08 23:09
 
==================== End Of Log ============================
 
Here's the Additions Log:
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2014 01
Ran by Veronica at 2014-07-08 23:23:54
Running from C:\Users\Veronica\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Ad-Aware Antivirus (Enabled - Up to date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AS: Ad-Aware Antivirus (Enabled - Up to date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}
 
==================== Installed Programs ======================
 
 Sansa Media Converter (HKLM-x32\...\{FC053571-8507-44E4-8B6D-AACEAB8CA57C}) (Version: 1.0-B4.256 - )
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0026-0000-0000-0000000FF1CE}_WebDesigner_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-003B-0000-0000-0000000FF1CE}_PRJPRO_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
Ad-Aware Antivirus (HKLM\...\{9F965DAA-2FFD-41E3-8125-893BFBBE01D6}_AdAwareUpdater) (Version: 11.2.5952.0 - Lavasoft)
AdAwareInstaller (Version: 11.2.5952.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.2.5952.0 - Lavasoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 2.7.1.19610 - Adobe Systems Incorporated) Hidden
Adobe Bridge 1.0 (HKLM-x32\...\{B74D4E10-6884-0000-0000-000000000103}) (Version: 001.000.004 - Adobe Systems)
Adobe Common File Installer (x32 Version: 1.00.0000 - Adobe System Incorporated) Hidden
Adobe Digital Editions (HKLM-x32\...\Digital Editions) (Version:  - )
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Help Center 1.0 (x32 Version: 001.000.000 - Adobe Systems) Hidden
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Photoshop CS2 (x32 Version: 9.0 - Adobe Systems, Inc.) Hidden
Adobe Reader X (10.1.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Adobe Stock Photos 1.0 (x32 Version: 001.000.000 - Adobe Systems) Hidden
Amplify (HKCU\...\8a221556f1ed7894) (Version: 1.0.27.0 - Matt Spinelli's Amplify)
AntimalwareEngine (Version: 3.0.0.56 - Lavasoft) Hidden
Apple Application Support (HKLM-x32\...\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}) (Version: 2.1.7 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{5324EDAC-DED3-3A65-6881-84B4B8A8A7F9}) (Version: 3.0.745.0 - ATI Technologies, Inc.)
BeadTool 4.4.22 (HKLM-x32\...\BeadTool 4_is1) (Version: 4.4.22 - Fired Up Software)
Cake Mania (HKLM-x32\...\Cake Mania) (Version:  - GameHouse, Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
Catalyst Control Center HydraVision Full (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
CCC Help English (x32 Version: 2008.0923.2138.36956 - ATI) Hidden
ccc-core-static (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
ccc-utility64 (Version: 2008.0923.2139.36956 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.0 - COMODO)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.44 - DivX, LLC)
DriverMax 7 (HKLM-x32\...\DMX5_is1) (Version: 7.34.0.423 - Innovative Solutions)
Dropbox (HKCU\...\Dropbox) (Version: 1.6.18 - Dropbox, Inc.)
ebgcInfra (x32 Version: 1.1.0 - Default Company Name) Hidden
ebgcRes (x32 Version: 1.0.0 - Default Company Name) Hidden
ebgcSDK (x32 Version: 1.1 - Default Company Name) Hidden
eFax Messenger (HKLM-x32\...\{DF6DA606-904D-4C18-823F-A4CFC3035E53}) (Version: 4.4.1.528 - j2 Global)
EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version:  - SEIKO EPSON Corporation)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Facebook Messenger 2.1.4631.0 (HKLM-x32\...\{1234C1F4-603F-4C34-8796-3544CF8A83F5}) (Version: 2.1.4631.0 - Facebook)
Gateway Recovery Center Installer (HKLM-x32\...\{7F3BCF8A-8E02-4659-AF25-F9AB66BD6718}) (Version: 1.01.044 - Gateway)
GearDrvs (x32 Version: 1.00.0000 - GEAR Software) Hidden
Google Chrome (HKCU\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Talk (remove only) (HKLM-x32\...\{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk) (Version:  - )
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
HDD Thermometer (HKLM-x32\...\HDD Thermometer) (Version: 1.3 - RSD Software Inc.)
HP Print Diagnostic Utility (HKLM-x32\...\{AD3891EA-5731-4AEA-8B9D-D9AE5F92542A}) (Version: 1.11.0001 - Hewlett-Packard)
HydraVision (x32 Version: 4.2.86.0 - ATI Technologies Inc.) Hidden
InterActual Player (HKLM-x32\...\InterActual Player) (Version:  - )
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 4.3.1 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 4.3.1 - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Marvell Miniport Driver (HKLM\...\{5254156F-AA77-499A-B7C1-D5581D44E788}) (Version: 10.51.4.3 - Marvell)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Automated Troubleshooting Services Shim (HKLM\...\{c9920352-04e6-469d-bab8-e2b9c7c75415}.sdb) (Version:  - )
Microsoft Expression Web (HKLM-x32\...\WebDesigner) (Version: 12.0.6215.1000 - Microsoft Corporation)
Microsoft Expression Web (x32 Version: 12.0.6215.1000 - Microsoft Corporation) Hidden
Microsoft Expression Web MUI (English) (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Expression Web Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0026-0000-0000-0000000FF1CE}_WebDesigner_{9037FDA8-8383-4B6F-859D-D49C3C625225}) (Version:  - Microsoft)
Microsoft Money Essentials (HKLM-x32\...\Money2007b) (Version: 16 - Microsoft)
Microsoft Money Shared Libraries (x32 Version: 16.0.0.705 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 Trial (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Project 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-003B-0000-0000-0000000FF1CE}_PRJPRO_{8446EB22-A746-46DC-B1BD-E0DFA1F3CDDA}) (Version:  - Microsoft)
Microsoft Office Project 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Project MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Project Professional 2007 (HKLM-x32\...\PRJPRO) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Project Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Office Visio 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{CE144BF4-4950-4CDB-A5F7-CCE1888F49CB}) (Version:  - Microsoft)
Microsoft Office Visio 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0054-0409-0000-0000000FF1CE}_VISPRO_{7DA87C7E-E8A7-473E-ADFF-1B6BECCCADA7}) (Version:  - Microsoft)
Microsoft Office Visio MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio Professional 2007 (HKLM-x32\...\VISPRO) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Visio Professional 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Search Enhancement Pack (x32 Version: 3.0.133.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 30.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 en-US)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MP3 Skype Recorder (HKLM-x32\...\{CB606F47-7D0E-40DF-95BB-0E5413A1295F}) (Version: 3.1.3 - Alexander Nikiforov)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Napster Burn Engine (x32 Version: 3.5.0000 - Roxio) Hidden
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version:  - )
OverDrive Media Console (HKLM-x32\...\{34D6EED8-7650-4E1C-BC26-F5B2DDE185C6}) (Version: 3.1.1 - OverDrive, Inc.)
QuickTime (HKLM-x32\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7272 - Realtek Semiconductor Corp.)
REALTEK RTL8187B Wireless LAN Driver (HKLM-x32\...\{7095FD27-37F0-4750-9DE8-D37DC0043706}) (Version: Package:1.00.0008 Driver:6.1135.625.2008 - REALTEK Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version:  - Realtek Semiconductor Corp.)
Sandlot Games Client Services 1.2.2 (HKLM-x32\...\Sandlot Games Client Services 1.2.2_is1) (Version:  - Sandlot Games)
Segoe UI (x32 Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Shipping Assistant 3.5 (HKLM-x32\...\{15C77FC3-8137-4A5E-8F81-F559045DD6B0}) (Version: 3.5.10.0 - United States Postal Service)
Skins (x32 Version: 2008.0923.2139.36956 - ATI) Hidden
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Smart Copy (HKLM-x32\...\{17068829-10EE-4581-BDC8-C53C483694A3}) (Version: 1.2.17 - IOI)
Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_PCI_HSF) (Version:  - )
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.0 - Safer Networking Limited)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0026-0000-0000-0000000FF1CE}_WebDesigner_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-003B-0000-0000-0000000FF1CE}_PRJPRO_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM-x32\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_PRJPRO_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_VISPRO_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_WebDesigner_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-003B-0000-0000-0000000FF1CE}_PRJPRO_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (HKLM-x32\...\{90120000-0026-0000-0000-0000000FF1CE}_WebDesigner_{620E77C0-CDFE-4C14-AAEB-830ABB65864C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (HKLM-x32\...\{90120000-0026-0000-0000-0000000FF1CE}_WebDesigner_{8153EC80-C988-4336-8DAF-6D99C0D26E0C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_PRJPRO_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_VISPRO_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_WebDesigner_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-003B-0000-0000-0000000FF1CE}_PRJPRO_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0026-0000-0000-0000000FF1CE}_WebDesigner_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-003B-0000-0000-0000000FF1CE}_PRJPRO_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0051-0000-0000-0000000FF1CE}_VISPRO_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2007 System (KB2539530) (HKLM-x32\...\{90120000-0026-0000-0000-0000000FF1CE}_WebDesigner_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB957245) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{7332DE60-DC79-4578-A60A-A5EA0D6E032B}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB957245) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{7332DE60-DC79-4578-A60A-A5EA0D6E032B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{319951E8-E272-4F02-A752-DD6FCD7D4519}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB957246) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{6F0E4983-E419-4591-B7DD-EFB0073D3E47}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{9680B76D-042F-4FF2-BD87-6E859531452D}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Project 2007 Help (KB963668) (HKLM-x32\...\{90120000-00B4-0409-0000-0000000FF1CE}_PRJPRO_{1DF07773-4289-4998-BC2C-83539AD85C50}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_PRJPRO_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_VISPRO_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_WebDesigner_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Visio 2007 Help (KB957251) (HKLM-x32\...\{90120000-0054-0409-0000-0000000FF1CE}_VISPRO_{24F43C74-6200-432B-98C7-85AC1CF1A7AF}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vista Codec Package (HKLM-x32\...\{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}) (Version: 4.7.3 - Shark007)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}) (Version: 8.0.0.35 - GRISOFT, s.r.o.)
Visual C++ 8.0 Runtime Setup Package (x64) (HKLM-x32\...\{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}) (Version: 9.0.0.623 - AVG Technologies CZ, s.r.o.)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version:  - NCH Software)
WhoCrashed 5.01 (HKLM\...\WhoCrashed_is1) (Version:  - Resplendence Software Projects Sp.)
Windows Installer Clean Up (HKLM-x32\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version:  - )
 
==================== Restore Points  =========================
 
17-05-2014 04:06:16 Windows Update
17-05-2014 18:52:16 Ad-Aware Checkpoint
04-06-2014 14:16:24 Ad-Aware Checkpoint
14-06-2014 19:12:45 Ad-Aware Checkpoint
27-06-2014 04:41:18 Ad-Aware Checkpoint
29-06-2014 09:06:57 Ad-Aware Checkpoint
29-06-2014 21:27:51 Ad-Aware Checkpoint
30-06-2014 02:25:05 Ad-Aware Checkpoint
30-06-2014 02:49:10 Ad-Aware Checkpoint
30-06-2014 03:30:52 Ad-Aware Checkpoint
30-06-2014 04:00:34 Ad-Aware Checkpoint
30-06-2014 07:45:07 DMX_DriverMax Driver Installation
30-06-2014 07:48:30 Device Driver Package Install: Hewlett-Packard Company System devices
01-07-2014 03:07:24 DMX_DriverMax Driver Installation
01-07-2014 03:09:07 Device Driver Package Install: AMD System devices
01-07-2014 03:10:15 DMX_DriverMax Driver Installation
01-07-2014 03:11:03 Device Driver Package Install: Advanced Micro Devices Sound, video and game controllers
01-07-2014 03:14:21 Device Driver Package Install: Advanced Micro Devices, Inc. Display adapters
01-07-2014 05:05:32 DMX_DriverMax Driver Installation
01-07-2014 05:43:04 Restore Operation
01-07-2014 07:16:34 Restore Operation
01-07-2014 08:15:55 Device Driver Package Install: ATI Technologies Inc. Display adapters
01-07-2014 08:38:36 DMX_DriverMax Driver Installation
01-07-2014 14:33:20 DMX_DriverMax Driver Installation
01-07-2014 14:34:35 Device Driver Package Install: Marvell Network adapters
02-07-2014 01:34:21 DMX_DriverMax Driver Installation
02-07-2014 01:41:05 Device Driver Package Install: TechnoScope Co., Ltd.
02-07-2014 05:14:28 Windows Update
03-07-2014 05:08:16 DMX_DriverMax Driver Installation
03-07-2014 05:15:59 Device Driver Package Install: Matrox Graphics Inc. System devices
03-07-2014 05:31:15 DMX_DriverMax Driver Installation
03-07-2014 05:34:57 Device Driver Package Install: BYD COMPANY LIMITED System devices
04-07-2014 03:15:39 DMX_DriverMax Driver Installation
04-07-2014 09:49:55 DMX_DriverMax Driver Installation
04-07-2014 13:25:21 Device Driver Package Install: Intel Corporation
04-07-2014 22:25:12 DMX_DriverMax Driver Installation
04-07-2014 22:35:43 Device Driver Package Install: Advanced Micro Devices IDE ATA/ATAPI controllers
06-07-2014 02:55:20 DMX_DriverMax Driver Installation
06-07-2014 03:08:26 Device Driver Package Install: Silicon Image Storage controllers
06-07-2014 03:13:00 Device Driver Package Install: Realtek Semiconductor Corp. Sound, video and game controllers
06-07-2014 10:39:14 OTL Restore Point - 7/6/2014 3:39:14 AM
06-07-2014 19:25:10 Ad-Aware Checkpoint
06-07-2014 19:38:36 AA11
06-07-2014 22:34:52 AA11
07-07-2014 00:35:57 DMX_DriverMax Driver Installation
07-07-2014 00:45:51 Device Driver Package Install: Realtek Semiconductor Corp. Universal Serial Bus controllers
07-07-2014 01:04:00 DMX_DriverMax Driver Installation
07-07-2014 01:06:23 DMX_DriverMax Driver Installation
07-07-2014 01:16:29 DMX_DriverMax Driver Installation
07-07-2014 01:20:16 DMX_DriverMax Driver Installation
07-07-2014 02:15:23 OTL Restore Point - 7/6/2014 7:15:23 PM
07-07-2014 05:49:03 AA11
07-07-2014 06:10:35 OTL Restore Point - 7/6/2014 11:10:34 PM
07-07-2014 11:00:13 DMX_DriverMax Driver Installation
07-07-2014 11:14:14 DMX_DriverMax Driver Installation
09-07-2014 00:36:25 OTL Restore Point - 7/8/2014 5:36:25 PM
 
==================== Hosts content: ==========================
 
2006-11-02 05:34 - 2014-07-06 23:12 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {033CCE83-43D3-4B38-A26D-AE9C5D255A67} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA => C:\Users\Veronica\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {0A26EEED-C52B-455C-9C25-341C4023D5D2} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core => C:\Users\Veronica\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-20] (Microsoft Corporation)
Task: {333D67B4-A84C-44EE-8328-07146BE59E74} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-29] (Adobe Systems Incorporated)
Task: {667AFA98-51F8-48A3-AD98-CECE7A2E03D4} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {7C638E5B-ECE5-4424-A7E5-2C913CA682E9} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {9B211E06-79BC-4479-B720-2228DB3172CA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {A906C3C4-8F56-4BFF-BC79-73BD08D7471E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core => C:\Users\Veronica\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-21] (Google Inc.)
Task: {BFC0B469-2915-49F3-826C-87CB0B8E49C0} - System32\Tasks\{2918B129-45DE-450D-B91E-F941D75CAED5} => Firefox.exe http://www.skype.com...8;LastError=404
Task: {D4D934C6-EE42-4CFD-A44F-292766875D79} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {DD0CA9F4-5618-4D5A-90BD-19F5712E7343} - System32\Tasks\{72DF3055-A941-4AF6-AF3D-6585AB75E96B} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {DE816AE4-81E4-4FCB-8152-E7AA266CC1A5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA => C:\Users\Veronica\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-21] (Google Inc.)
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-20] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core.job => C:\Users\Veronica\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA.job => C:\Users\Veronica\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000Core.job => C:\Users\Veronica\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2932777127-504153465-3726424614-1000UA.job => C:\Users\Veronica\AppData\Local\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-05-21 03:22 - 2014-05-21 03:22 - 02135232 _____ () C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
2014-06-03 15:47 - 2014-06-03 15:47 - 00706864 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe
2014-06-03 16:19 - 2014-06-03 16:19 - 00103800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_thread-vc100-mt-1_55.dll
2014-06-03 16:19 - 2014-06-03 16:19 - 00024440 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_system-vc100-mt-1_55.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00033656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_chrono-vc100-mt-1_55.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00055680 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_date_time-vc100-mt-1_55.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00123776 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_filesystem-vc100-mt-1_55.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 10070888 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareServiceKernel.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00685904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\SQLite.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 03393352 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\RCF.dll
2014-06-03 16:19 - 2014-06-03 16:19 - 00788856 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_regex-vc100-mt-1_55.dll
2014-06-03 16:17 - 2014-06-03 16:17 - 00604520 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareActivation.dll
2014-06-03 16:19 - 2014-06-03 16:19 - 00158032 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\pugixml.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00360312 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareApplicationUpdater.dll
2014-06-03 16:19 - 2014-06-03 16:19 - 00149840 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\libssh2.dll
2014-06-03 16:19 - 2014-06-03 16:19 - 00106824 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\zlib.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00142696 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareGamingMode.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00098648 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareReset.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00120152 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTime.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00290168 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareDefinitionsUpdater.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00198024 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareDefinitionsUpdaterScheduler.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00417128 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareIgnoreList.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00245608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareQuarantine.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00336752 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiMalwareEngine.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00212336 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiRootkitEngine.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00509808 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareScannerHistory.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00610144 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareScanner.dll
2014-06-03 16:19 - 2014-06-03 16:19 - 00035192 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_timer-vc100-mt-1_55.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00326000 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareScannerScheduler.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00453496 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareRealTimeProtection.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00227688 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareIncompatibles.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00218976 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiSpam.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00171368 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiPhishing.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00786800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareParentalControl.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 01936744 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareWebProtection.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00422256 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareEmailProtection.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00650608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareNetworkProtection.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00358744 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwarePromo.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00298336 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareFeedback.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00371576 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareThreatWorkAlliance.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00154464 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\SecurityCenter.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 07715160 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe
2014-06-03 16:18 - 2014-06-03 16:18 - 00500088 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_locale-vc100-mt-1_55.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00364896 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\HtmlFramework.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00066904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\DllStorage.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00803696 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTrayDefaultSkin.dll
2014-06-03 16:18 - 2014-06-03 16:18 - 00139608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\Localization.dll
2005-04-01 10:02 - 2005-04-01 10:02 - 00215040 _____ () C:\Program Files (x86)\HDD Thermometer\HDD Thermometer.exe
2008-03-16 07:02 - 2008-03-16 07:02 - 00053248 _____ () C:\Program Files (x86)\IOI\ButtonMonitor.exe
2014-06-10 21:53 - 2014-06-05 06:58 - 04217672 _____ () C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-10 21:53 - 2014-06-05 06:58 - 00414536 _____ () C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-10 21:53 - 2014-06-05 06:58 - 01732424 _____ () C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
2014-06-10 21:53 - 2014-06-05 06:58 - 14612296 _____ () C:\Users\Veronica\AppData\Local\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
AlternateDataStreams: C:\Users\Veronica\Downloads\INGLORIOUS BASTARDS 2009_DVDRIP_KNIGHT RIDERS RELEASE_XVID.avi:TOC.WMV
 
==================== Safe Mode (whitelisted) ===================
 
 
==================== EXE Association (whitelisted) =============
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: McAfee ScanAndRepair Svc => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^BigFix.lnk => C:\Windows\pss\BigFix.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Veronica^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk => C:\Windows\pss\Adobe Gamma.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Veronica^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AVG9_TRAY => C:\PROGRA~2\AVG\AVG9\avgtray.exe
MSCONFIG\startupreg: DivXMediaServer => "C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe"
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiweeHook => "C:\Program Files (x86)\Kiwee Toolbar\3.2\kwtbaim.exe"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Recordpad => "C:\Program Files (x86)\NCH Swift Sound\Recordpad\recordpad.exe" -logon
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Veronica\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: UnlockerAssistant => "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
MSCONFIG\startupreg: Windows Defender => %ProgramFiles%\Windows Defender\MSASCui.exe -hide
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/08/2014 11:03:38 PM) (Source: MsiInstaller) (EventID: 1013) (User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Installation cannot proceed on this operating system.
 
Error: (07/08/2014 11:02:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2014 05:49:10 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\VERONICA\APPDATA\LOCAL\INNOVATIVE SOLUTIONS\DRIVERMAX\AGENT\UPLOADS\V8MA3XKQ9WDHG9K492SE3802NI0R9UEORPHHGOJHW64IL6NOY5\SYSTEM> in the hash map cannot be updated.
 
Context:  Application, SystemIndex Catalog
 
 
Details:
A device attached to the system is not functioning.   (0x8007001f)
 
Error: (07/08/2014 05:49:10 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: The entry <C:\USERS\VERONICA\APPDATA\LOCAL\INNOVATIVE SOLUTIONS\DRIVERMAX\AGENT\UPLOADS\V8MA3XKQ9WDHG9K492SE3802NI0R9UEORPHHGOJHW64IL6NOY5\SYSTEM> in the hash map cannot be updated.
 
Context:  Application, SystemIndex Catalog
 
 
Details:
A device attached to the system is not functioning.   (0x8007001f)
 
Error: (07/08/2014 05:43:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/08/2014 05:36:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddWin32ServiceFiles: Unable to back up image of service getPlusHelper since QueryServiceConfig API failed
 
System Error:
The system cannot find the file specified.
 
Error: (07/08/2014 03:09:41 PM) (Source: Chrome) (EventID: 1) (User: Veronica-PC)
Description: Chrome has encountered a fatal error.
ver=35.0.1916.153;lang=;guid=2F92D2767EE94F15AFD8E546C86C6298;is_machine=0;oop=1;upload=1;minidump=C:\Users\Veronica\AppData\Local\Google\CrashReports\a53483bd-a01f-418b-94b4-1ac04ec2ee3a.dmp
 
Error: (07/08/2014 06:36:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application wmplayer.exe, version 11.0.6002.18311, time stamp 0x4c8e2d72, faulting module kernel32.dll, version 6.0.6002.19034, time stamp 0x52f2ecb1, exception code 0xc00000fd, fault offset 0x00011643,
process id 0xa4, application start time 0xwmplayer.exe0.
 
Error: (07/07/2014 10:51:02 PM) (Source: MsiInstaller) (EventID: 1013) (User: NT AUTHORITY)
Description: Product: Skype Click to Call -- Installation cannot proceed on this operating system.
 
Error: (07/07/2014 10:48:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (07/08/2014 11:09:21 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
 
Error: (07/08/2014 11:08:17 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
 
Error: (07/08/2014 11:02:21 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: amdkmafd
Lbd
 
Error: (07/08/2014 11:02:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: AG Windows Service%%3
 
Error: (07/08/2014 11:02:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: AG Core Services%%3
 
Error: (07/08/2014 11:01:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:18:50 PM on 7/8/2014 was unexpected.
 
Error: (07/08/2014 05:48:33 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
 
Error: (07/08/2014 05:43:15 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: amdkmafd
Lbd
 
Error: (07/08/2014 05:43:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: AG Windows Service%%3
 
Error: (07/08/2014 05:43:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: AG Core Services%%3
 
 
Microsoft Office Sessions:
=========================
Error: (09/07/2008 08:43:13 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 195432 seconds with 4500 seconds of active time.  This session ended with a crash.
 
Error: (09/05/2008 02:25:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 91806 seconds with 4620 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-07-08 23:23:10.492
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:23:08.554
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:23:06.361
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:23:04.207
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:11:27.150
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:11:24.966
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:11:20.196
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:11:17.974
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:05:18.175
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-08 23:05:16.101
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 84%
Total physical RAM: 3838.27 MB
Available physical RAM: 611.84 MB
Total Pagefile: 7893.02 MB
Available Pagefile: 4116.43 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
 
==================== Drives ================================
 
Drive c: (Partition_1) (Fixed) (Total:580.72 GB) (Free:60.37 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Recovery) (Fixed) (Total:15.45 GB) (Free:7.9 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (FreeAgent Drive) (Fixed) (Total:931.51 GB) (Free:931.24 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596 GB) (Disk ID: CF22C39A)
Partition 1: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=581 GB) - (Type=07 NTFS)
 
========================================================
Disk: 5 (Size: 932 GB) (Disk ID: A4B57300)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

  • 0

#40
periwinkle
Posted 09 July 2014 - 12:42 AM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

MB just showed it again:  Malicious website blocked:  www.iesearch.com.  

 

I tried to look at the site on my own and MB put up a big white screen that said it was blocking this site for my protection.  I use Chrome pretty much exclusively, so I don't know if this is another virus and maybe it's linked with Internet Explorer's search box?  I don't even have IE open right now.


  • 0

Advertisements

#41
periwinkle
Posted 09 July 2014 - 12:47 AM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

 

Malwarebytes just occasionally puts up a warning and if I happen to be at the computer, it says something about an outbound iesearch.

 

Can you let me know exactly what it says next time you see it. The Internet explorer settings look fine in the last OTL log

 

 

 

MB just put up a warning again.  It said "Malicious Website Blocked for your protection.  www.iesearch.com".  I tried to visit this site on my own to check it out and MB puts up a big white screen saying it's protecting me from this site.  I don't know if it's related to Internet Explorer, but I use Chrome pretty much exclusively.  I'm wondering if it's a search box in IE or something like that.  I don't even have IE open right now.


  • 0

#42
periwinkle
Posted 09 July 2014 - 12:52 AM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

Joe, after what you wrote about not finding ilivid, I ran another ListParts scan.  I don't know if this gives you any info.  I didn't see anything that mentions ilivid, but I'm not sure what to look for.  OH, and I hooked up the terabyte drive, so that's the 5th disk drive.

 

Here are the results:

 

ListParts by Farbar Version: 17-04-2014
Ran by Veronica (administrator) on 08-07-2014 at 23:34:29
Windows Vista (X64)
Running From: C:\Users\Veronica\Desktop
Language: 0409
************************************************************
 
========================= Memory info ====================== 
 
Percentage of memory in use: 82%
Total physical RAM: 3838.27 MB
Available physical RAM: 655.89 MB
Total Pagefile: 7893.02 MB
Available Pagefile: 4127.04 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB
 
======================= Partitions =========================
 
1 Drive c: (Partition_1) (Fixed) (Total:580.72 GB) (Free:60.37 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
2 Drive d: (Recovery) (Fixed) (Total:15.45 GB) (Free:7.9 GB) NTFS ==>[System with boot components (obtained from reading drive)]
4 Drive f: (FreeAgent Drive) (Fixed) (Total:931.51 GB) (Free:931.24 GB) NTFS
 
  Disk ###  Status      Size     Free     Dyn  Gpt
  --------  ----------  -------  -------  ---  ---
  Disk 0    Online       596 GB      0 B         
  Disk 1    No Media        0 B      0 B         
  Disk 2    No Media        0 B      0 B         
  Disk 3    No Media        0 B      0 B         
  Disk 4    No Media        0 B      0 B         
  Disk 5    Online       932 GB      0 B         
 
Partitions of Disk 0:
===============
 
  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
  Partition 1    Primary             15 GB    32 KB
  Partition 2    Primary            581 GB    15 GB
 
======================================================================================================
 
Disk: 0
Partition 1
Type  : 07
Hidden: No
Active: No
 
  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 1     D   Recovery     NTFS   Partition     15 GB  Healthy            
 
======================================================================================================
 
Disk: 0
Partition 2
Type  : 07
Hidden: No
Active: Yes
 
  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 2     C   Partition_1  NTFS   Partition    581 GB  Healthy    System (partition with boot components)  
 
======================================================================================================
 
Partitions of Disk 5:
===============
 
  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
  Partition 1    Primary            932 GB    32 KB
 
======================================================================================================
 
Disk: 5
Partition 1
Type  : 07
Hidden: No
Active: No
 
  Volume ###  Ltr  Label        Fs     Type        Size     Status     Info
  ----------  ---  -----------  -----  ----------  -------  ---------  --------
* Volume 7     F   FreeAgent D  NTFS   Partition    932 GB  Healthy            
 
======================================================================================================
============================== MBR Partition Table ==================
 
==============================
Partitions of Disk 0:
===============
Disk ID: CF22C39A
Partition 1: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=581 GB) - (Type=07 NTFS)
 
==============================
Partitions of Disk 5:
===============
Disk ID: A4B57300
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)
 
 
****** End Of Log ****** 

  • 0

#43
periwinkle
Posted 09 July 2014 - 06:52 PM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

OKay, I guess this is what you've been asking about...I had a blue screen shutdown last night.  While I was running CC Cleaner and it asked if I wanted to close Chrome, as soon as it started to close Google, I got a blue screen!  This has happened before when I tried shutting Chrome down by closing Google in the Task Manager.  However, CC Cleaner shouldn't cause a blue screen.

 

The second thing is:  I had my first shutdown in about a month today.  I left the computer on to go to work and it was off when I got home.  When I started it up again, it showed that Windows had not shut down normally.


  • 0

#44
zep516
Posted 09 July 2014 - 07:18 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,090 posts

Hello,

 

Late day for me today.

 

2 Things

 

post the who crashed report, you seem to have that program installed--> (2014-06-25 21:06 - 2014-06-25 21:09 - 00000000 ____D () C:\Program Files\WhoCrashed)

 

That will provide bluescreen information for me.

 

Also:

 

You had Bitdefender Anti virus installed at one time, is that correct?  What version was it?  A free version ?

 

I'm currently looking at the frst log you posted earlier. Thanks for that.

 

Joe


  • 0

#45
periwinkle
Posted 09 July 2014 - 08:03 PM

periwinkle

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 298 posts

Here's the WhoCrashedIt Report:

 

System Information (local)

computer name: VERONICA-PC
windows version: Windows Vista Service Pack 2, 6.0, build: 6002
windows dir: C:\Windows
Hardware: GT5694, Gateway, RS780
CPU: AuthenticAMD AMD Phenom™ 9100e Quad-Core Processor AMD586, level: 16
4 logical processors, active mask: 15
RAM: 4024713216 total
VM: 2147352576, free: 1951612928


 

Crash Dump Analysis

Crash dump directory: C:\Windows\Minidump

Crash dumps are enabled on your computer.

No valid crash dumps have been found on your computer

 

 

 

You had Bitdefender Anti virus installed at one time, is that correct?  What version was it?  A free version ?

 

 

 

 

I'm sure I had a free version of Bitdefender.


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP