Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Need help, have multiple pop-ups and probably a virus too

Started by juglar21 , Dec 19 2014 04:07 PM

  • This topic is locked This topic is locked

#136
juglar21
Posted 31 December 2014 - 11:51 PM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

windows task manager?

Don't know where that is or how to get there?

 

Thanks, J


  • 0

Advertisements

#137
juglar21
Posted 31 December 2014 - 11:53 PM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

sorry, didn't scroll down far enough to see all that you wrote, clear now


  • 0

#138
juglar21
Posted 31 December 2014 - 11:55 PM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

There are 4  dllhost.exe


  • 0

#139
zep516
Posted 01 January 2015 - 12:03 AM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
dllhost.exe *32

Do they Look like that above
  • 0

#140
juglar21
Posted 01 January 2015 - 12:04 AM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

dllhost.exe *32   -    none of those


  • 0

#141
zep516
Posted 01 January 2015 - 12:13 AM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
Before running Combofix you will need to disable your Anti Virus program Microsoft security Essentials here's how:
 

[list]
  • Right-click on the MSE icon in the system tray and choose Open.
  • Click the Settings tab, then click Real Time Protection.
  • Uncheck the box next to "Turn on real time protection".
  • Click the "Save changes" button.
  • Exit MSE when done.
    You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
    Link 1
    Link 2
    Link 3
    1. Close any open browsers or any other programs that are open.
    2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

    Double click on combofix.exe & follow the prompts.
    When finished, it will produce a report for you.

    Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

    Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

    "information and logs"

    In your next post I need the following:
    Log from Combofix

  • 0

#142
juglar21
Posted 01 January 2015 - 12:16 AM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

Hi Joe,

 

I don't want to appear ungrateful, but it is 1:10 am here in FL now.

Can I close RogueKiller and my computer and go to bed?

The next step seems to take a few minutes and I should be clear in my head to do that, so

I'd prefer to get some sleep.

 

Thanks for your understanding, J.


  • 0

#143
zep516
Posted 01 January 2015 - 12:19 AM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
Happy new year :)

See you tomorrow

Joe

Close rogue killer and shut the computer down
  • 0

#144
juglar21
Posted 01 January 2015 - 09:06 AM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

Hi Joe,

 

Happy New Year to you too!

 

I disabled MSE and had all browser windows etc. closed, but did not know if any of the tools I did download like JRT or MBAM etc was running in the background.

Regardless, here is the log:

 

 

ComboFix 14-12-30.01 - Kris 01/01/2015   9:42.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.3893.2772 [GMT -5:00]
Running from: c:\users\Kris\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
SP: Microsoft Security Essentials *Disabled/Updated* {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Kris\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Kris\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Kris\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Kris\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Kris\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Kris\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Kris\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj
c:\users\Kris\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\background.html
c:\users\Kris\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\content.js
c:\users\Kris\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\lsdb.js
c:\users\Kris\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\manifest.json
c:\users\Kris\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\cnppomhgimolmjboaiheibhcglppgmfj\1.0\uahUFhtFvo.js
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejifodhjoeeenihgfpjijjmpomaphmah
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejifodhjoeeenihgfpjijjmpomaphmah\177\background.html
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejifodhjoeeenihgfpjijjmpomaphmah\177\BV9a.js
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejifodhjoeeenihgfpjijjmpomaphmah\177\content.js
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejifodhjoeeenihgfpjijjmpomaphmah\177\lsdb.js
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejifodhjoeeenihgfpjijjmpomaphmah\177\manifest.json
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfnbjbobhhoaekejilcmdkfomkndikho
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfnbjbobhhoaekejilcmdkfomkndikho\105\background.html
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfnbjbobhhoaekejilcmdkfomkndikho\105\CCzsP1Ik.js
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfnbjbobhhoaekejilcmdkfomkndikho\105\content.js
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfnbjbobhhoaekejilcmdkfomkndikho\105\lsdb.js
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfnbjbobhhoaekejilcmdkfomkndikho\105\manifest.json
c:\users\Kris\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\Kris\Documents\~WRL1218.tmp
c:\users\Kris\Documents\~WRL1964.tmp
c:\users\Kris\Documents\~WRL3248.tmp
c:\users\Kris\Documents\~WRL3917.tmp
c:\users\Kris\g2mdlhlpx.exe
.
.
(((((((((((((((((((((((((   Files Created from 2014-12-01 to 2015-01-01  )))))))))))))))))))))))))))))))
.
.
2015-01-01 14:52 . 2015-01-01 14:52    --------    d-----w-    c:\users\Default\AppData\Local\temp
2015-01-01 04:52 . 2015-01-01 04:52    35064    ----a-w-    c:\windows\system32\drivers\TrueSight.sys
2015-01-01 04:52 . 2015-01-01 04:52    --------    d-----w-    c:\programdata\RogueKiller
2014-12-31 17:24 . 2014-12-02 10:26    11870360    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{01C1F3BE-4790-4459-B984-555B69062FD3}\mpengine.dll
2014-12-30 22:50 . 2014-12-30 22:50    --------    d-----w-    c:\program files (x86)\SumatraPDF
2014-12-30 02:01 . 2014-12-02 10:26    11870360    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-12-29 19:05 . 2014-12-29 19:05    --------    d-----w-    c:\programdata\Malwarebytes Anti-Malware
2014-12-29 19:02 . 2014-12-29 19:02    --------    d-----w-    C:\Malwarebytes Anti-Malware
2014-12-27 19:39 . 2014-12-27 19:39    --------    d-----w-    c:\programdata\CompuClever
2014-12-27 19:39 . 2014-12-27 19:39    --------    d-----w-    c:\program files (x86)\CompuClever
2014-12-27 13:40 . 2014-12-27 18:47    --------    d--h--w-    c:\users\Public\Temp
2014-12-26 17:15 . 2014-12-26 17:15    --------    d-----w-    c:\users\Kris\AppData\Roaming\Roxio Log Files
2014-12-26 17:11 . 2009-03-09 20:27    520544    ----a-w-    c:\windows\system32\d3dx10_41.dll
2014-12-26 17:10 . 2005-07-23 00:59    3807440    ----a-w-    c:\windows\system32\d3dx9_27.dll
2014-12-26 17:10 . 2005-05-26 20:34    3767504    ----a-w-    c:\windows\system32\d3dx9_26.dll
2014-12-26 17:10 . 2005-05-26 20:34    2297552    ----a-w-    c:\windows\SysWow64\d3dx9_26.dll
2014-12-26 17:10 . 2005-03-18 22:19    3823312    ----a-w-    c:\windows\system32\d3dx9_25.dll
2014-12-26 17:10 . 2005-02-06 00:45    3544272    ----a-w-    c:\windows\system32\d3dx9_24.dll
2014-12-26 17:04 . 2014-12-26 17:04    128200    ----a-w-    c:\windows\system32\drivers\L1C62x64.sys
2014-12-26 17:04 . 2014-12-26 17:04    --------    d-----w-    c:\program files\Common Files\Intel
2014-12-26 17:04 . 2014-12-26 17:04    --------    d-----w-    c:\program files (x86)\Common Files\Intel
2014-12-26 17:04 . 2014-12-26 17:04    --------    d-----w-    C:\Intel
2014-12-26 17:02 . 2014-12-26 17:02    647736    ----a-w-    c:\windows\system32\drivers\iaStorA.sys
2014-12-26 17:02 . 2014-12-26 17:02    28216    ----a-w-    c:\windows\system32\drivers\iaStorF.sys
2014-12-26 17:02 . 2014-12-26 17:02    95544    ----a-w-    c:\windows\system32\bcmwlcoi.dll
2014-12-26 17:02 . 2014-12-26 17:02    5443648    ----a-w-    c:\windows\system32\drivers\BCMWL664.SYS
2014-12-26 17:02 . 2014-12-26 17:02    4378624    ----a-w-    c:\windows\system32\bcmihvsrv64.dll
2014-12-26 17:02 . 2014-12-26 17:02    3654656    ----a-w-    c:\windows\system32\bcmihvui64.dll
2014-12-26 17:01 . 2014-12-26 17:01    317440    ----a-w-    c:\windows\system32\drivers\IntcDAud.sys
2014-12-26 17:01 . 2014-12-26 17:01    14848    ----a-w-    c:\windows\system32\IntcDAuC.dll
2014-12-26 17:00 . 2014-12-26 17:00    1795952    ----a-w-    c:\windows\system32\WdfCoInstaller01011.dll
2014-12-26 17:00 . 2014-12-26 17:00    34544    ----a-w-    c:\windows\system32\drivers\Smb_driver_Intel.sys
2014-12-26 16:59 . 2014-12-26 16:59    158976    ----a-w-    c:\windows\system32\drivers\Impcd.sys
2014-12-26 16:52 . 2014-12-26 16:52    --------    d-----w-    c:\users\Kris\AppData\Roaming\ProductData
2014-12-26 16:51 . 2014-12-26 16:51    26528    ----a-w-    c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2014-12-26 16:51 . 2014-12-26 16:51    --------    d-----w-    c:\programdata\IObit
2014-12-26 16:51 . 2014-12-26 16:51    --------    d-----w-    c:\programdata\ProductData
2014-12-26 16:50 . 2014-12-26 16:51    --------    d-----w-    c:\program files (x86)\IObit
2014-12-26 16:49 . 2014-12-26 16:51    --------    d-----w-    c:\users\Kris\AppData\Roaming\IObit
2014-12-21 20:21 . 2015-01-01 14:21    129752    ----a-w-    c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-21 20:17 . 2014-12-29 19:54    96472    ----a-w-    c:\windows\system32\drivers\mbamchameleon.sys
2014-12-21 20:17 . 2014-11-21 11:14    63704    ----a-w-    c:\windows\system32\drivers\mwac.sys
2014-12-21 20:17 . 2014-11-21 11:14    25816    ----a-w-    c:\windows\system32\drivers\mbam.sys
2014-12-21 19:52 . 2014-12-21 19:52    --------    d-----w-    c:\windows\ERUNT
2014-12-21 19:20 . 2014-12-29 04:45    --------    d-----w-    C:\AdwCleaner
2014-12-21 17:23 . 2014-12-21 17:24    --------    d-----w-    c:\programdata\Innovative Solutions
2014-12-21 17:23 . 2014-12-21 17:24    --------    d-----w-    c:\users\Kris\AppData\Local\Innovative Solutions
2014-12-21 17:23 . 2014-12-21 17:23    --------    d-----w-    c:\program files (x86)\Common Files\Innovative Solutions
2014-12-19 21:27 . 2014-12-19 21:27    --------    d-----w-    c:\program files (x86)\Common Files\MyTurboPC.com
2014-12-19 21:04 . 2014-09-18 13:36    1188440    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BC5BAF8B-86DF-4701-B9F7-78210729813A}\gapaengine.dll
2014-12-19 21:02 . 2014-12-13 05:09    144384    ----a-w-    c:\windows\system32\ieUnatt.exe
2014-12-19 21:02 . 2014-12-13 03:33    115712    ----a-w-    c:\windows\SysWow64\ieUnatt.exe
2014-12-19 20:46 . 2014-12-19 20:46    --------    d-----w-    c:\windows\system32\appraiser
2014-12-12 18:37 . 2014-10-18 01:33    3209728    ----a-w-    c:\windows\SysWow64\mf.dll
2014-12-12 18:37 . 2014-10-18 02:05    4121600    ----a-w-    c:\windows\system32\mf.dll
2014-12-12 15:06 . 2014-12-04 02:50    741376    ----a-w-    c:\windows\system32\invagent.dll
2014-12-12 15:06 . 2014-12-04 02:50    192000    ----a-w-    c:\windows\system32\aepic.dll
2014-12-12 15:06 . 2014-12-04 02:44    1083392    ----a-w-    c:\windows\system32\aeinv.dll
2014-12-12 15:06 . 2014-12-01 23:28    1232040    ----a-w-    c:\windows\system32\aitstatic.exe
2014-12-12 15:06 . 2014-12-04 02:50    413184    ----a-w-    c:\windows\system32\generaltel.dll
2014-12-12 15:06 . 2014-12-04 02:50    396800    ----a-w-    c:\windows\system32\devinv.dll
2014-12-12 15:06 . 2014-12-04 02:50    227328    ----a-w-    c:\windows\system32\aepdu.dll
2014-12-12 15:06 . 2014-11-11 03:09    1424384    ----a-w-    c:\windows\system32\WindowsCodecs.dll
2014-12-12 15:06 . 2014-11-11 02:44    1230336    ----a-w-    c:\windows\SysWow64\WindowsCodecs.dll
2014-12-12 15:04 . 2014-11-08 03:16    2048    ----a-w-    c:\windows\system32\tzres.dll
2014-12-12 15:04 . 2014-11-08 02:45    2048    ----a-w-    c:\windows\SysWow64\tzres.dll
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-12-26 17:10 . 2012-11-16 12:17    71344    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-12-26 17:10 . 2012-11-16 12:17    701616    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2014-12-26 17:03 . 2011-09-01 00:21    62464    ----a-w-    c:\windows\system32\igfxsrvc.dll
2014-12-26 17:03 . 2011-09-01 00:20    9014784    ----a-w-    c:\windows\system32\igfxress.dll
2014-12-26 17:03 . 2011-09-01 00:42    9528832    ----a-w-    c:\windows\system32\igd10umd64.dll
2014-12-26 17:03 . 2011-09-01 00:20    110080    ----a-w-    c:\windows\system32\hccutils.dll
2014-11-11 03:08 . 2014-11-19 22:08    241152    ----a-w-    c:\windows\system32\pku2u.dll
2014-11-11 03:08 . 2014-11-19 22:08    728064    ----a-w-    c:\windows\system32\kerberos.dll
2014-11-11 02:44 . 2014-11-19 22:08    186880    ----a-w-    c:\windows\SysWow64\pku2u.dll
2014-11-11 02:44 . 2014-11-19 22:08    550912    ----a-w-    c:\windows\SysWow64\kerberos.dll
2014-10-30 11:25 . 2010-12-28 23:48    275080    ------w-    c:\windows\system32\MpSigStub.exe
2014-10-25 01:57 . 2014-11-12 01:54    77824    ----a-w-    c:\windows\system32\packager.dll
2014-10-25 01:32 . 2014-11-12 01:54    67584    ----a-w-    c:\windows\SysWow64\packager.dll
2014-10-18 02:05 . 2014-11-12 01:53    861696    ----a-w-    c:\windows\system32\oleaut32.dll
2014-10-18 01:33 . 2014-11-12 01:53    571904    ----a-w-    c:\windows\SysWow64\oleaut32.dll
2014-10-17 17:34 . 2014-11-17 19:44    40248    ----a-w-    c:\windows\system32\TURegOpt.exe
2014-10-17 17:34 . 2014-11-17 19:43    29496    ----a-w-    c:\windows\system32\authuitu.dll
2014-10-17 17:34 . 2014-11-17 19:43    25400    ----a-w-    c:\windows\SysWow64\authuitu.dll
2014-10-14 02:16 . 2014-11-12 01:58    155064    ----a-w-    c:\windows\system32\drivers\ksecpkg.sys
2014-10-14 02:13 . 2014-11-12 01:58    683520    ----a-w-    c:\windows\system32\termsrv.dll
2014-10-14 02:13 . 2014-11-12 01:54    3241984    ----a-w-    c:\windows\system32\msi.dll
2014-10-14 02:12 . 2014-11-12 01:58    1460736    ----a-w-    c:\windows\system32\lsasrv.dll
2014-10-14 02:09 . 2014-11-12 01:58    146432    ----a-w-    c:\windows\system32\msaudite.dll
2014-10-14 02:07 . 2014-11-12 01:58    681984    ----a-w-    c:\windows\system32\adtschema.dll
2014-10-14 01:50 . 2014-11-12 01:58    22016    ----a-w-    c:\windows\SysWow64\secur32.dll
2014-10-14 01:50 . 2014-11-12 01:54    2363904    ----a-w-    c:\windows\SysWow64\msi.dll
2014-10-14 01:49 . 2014-11-12 01:58    96768    ----a-w-    c:\windows\SysWow64\sspicli.dll
2014-10-14 01:47 . 2014-11-12 01:58    146432    ----a-w-    c:\windows\SysWow64\msaudite.dll
2014-10-14 01:46 . 2014-11-12 01:58    681984    ----a-w-    c:\windows\SysWow64\adtschema.dll
2014-10-10 00:57 . 2014-11-12 01:54    3198976    ----a-w-    c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IJNetworkScannerSelectorEX"="c:\program files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" [2012-03-26 449168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"="c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe" [2011-10-08 559616]
.
c:\users\Kris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-9-21 1316192]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe /firstrun [2009-9-21 1316192]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"HP Software Update"=c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\programdata\Malwarebytes Anti-Malware\mbamscheduler.exe;c:\programdata\Malwarebytes Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\programdata\Malwarebytes Anti-Malware\mbamservice.exe;c:\programdata\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [x]
R3 EsgScanner;EsgScanner;c:\windows\system32\DRIVERS\EsgScanner.sys;c:\windows\SYSNATIVE\DRIVERS\EsgScanner.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 DLSDB;Dell Printer Status Database;c:\program files\Dell Printers\Additional Color Laser Software\Status Monitor\DLSDBNT.EXE;c:\program files\Dell Printers\Additional Color Laser Software\Status Monitor\DLSDBNT.EXE [x]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe;c:\program files\Dell\DellDock\DockLogin.exe [x]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [x]
S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S3 BcmVWL;Broadcom Virtual Wireless;c:\windows\system32\DRIVERS\bcmvwl64.sys;c:\windows\SYSNATIVE\DRIVERS\bcmvwl64.sys [x]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\CtClsFlt.sys [x]
S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MBAMSWISSARMY
.
Contents of the 'Scheduled Tasks' folder
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-12-26 16:51    2471744    ----a-w-    c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-12-15 18:52    261744    ----a-w-    c:\users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-12-15 18:52    261744    ----a-w-    c:\users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-12-15 18:52    261744    ----a-w-    c:\users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DLPSP"="c:\program files\Dell Printers\Additional Color Laser Software\Status Monitor\DLPSP.EXE" [2010-06-01 913216]
"DLUPDR"="c:\program files\Dell Printers\Additional Color Laser Software\Updater\DLUPDR.EXE" [2010-06-01 587584]
"DLQLU"="c:\program files\Dell Printers\Additional Color Laser Software\Launcher\DLQLU.EXE" [2010-06-01 1284416]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-08-22 1331288]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-12-26 168944]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-12-26 394224]
"Persistence"="c:\windows\system32\igfxpers.exe" [2014-12-26 418800]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2014-12-26 13672152]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
mSearchAssistant = hxxp://www.google.com
mCustomizeSearch = hxxp://www.google.com
IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\Kris\AppData\Roaming\Mozilla\Firefox\Profiles\nup7b7k3.default-1416660402991\
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
SafeBoot-62738658.sys
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{A2F37CA8-53F8-4594-B701-32AE64BAED1A} - c:\program files (x86)\MyTurboPC.com\MyTurboPC\uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2015-01-01  09:57:08
ComboFix-quarantined-files.txt  2015-01-01 14:57
.
Pre-Run: 237,473,333,248 bytes free
Post-Run: 237,077,565,440 bytes free
.
- - End Of File - - 49C23964B970C9989B1AB58B7F4CA42A
 

Thanks, J


  • 0

#145
zep516
Posted 01 January 2015 - 08:38 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
Hello,

Post a new set of FRST logs
  • Right click to run as administrator. When the tool opens click Yes to disclaimer.
  • Under Optional Scan place a checkmark in the box for Addition.txt to ensure it creates that 2nd log.
  • Press Scan button.
  • Please post both logs in your next reply.

  • 0

Advertisements

#146
juglar21
Posted 01 January 2015 - 11:22 PM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

Here they come:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-12-2014
Ran by Kris (administrator) on KRIS-PC on 02-01-2015 00:16:46
Running from C:\Users\Kris\Desktop
Loaded Profile: Kris (Available profiles: Kris)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE
(Dell Inc.) C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlsdbnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\ProgramData\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\ProgramData\Malwarebytes Anti-Malware\mbamservice.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Dell Inc.) C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpwdnt.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Malwarebytes Corporation) C:\ProgramData\Malwarebytes Anti-Malware\mbam.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Dell Inc.) C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\dlpsp.exe
(Dell Inc.) C:\Program Files\Dell Printers\Additional Color Laser Software\Updater\dlupdr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(SupportSoft, Inc.) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1882920 2009-11-12] (Synaptics Incorporated)
HKLM\...\Run: [DLPSP] => C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\DLPSP.EXE [913216 2010-06-01] (Dell Inc.)
HKLM\...\Run: [DLUPDR] => C:\Program Files\Dell Printers\Additional Color Laser Software\Updater\DLUPDR.EXE [587584 2010-06-01] (Dell Inc.)
HKLM\...\Run: [DLQLU] => C:\Program Files\Dell Printers\Additional Color Laser Software\Launcher\DLQLU.EXE [1284416 2010-06-01] (Dell Inc.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-12-26] (Realtek Semiconductor)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [449168 2012-03-26] (CANON INC.)
HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe [559616 2011-10-07] (Dell)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Kris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-4287490833-3400291495-2554494040-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft...d=ie&ar=msnhome
HKU\S-1-5-21-4287490833-3400291495-2554494040-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKU\S-1-5-21-4287490833-3400291495-2554494040-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSSE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: Bing Bar Helper -> {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Kris\AppData\Roaming\Mozilla\Firefox\Profiles\nup7b7k3.default-1416660402991
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll No File
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll No File
FF Plugin HKU\S-1-5-21-4287490833-3400291495-2554494040-1000: @citrixonline.com/appdetectorplugin -> C:\Users\Kris\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Sammsoft Toolbar) - C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaanpaddaaoffccehffldolecpkgpej [2013-08-21]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Kris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 DLPWD; C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\DLPWDNT.EXE [155888 2009-10-16] (Dell Inc.)
R2 DLSDB; C:\Program Files\Dell Printers\Additional Color Laser Software\Status Monitor\DLSDBNT.EXE [344384 2010-06-01] (Dell Inc.)
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [File not signed]
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2631456 2014-12-26] (IObit)
R2 MBAMScheduler; C:\ProgramData\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\ProgramData\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
S3 AdobeFlashPlayerUpdateSvc; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2014-12-26] (REALiX™)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2014-12-26] (Intel Corporation)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [128200 2014-12-26] (Qualcomm Atheros Co., Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-02] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [34544 2014-12-26] (Synaptics Incorporated)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2014-12-31] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-01 10:26 - 2015-01-01 10:26 - 00031096 _____ () C:\Users\Kris\Desktop\COMBOFIX REPORT.txt
2015-01-01 09:57 - 2015-01-01 09:57 - 00031096 _____ () C:\ComboFix.txt
2015-01-01 09:39 - 2015-01-01 09:57 - 00000000 ____D () C:\Qoobox
2015-01-01 09:39 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-01-01 09:39 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-01-01 09:39 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-01-01 09:39 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-01-01 09:39 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-01-01 09:39 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
2015-01-01 09:39 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
2015-01-01 09:39 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
2015-01-01 09:38 - 2015-01-01 09:55 - 00000000 ____D () C:\Windows\erdnt
2015-01-01 09:32 - 2015-01-01 09:32 - 05604036 ____R (Swearware) C:\Users\Kris\Desktop\ComboFix.exe
2014-12-31 23:52 - 2014-12-31 23:52 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-12-31 23:52 - 2014-12-31 23:52 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-12-31 23:50 - 2014-12-31 23:51 - 15298136 _____ () C:\Users\Kris\Desktop\RogueKiller.exe
2014-12-31 23:27 - 2014-12-31 23:27 - 05198336 _____ (AVAST Software) C:\Users\Kris\Desktop\aswMBR.exe
2014-12-31 23:05 - 2014-12-31 23:05 - 04187592 _____ (Kaspersky Lab ZAO) C:\Users\Kris\Desktop\tdsskiller.exe
2014-12-31 23:00 - 2014-12-31 23:01 - 04166770 _____ () C:\Users\Kris\Desktop\tdsskiller(1).zip
2014-12-31 22:33 - 2014-12-31 22:33 - 00602112 _____ (OldTimer Tools) C:\Users\Kris\Desktop\OTL.exe
2014-12-30 18:38 - 2014-12-30 18:38 - 00024674 _____ () C:\Users\Kris\Desktop\Addition.txt
2014-12-30 18:36 - 2015-01-02 00:17 - 00012512 _____ () C:\Users\Kris\Desktop\FRST.txt
2014-12-30 17:50 - 2014-12-30 17:50 - 04551776 _____ (Krzysztof Kowalczyk) C:\Users\Kris\Downloads\SumatraPDF-3.0-install.exe
2014-12-30 17:50 - 2014-12-30 17:50 - 00000000 ____D () C:\Program Files (x86)\SumatraPDF
2014-12-30 17:08 - 2014-12-30 17:08 - 01057488 _____ (Adobe) C:\Users\Kris\Downloads\install_reader11_en_mssd_aaa_aih.exe
2014-12-30 16:01 - 2014-12-30 16:02 - 14087848 _____ (Microsoft Corporation) C:\Users\Kris\Downloads\mseinstall.exe
2014-12-30 13:53 - 2014-12-30 13:53 - 00852504 _____ () C:\Users\Kris\Desktop\SecurityCheck.exe
2014-12-29 14:51 - 2014-12-29 14:54 - 00000000 ____D () C:\Users\Kris\Desktop\mbar
2014-12-29 14:49 - 2014-12-29 14:50 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Kris\Downloads\mbar-1.08.2.1001.exe
2014-12-29 14:05 - 2014-12-29 14:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-29 14:05 - 2014-12-29 14:05 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Malware
2014-12-29 14:02 - 2014-12-29 14:02 - 00000000 ____D () C:\Malwarebytes Anti-Malware
2014-12-29 13:58 - 2014-12-29 13:58 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Kris\Downloads\mbam-setup-2.0.4.1028(1).exe
2014-12-28 23:52 - 2014-12-28 03:01 - 01707939 _____ (Thisisu) C:\Users\Kris\Desktop\JRT_NEW.exe
2014-12-28 17:25 - 2014-12-28 17:25 - 00000897 _____ () C:\Users\Kris\Desktop\HOLIDAYS.search-ms
2014-12-27 17:15 - 2014-12-27 17:15 - 00000000 ____D () C:\Users\Kris\Desktop\backups
2014-12-27 16:23 - 2014-12-27 16:24 - 00388608 _____ (Trend Micro Inc.) C:\Users\Kris\Desktop\HijackThis.exe
2014-12-27 14:39 - 2014-12-27 14:39 - 00000000 ____D () C:\Users\Kris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CompuClever
2014-12-27 14:39 - 2014-12-27 14:39 - 00000000 ____D () C:\ProgramData\CompuClever
2014-12-27 14:39 - 2014-12-27 14:39 - 00000000 ____D () C:\Program Files (x86)\CompuClever
2014-12-27 14:37 - 2014-12-27 14:37 - 04058632 _____ (CompuClever Systems Inc.) C:\Users\Kris\Downloads\pctuneupmaestro_installer_40_.exe
2014-12-27 14:27 - 2014-12-27 14:27 - 00347816 _____ (Microsoft Corporation) C:\Users\Kris\Downloads\MicrosoftFixit.ProgramInstallUninstall.RNP.1343135555491044.1.1.Run.exe
2014-12-27 14:20 - 2014-12-27 14:20 - 00000000 ____D () C:\Users\Kris\Desktop\OpenOffice 4.1.1 Language Pack (English) Installation Files
2014-12-27 14:18 - 2014-12-27 14:18 - 18353601 _____ () C:\Users\Kris\Downloads\Apache_OpenOffice_4.1.1_Win_x86_langpack_en-US.exe
2014-12-27 08:40 - 2014-12-27 13:47 - 00000000 ___HD () C:\Users\Public\Temp
2014-12-26 12:15 - 2014-12-26 12:15 - 00000000 ____D () C:\Users\Kris\AppData\Roaming\Roxio Log Files
2014-12-26 12:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-12-26 12:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-12-26 12:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-12-26 12:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-12-26 12:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-12-26 12:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-12-26 12:12 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-12-26 12:12 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-12-26 12:12 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-12-26 12:12 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-12-26 12:12 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-12-26 12:12 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-12-26 12:12 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-12-26 12:11 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-12-26 12:11 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-12-26 12:11 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-12-26 12:11 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-12-26 12:11 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-12-26 12:11 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-12-26 12:11 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-12-26 12:11 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-12-26 12:11 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-12-26 12:11 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-12-26 12:11 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-12-26 12:11 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-12-26 12:11 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-12-26 12:11 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-12-26 12:11 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-12-26 12:11 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-12-26 12:11 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-12-26 12:11 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-12-26 12:11 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-12-26 12:11 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-12-26 12:11 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-12-26 12:11 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-12-26 12:11 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-12-26 12:11 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-12-26 12:11 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-12-26 12:11 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-12-26 12:11 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-12-26 12:11 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-12-26 12:11 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-12-26 12:11 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-12-26 12:11 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-12-26 12:11 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-12-26 12:11 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-12-26 12:11 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-12-26 12:11 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-12-26 12:11 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-12-26 12:11 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-12-26 12:11 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-12-26 12:11 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-12-26 12:11 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-12-26 12:11 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-12-26 12:11 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-12-26 12:11 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-12-26 12:11 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-12-26 12:11 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-12-26 12:11 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-12-26 12:11 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-12-26 12:11 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-12-26 12:11 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-12-26 12:11 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-12-26 12:11 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-12-26 12:11 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-12-26 12:11 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-12-26 12:11 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-12-26 12:11 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-12-26 12:11 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-12-26 12:11 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-12-26 12:11 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-12-26 12:11 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-12-26 12:11 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-12-26 12:11 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-12-26 12:11 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-12-26 12:11 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-12-26 12:11 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-12-26 12:11 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-12-26 12:11 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-12-26 12:11 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-12-26 12:11 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-12-26 12:11 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-12-26 12:11 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-12-26 12:11 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-12-26 12:11 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-12-26 12:11 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-12-26 12:11 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-12-26 12:11 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-12-26 12:11 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-12-26 12:11 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-12-26 12:11 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-12-26 12:11 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-12-26 12:11 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-12-26 12:11 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-12-26 12:11 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-12-26 12:11 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-12-26 12:11 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-12-26 12:11 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-12-26 12:11 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-12-26 12:11 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-12-26 12:11 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-12-26 12:11 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-12-26 12:11 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-12-26 12:11 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-12-26 12:11 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-12-26 12:11 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-12-26 12:11 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-12-26 12:11 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-12-26 12:11 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-12-26 12:11 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-12-26 12:11 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-12-26 12:11 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-12-26 12:11 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-12-26 12:11 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-12-26 12:11 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-12-26 12:11 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-12-26 12:11 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-12-26 12:11 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-12-26 12:11 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-12-26 12:11 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-12-26 12:11 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-12-26 12:11 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-12-26 12:11 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-12-26 12:11 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-12-26 12:11 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-12-26 12:11 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-12-26 12:11 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-12-26 12:11 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-12-26 12:11 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-12-26 12:11 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-12-26 12:11 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-12-26 12:11 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-12-26 12:11 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-12-26 12:11 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-12-26 12:11 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-12-26 12:11 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-12-26 12:11 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-12-26 12:11 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-12-26 12:11 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-12-26 12:11 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-12-26 12:10 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-12-26 12:10 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-12-26 12:10 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-12-26 12:10 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-12-26 12:10 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-12-26 12:10 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-12-26 12:10 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-12-26 12:10 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-12-26 12:07 - 2014-12-26 12:07 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 02000152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-12-26 12:07 - 2014-12-26 12:07 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-12-26 12:07 - 2014-12-26 12:07 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00272600 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys
2014-12-26 12:07 - 2014-12-26 12:07 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2014-12-26 12:07 - 2014-12-26 12:07 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-12-26 12:04 - 2014-12-26 12:04 - 00128200 _____ (Qualcomm Atheros Co., Ltd.) C:\Windows\system32\Drivers\L1C62x64.sys
2014-12-26 12:04 - 2014-12-26 12:04 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-12-26 12:04 - 2014-12-26 12:04 - 00000000 ____D () C:\Intel
2014-12-26 12:03 - 2014-12-26 12:03 - 18664960 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 13913600 _____ () C:\Windows\SysWOW64\ig4icd32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 12312928 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-12-26 12:03 - 2014-12-26 12:03 - 08314368 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 07988224 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 06324224 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 04380144 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2014-12-26 12:03 - 2014-12-26 12:03 - 02780160 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 02191872 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00581120 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdx32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00510960 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-12-26 12:03 - 2014-12-26 12:03 - 00418800 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-12-26 12:03 - 2014-12-26 12:03 - 00394224 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-12-26 12:03 - 2014-12-26 12:03 - 00390144 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00378368 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00376320 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00293888 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00287232 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00283648 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00283136 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-12-26 12:03 - 2014-12-26 12:03 - 00246784 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00241136 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-12-26 12:03 - 2014-12-26 12:03 - 00219136 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00211303 _____ () C:\Windows\system32\Gfxres.th-TH.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00198139 _____ () C:\Windows\system32\Gfxres.el-GR.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00185840 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2014-12-26 12:03 - 2014-12-26 12:03 - 00182706 _____ () C:\Windows\system32\Gfxres.ru-RU.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00168944 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-12-26 12:03 - 2014-12-26 12:03 - 00156233 _____ () C:\Windows\system32\Gfxres.ar-SA.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00153167 _____ () C:\Windows\system32\Gfxres.ja-JP.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00149009 _____ () C:\Windows\system32\Gfxres.he-IL.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00146432 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00140216 _____ () C:\Windows\system32\Gfxres.it-IT.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00138727 _____ () C:\Windows\system32\Gfxres.ko-KR.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00137846 _____ () C:\Windows\system32\Gfxres.de-DE.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00137668 _____ () C:\Windows\system32\Gfxres.es-ES.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00136603 _____ () C:\Windows\system32\Gfxres.ro-RO.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00135628 _____ () C:\Windows\system32\Gfxres.fr-FR.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00135370 _____ () C:\Windows\system32\Gfxres.tr-TR.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00134836 _____ () C:\Windows\system32\Gfxres.pt-BR.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00134412 _____ () C:\Windows\system32\Gfxres.nl-NL.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00134384 _____ () C:\Windows\system32\Gfxres.hu-HU.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00133846 _____ () C:\Windows\system32\Gfxres.sv-SE.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00133709 _____ () C:\Windows\system32\Gfxres.pt-PT.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00133404 _____ () C:\Windows\system32\Gfxres.cs-CZ.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00133178 _____ () C:\Windows\system32\Gfxres.pl-PL.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00132889 _____ () C:\Windows\system32\Gfxres.fi-FI.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00132788 _____ () C:\Windows\system32\Gfxres.sk-SK.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00131839 _____ () C:\Windows\system32\Gfxres.hr-HR.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00128996 _____ () C:\Windows\system32\Gfxres.sl-SI.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00128831 _____ () C:\Windows\system32\Gfxres.nb-NO.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00128535 _____ () C:\Windows\system32\Gfxres.da-DK.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00126976 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-12-26 12:03 - 2014-12-26 12:03 - 00124052 _____ () C:\Windows\system32\Gfxres.en-US.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00117636 _____ () C:\Windows\system32\Gfxres.zh-TW.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00116348 _____ () C:\Windows\system32\Gfxres.zh-CN.resources
2014-12-26 12:03 - 2014-12-26 12:03 - 00090112 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v2993.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00028672 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00024576 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2014-12-26 12:03 - 2014-12-26 12:03 - 00017444 _____ () C:\Windows\system32\iglhxs64.vp
2014-12-26 12:03 - 2014-12-26 12:03 - 00004096 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-12-26 12:02 - 2014-12-26 12:02 - 05443648 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL664.SYS
2014-12-26 12:02 - 2014-12-26 12:02 - 04378624 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll
2014-12-26 12:02 - 2014-12-26 12:02 - 03654656 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll
2014-12-26 12:02 - 2014-12-26 12:02 - 00647736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2014-12-26 12:02 - 2014-12-26 12:02 - 00095544 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2014-12-26 12:02 - 2014-12-26 12:02 - 00028216 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2014-12-26 12:01 - 2014-12-26 12:01 - 00317440 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-12-26 12:01 - 2014-12-26 12:01 - 00014848 _____ (Intel® Corporation) C:\Windows\system32\IntcDAuC.dll
2014-12-26 12:00 - 2014-12-26 12:00 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-12-26 12:00 - 2014-12-26 12:00 - 00034544 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2014-12-26 12:00 - 2014-12-26 12:00 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-12-26 11:59 - 2014-12-26 11:59 - 00158976 _____ (Intel Corporation) C:\Windows\system32\Drivers\Impcd.sys
2014-12-26 11:52 - 2014-12-26 11:52 - 00000000 ____D () C:\Users\Kris\AppData\Roaming\ProductData
2014-12-26 11:51 - 2014-12-26 11:51 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2014-12-26 11:51 - 2014-12-26 11:51 - 00000000 ____D () C:\Users\Kris\AppData\IObit
2014-12-26 11:51 - 2014-12-26 11:51 - 00000000 ____D () C:\ProgramData\ProductData
2014-12-26 11:51 - 2014-12-26 11:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2014-12-26 11:51 - 2014-12-26 11:51 - 00000000 ____D () C:\ProgramData\IObit
2014-12-26 11:50 - 2014-12-26 11:51 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-12-26 11:49 - 2014-12-26 11:51 - 00000000 ____D () C:\Users\Kris\AppData\Roaming\IObit
2014-12-26 11:48 - 2014-12-26 11:48 - 17528608 _____ (IObit) C:\Users\Kris\Downloads\iobituninstaller.exe
2014-12-26 11:24 - 2014-12-29 06:54 - 02123264 _____ (Farbar) C:\Users\Kris\Desktop\FRST64.exe
2014-12-21 15:21 - 2015-01-02 00:09 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-21 15:17 - 2014-12-29 14:54 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-21 15:17 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-21 15:17 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-21 15:15 - 2014-12-21 15:15 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Kris\Downloads\mbam-setup-2.0.4.1028.exe
2014-12-21 14:52 - 2014-12-21 14:52 - 00000000 ____D () C:\Windows\ERUNT
2014-12-21 14:47 - 2014-12-21 14:47 - 01707646 _____ (Thisisu) C:\Users\Kris\Downloads\JRT.exe
2014-12-21 14:20 - 2014-12-28 23:45 - 00000000 ____D () C:\AdwCleaner
2014-12-21 14:16 - 2014-12-21 14:16 - 02173952 _____ () C:\Users\Kris\Desktop\adwcleaner_4.106.exe
2014-12-21 12:23 - 2014-12-21 12:24 - 00000000 ____D () C:\Users\Kris\AppData\Local\Innovative Solutions
2014-12-21 12:23 - 2014-12-21 12:24 - 00000000 ____D () C:\ProgramData\Innovative Solutions
2014-12-21 12:21 - 2014-12-21 12:22 - 18178312 _____ (Innovative Solutions ) C:\Users\Kris\Downloads\Advanced_Uninstaller11_55_CNet.exe
2014-12-21 11:21 - 2014-12-21 12:37 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-19 16:02 - 2014-12-13 00:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-19 16:02 - 2014-12-12 22:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-19 15:46 - 2014-12-19 15:46 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-12 13:37 - 2014-10-17 21:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-12 13:37 - 2014-10-17 20:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-12 10:06 - 2014-12-03 21:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-12 10:06 - 2014-12-03 21:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-12 10:06 - 2014-12-03 21:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-12 10:06 - 2014-12-03 21:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-12 10:06 - 2014-12-03 21:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-12 10:06 - 2014-12-03 21:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-12 10:06 - 2014-12-03 21:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-12 10:06 - 2014-12-01 18:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-12 10:06 - 2014-11-10 22:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-12 10:06 - 2014-11-10 21:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-12 10:05 - 2014-11-26 20:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-12 10:05 - 2014-11-26 20:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-12 10:05 - 2014-11-21 22:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-12 10:05 - 2014-11-21 22:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-12 10:05 - 2014-11-21 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-12 10:05 - 2014-11-21 21:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-12 10:05 - 2014-11-21 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-12 10:05 - 2014-11-21 21:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-12 10:05 - 2014-11-21 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-12 10:05 - 2014-11-21 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-12 10:05 - 2014-11-21 21:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-12 10:05 - 2014-11-21 21:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-12 10:05 - 2014-11-21 21:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-12 10:05 - 2014-11-21 21:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-12 10:05 - 2014-11-21 21:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-12 10:05 - 2014-11-21 21:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-12 10:05 - 2014-11-21 21:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-12 10:05 - 2014-11-21 21:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-12 10:05 - 2014-11-21 21:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-12 10:05 - 2014-11-21 21:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-12 10:05 - 2014-11-21 21:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-12 10:05 - 2014-11-21 21:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-12 10:05 - 2014-11-21 21:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-12 10:05 - 2014-11-21 21:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-12 10:05 - 2014-11-21 21:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-12 10:05 - 2014-11-21 21:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-12 10:05 - 2014-11-21 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-12 10:05 - 2014-11-21 21:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-12 10:05 - 2014-11-21 21:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-12 10:05 - 2014-11-21 20:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-12 10:05 - 2014-11-21 20:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-12 10:05 - 2014-11-21 20:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-12 10:05 - 2014-11-21 20:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-12 10:05 - 2014-11-21 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-12 10:05 - 2014-11-21 20:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-12 10:05 - 2014-11-21 20:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-12 10:05 - 2014-11-21 20:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-12 10:05 - 2014-11-21 20:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-12 10:05 - 2014-11-21 20:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-12 10:05 - 2014-11-21 20:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-12 10:05 - 2014-11-21 20:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-12 10:05 - 2014-11-21 20:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-12 10:05 - 2014-11-21 20:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-12 10:05 - 2014-11-21 20:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-12 10:05 - 2014-11-21 20:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-12 10:05 - 2014-11-21 20:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-12 10:05 - 2014-11-21 20:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-12 10:05 - 2014-11-21 20:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-12 10:05 - 2014-11-21 20:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-12 10:05 - 2014-11-21 20:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-12 10:05 - 2014-11-21 20:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-12 10:05 - 2014-11-21 20:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-12 10:05 - 2014-11-21 19:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-12 10:05 - 2014-11-21 19:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-12 10:05 - 2014-11-10 20:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-12 10:05 - 2014-10-29 21:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-12 10:05 - 2014-10-29 20:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-12 10:05 - 2014-10-02 21:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-12 10:05 - 2014-10-02 21:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-12 10:05 - 2014-10-02 21:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-12 10:05 - 2014-10-02 21:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-12 10:05 - 2014-10-02 21:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-12 10:05 - 2014-10-02 20:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-12 10:05 - 2014-10-02 20:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-12 10:05 - 2014-10-02 20:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-12 10:05 - 2014-10-02 20:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-12 10:05 - 2014-10-02 20:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-12 10:04 - 2014-11-07 22:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-12 10:04 - 2014-11-07 21:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-02 00:16 - 2014-11-21 18:10 - 00000000 ____D () C:\FRST
2015-01-02 00:11 - 2009-07-14 00:10 - 01889761 _____ () C:\Windows\WindowsUpdate.log
2015-01-01 20:13 - 2009-07-13 23:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-01 20:13 - 2009-07-13 23:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-01 20:05 - 2010-07-13 05:49 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2015-01-01 20:05 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-01 20:05 - 2009-07-13 23:51 - 00124801 _____ () C:\Windows\setupact.log
2015-01-01 10:27 - 2010-07-13 07:18 - 00285822 _____ () C:\Windows\PFRO.log
2015-01-01 09:57 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
2015-01-01 09:52 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
2015-01-01 09:51 - 2010-08-25 09:20 - 00000000 ____D () C:\Users\Kris
2015-01-01 09:48 - 2013-09-10 10:30 - 00000000 ____D () C:\ProgramData\TEMP
2015-01-01 00:38 - 2014-01-03 21:56 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-12-31 15:56 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-12-30 17:47 - 2010-07-13 05:24 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-12-30 17:08 - 2010-12-28 18:34 - 00000000 ____D () C:\Users\Kris\AppData\Local\Adobe
2014-12-30 16:59 - 2012-07-02 06:42 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-30 16:03 - 2011-12-01 13:53 - 00002198 _____ () C:\Windows\epplauncher.mif
2014-12-29 21:34 - 2010-08-25 09:54 - 00000000 ____D () C:\Users\Kris\AppData\Roaming\SoftGrid Client
2014-12-29 06:56 - 2013-09-04 20:19 - 00019968 ___SH () C:\Users\Kris\Desktop\Thumbs.db
2014-12-28 17:16 - 2009-07-14 00:13 - 00006558 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-26 13:00 - 2011-05-05 19:14 - 00000000 ____D () C:\Users\Kris\AppData\Local\Google
2014-12-26 12:59 - 2013-09-10 10:29 - 00000000 ____D () C:\Program Files (x86)\enDevelopment
2014-12-26 12:51 - 2010-07-13 05:43 - 00000000 ____D () C:\Program Files (x86)\WildTangent
2014-12-26 12:41 - 2010-08-25 09:41 - 00000000 ____D () C:\Users\Kris\AppData\Roaming\Roxio
2014-12-26 12:30 - 2009-07-14 00:08 - 00032560 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-12-26 12:11 - 2010-07-13 05:34 - 00079203 _____ () C:\Windows\DirectX.log
2014-12-26 12:10 - 2012-11-16 07:17 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-26 12:10 - 2012-11-16 07:17 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-26 12:08 - 2010-07-13 07:19 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-12-26 12:03 - 2011-08-31 19:42 - 09528832 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2014-12-26 12:03 - 2011-08-31 19:21 - 00062464 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll
2014-12-26 12:03 - 2011-08-31 19:20 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-12-26 12:03 - 2011-08-31 19:20 - 00110080 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll
2014-12-26 11:09 - 2014-11-17 13:30 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-12-24 09:51 - 2009-07-13 22:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-12-21 16:09 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\schemas
2014-12-21 15:17 - 2011-12-01 13:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-21 13:01 - 2013-11-17 20:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-21 12:33 - 2010-07-13 07:36 - 00000000 ____D () C:\DELL
2014-12-19 15:46 - 2014-05-08 11:36 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-19 15:46 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-19 15:45 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-31 15:47

==================== End Of Log ============================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2014
Ran by Kris at 2015-01-02 00:18:07
Running from C:\Users\Kris\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - ‎Canon Inc.‬)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - ‪Canon Inc.‬)
Canon MG6300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6300_series) (Version: 1.00 - Canon Inc.)
Canon MG6300 series On-screen Manual (HKLM-x32\...\Canon MG6300 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon MG6300 series User Registration (HKLM-x32\...\Canon MG6300 series User Registration) (Version:  - Canon Inc.‎)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.0.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0009 - Dell, Inc.)
Dell Dock (HKLM\...\{E60B7350-EA5F-41E0-9D6F-E508781E36D2}) (Version: 2.0.0 - Dell)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Printer Software (HKLM-x32\...\{105F3CE5-FE55-408E-BF30-E78F85BA0B12}) (Version: 1.00.000 - Dell Inc.)
Dell Support Center (Support Software) (HKLM-x32\...\{E3BFEE55-39E2-4BE0-B966-89FE583822C1}) (Version: 2.5.09100 - Dell)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.05 - Creative Technology Ltd)
Driver Booster 2.1 (HKLM-x32\...\Driver Booster_is1) (Version: 2.1 - IObit)
DW WLAN Card (HKLM\...\DW WLAN Card) (Version: 5.60.48.35 - Dell Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HP Officejet 4620 series Basic Device Software (HKLM\...\{B411AD10-1BC9-4939-8848-BC5E66F662B7}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2993 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.1.5.30 - IObit)
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-4287490833-3400291495-2554494040-1000\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 34.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0 (x86 en-US)) (Version: 34.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyTurboPC (HKLM-x32\...\{A2F37CA8-53F8-4594-B701-32AE64BAED1A}) (Version: 3.2.14.0 - MyTurboPC.com)
PowerDVD DX (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.3.6029 - CyberLink Corp.)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.5.1 - Dell Inc.)
QuickTime (HKLM-x32\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Recipe Hub Internet Explorer Toolbar (HKLM-x32\...\RecipeHub_2jbar Uninstall Internet Explorer) (Version:  - Mindspark Interactive Network) <==== ATTENTION
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.15.0 - Synaptics Incorporated)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-4287490833-3400291495-2554494040-1000_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Kris\AppData\Local\Citrix\GoToMeeting\1468\G2MOutlookAddin64.dll No File
CustomCLSID: HKU\S-1-5-21-4287490833-3400291495-2554494040-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4287490833-3400291495-2554494040-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4287490833-3400291495-2554494040-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4287490833-3400291495-2554494040-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4287490833-3400291495-2554494040-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Kris\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

26-12-2014 15:36:29 Windows Update
26-12-2014 23:07:39 Windows Update
27-12-2014 08:43:58 Windows Update
27-12-2014 13:36:12 Windows Update
27-12-2014 14:42:53 Windows Update
27-12-2014 17:45:35 Windows Update
28-12-2014 16:42:38 Windows Update
28-12-2014 17:56:28 Windows Update
29-12-2014 00:01:29 Windows Update
29-12-2014 15:02:15 Windows Update
29-12-2014 22:17:25 Windows Update
30-12-2014 14:09:32 Windows Update
30-12-2014 18:48:10 Windows Update
01-01-2015 01:21:27 Windows Update
01-01-2015 12:49:55 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2015-01-01 09:52 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {1889E0B0-1DDE-41B2-8387-E5FA7CAEEBA2} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {1E02957D-B640-4D11-8D12-DBDF5502812B} - System32\Tasks\{45927D42-45DA-41C1-9133-2E78F4793759} => pcalua.exe -a E:\OneCare-Connect-PC\SetupWireless.exe -d E:\OneCare-Connect-PC
Task: {2DCA76F5-03B4-4989-9EDA-CE83BD9BB2C7} - System32\Tasks\HPCustParticipation HP Officejet 4620 series => C:\Program Files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe
Task: {2F8C85BF-463B-4B0B-9C8A-FED80761662C} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation)
Task: {36C68EDF-D2D1-473F-A3F5-5641AFC81DF9} - System32\Tasks\CIMT_S-1-5-21-4287490833-3400291495-2554494040-1000 => C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe
Task: {38FDD950-0FBF-45E7-ABF9-2BA33E75B8BD} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {58BC9D6C-AC45-4625-AD0D-04CA6C69A28F} - System32\Tasks\HP online update program => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
Task: {F5A98B4D-0500-40C8-899E-DFDD55452089} - System32\Tasks\{E520266F-EDED-4891-ABA1-FEC17B514D36} => pcalua.exe -a D:\SETUP.EXE -d D:\

==================== Loaded Modules (whitelisted) =============

2011-08-31 19:13 - 2011-08-31 19:13 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-10-16 13:39 - 2014-10-16 13:39 - 00472576 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\27062a1bd5e07ac476c1ef919d9abff5\VistaBridgeLibrary.ni.dll
2014-12-21 11:21 - 2014-12-21 11:21 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: Dell DataSafe Online => "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
MSCONFIG\startupreg: DellSupportCenter => "c:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
MSCONFIG\startupreg: Desktop Disc Tool => "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Kris\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: PDVDDXSrv => "C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: QuickSet => C:\Program Files\Dell\QuickSet\QuickSet.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

========================= Accounts: ==========================

Administrator (S-1-5-21-4287490833-3400291495-2554494040-500 - Administrator - Disabled)
Guest (S-1-5-21-4287490833-3400291495-2554494040-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4287490833-3400291495-2554494040-1002 - Limited - Enabled)
Kris (S-1-5-21-4287490833-3400291495-2554494040-1000 - Administrator - Enabled) => C:\Users\Kris

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/01/2015 11:12:03 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"1".Error in manifest or policy file "WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"2" on line WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"3.
Component identity found in manifest does not match the identity of the component requested.
Reference is WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1".
Definition is WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1".
Please use sxstrace.exe for detailed diagnosis.

Error: (01/01/2015 08:16:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Error: exception in main loop CoCreateInstance failed : HR: 0x80040154 ErrorCode: 0x0

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Product registration is corrupted for {90140011-0066-0409-0000-0000000FF1CE}

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Error: Product {90140011-0066-0409-0000-0000000FF1CE} found in the registry but SoftGrid doesn't know about it, skipping...

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Product registration is corrupted for {90140011-0066-0409-0000-0000000FF1CE}

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Error: Product {90140011-0066-0409-0000-0000000FF1CE} found in the registry but SoftGrid doesn't know about it, skipping...

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Product registration is corrupted for {90140011-0066-0409-0000-0000000FF1CE}

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Information only.
Error: Product {90140011-0066-0409-0000-0000000FF1CE} found in the registry but SoftGrid doesn't know about it, skipping...


System errors:
=============
Error: (01/01/2015 11:52:59 PM) (Source: bowser) (EventID: 8003) (User: )
Description: The master browser has received a server announcement from the computer GIAMEU
that believes that it is the master browser for the domain on transport NetBT_Tcpip_{70407AA2-8FBA-46F9-8F70-15D3A5FEC707}.
The master browser is stopping or an election is being forced.

Error: (01/01/2015 00:50:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition.

Error: (01/01/2015 00:50:17 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (01/01/2015 09:52:38 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (01/01/2015 09:51:42 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (01/01/2015 09:48:07 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (01/01/2015 09:39:07 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MBAMService service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/01/2015 09:39:07 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MBAMScheduler service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/01/2015 01:22:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition.

Error: (12/31/2014 11:52:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MBAMService service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (01/01/2015 11:12:03 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1"WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1"C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.ExeC:\Program Files (x86)\Windows Live\Photo Gallery\WLMFDS.DLL8

Error: (01/01/2015 08:16:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: The action cannot be completed. Try the action again. If the problem continues, contact Microsoft Product Support.

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Error: exception in main loop CoCreateInstance failed : HR: 0x80040154 ErrorCode: 0x0

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Product registration is corrupted for {90140011-0066-0409-0000-0000000FF1CE}

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Error: Product {90140011-0066-0409-0000-0000000FF1CE} found in the registry but SoftGrid doesn't know about it, skipping...

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Product registration is corrupted for {90140011-0066-0409-0000-0000000FF1CE}

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Error: Product {90140011-0066-0409-0000-0000000FF1CE} found in the registry but SoftGrid doesn't know about it, skipping...

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Product registration is corrupted for {90140011-0066-0409-0000-0000000FF1CE}

Error: (01/01/2015 08:06:06 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Error: Product {90140011-0066-0409-0000-0000000FF1CE} found in the registry but SoftGrid doesn't know about it, skipping...


CodeIntegrity Errors:
===================================
  Date: 2015-01-01 09:51:42.690
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2015-01-01 09:51:42.581
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel® Core™ i3 CPU M 350 @ 2.27GHz
Percentage of memory in use: 43%
Total physical RAM: 3892.52 MB
Available physical RAM: 2202.16 MB
Total Pagefile: 7783.23 MB
Available Pagefile: 5680.57 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:283.34 GB) (Free:219.56 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 7188B833)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=283.3 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

Thanks heaps, J.

P.S. Have been using the computer for several hours today and no (new) problems!!!


  • 0

#147
zep516
Posted 02 January 2015 - 07:41 AM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
OK,

No new problems.

So what remains is internet explorer does not open, windows installer errors, and no pdf function.

Lets check the system files now

System File Checker,
System File Checker merely makes sure that all system files are where they should be. The sfc /scannow command scans all protected system files and replaces incorrect versions with correct Microsoft versions.
Open an Elevated Command Prompt window. To do so, click Start, then type cmd in the Start Search box. In the results area, right-click cmd.exe, and then click Run as administrator. You will be prompted to type the password for an administrator account. Click Continue if you are the administrator or type the administrator password. Then, click Continue.

At the command prompt, type the following command, sfc /scannow and then press ENTER.

sfcscan.png
The scan may take some time to complete. Windows will repair any corrupted or missing files that it finds.

This will check your critical system files. Does this finish without complaint?

If it finds errors that can't be repaired

Reboot and run system file checker 1 more time.
  • 0

#148
juglar21
Posted 02 January 2015 - 12:56 PM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts
Hi Joe,
 
enterd cmd as told and right clicked for the 'run as administrator'. However, was not asked for a password.
 
Also, just as feed back, the way this is written
 
<<At the command prompt, type the following command, sfc /scannow and then press ENTER.>>
 
makes it look like there is a gap or empty space beteween the letter 'c' and the '/', but I assume it only looks that way?
 
So it finished and without complaint. It is sying 'Windows Resource Protection did not find any integrity violations.
 

Thanks, J


  • 0

#149
zep516
Posted 02 January 2015 - 01:11 PM

zep516

    Trusted Helper

  • Malware Removal
  • 8,093 posts
Internet explorer 11 will not open is that correct ?
  • 0

#150
juglar21
Posted 02 January 2015 - 01:32 PM

juglar21

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 132 posts

<<Internet explorer 11 will not open is that correct ?>>

 

That is correct, but not of much concern to me since I am using Mozilla.

From my point of view, you would not need to fix that!

 

I'd prefer having PDF files working or getting the Sumatra s/w you suggested running

 

Thanks, J


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP