Morning, here are the FRST logs,
FRST.TXT
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by Davie (administrator) on DAVIE-PC on 21-03-2015 08:41:05
Running from C:\Users\Davie\Desktop
Loaded Profiles: Davie (Available profiles: Davie)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English (United States)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Wondershare) C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe
(Dell) C:\Users\Davie\AppData\Local\Apps\2.0\L1YMPGED.XGQ\1G05GZ07.40T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Dropbox, Inc.) C:\Users\Davie\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Program Files\Windows Mail\WinMail.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => c:\Program Files\Microsoft IntelliPoint\ipoint.exe [1797008 2010-07-21] (Microsoft Corporation)
HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [2629632 2012-09-25] (Brother Industries, Ltd.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [978520 2015-01-30] (Microsoft Corporation)
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\...\Run: [DellSystemDetect] => C:\Users\Davie\AppData\Local\Apps\2.0\L1YMPGED.XGQ\1G05GZ07.40T\dell..tion_e30b47f5d4a30e9e_0005.000e_4ab3a7332dd76702\DellSystemDetect.exe [283432 2015-02-08] (Dell)
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\...\MountPoints2: {12a86870-243e-11e4-af4c-00219b028d60} - L:\startme.exe
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\...\MountPoints2: {a92065ab-5feb-11dd-8ef6-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Program Files\Webshots\webshots.scr [1646592 2006-01-25] (Webshots.com)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Davie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Davie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Davie\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Davie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-30905629-1660685971-3630012643-1000\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://www.google.com/ie
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-14] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2010-11-10] (Microsoft Corporation)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2013-06-03] (Google Inc.)
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-14] (Oracle Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-08] (SuperAdBlocker.com)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-14] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-07-12] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2013-12-24] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-14] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-14] (Oracle Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=13 -> C:\Program Files\Google\Google Updater\2.4.1508.6312\npCIDetect13.dll [2013-06-03] (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-08] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-08] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-12-04] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-12-04] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2013-05-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2013-05-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2013-05-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2013-05-31] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2013-05-31] (Apple Inc.)
FF Extension: MediaPlayersvideos 1.1 - C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406\Extensions\
[email protected] [2015-01-01]
FF Extension: captiondownloaderhiephmcom - C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406\Extensions\
[email protected] [2015-02-23]
FF Extension: 023e9ca063f347b1bcb29badf9d9ef28 - C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406\Extensions\{023e9ca0-63f3-47b1-bcb2-9badf9d9ef28} [2015-02-23]
FF Extension: Flash and Video Download - C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}(2) [2014-06-18]
FF Extension: No Flash - C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406\Extensions\
[email protected] [2014-10-04]
FF Extension: Youtube and more - Easy Video Downloader - C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406\Extensions\
[email protected] [2014-12-05]
FF Extension: Youtube downloader master - C:\Users\Davie\AppData\Roaming\Mozilla\Firefox\Profiles\ai0obw7f.default-1385730795406\Extensions\
[email protected] [2014-10-04]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-04-10]
Chrome:
=======
CHR Profile: C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-08]
CHR Extension: (Google Docs) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-08]
CHR Extension: (Google Drive) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-08]
CHR Extension: (YouTube) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-08]
CHR Extension: (Adblock Plus) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-12]
CHR Extension: (Google Search) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-08]
CHR Extension: (Google Sheets) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-08]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Google Wallet) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-08]
CHR Extension: (Gmail) - C:\Users\Davie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-08]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [142648 2014-08-13] (SUPERAntiSpyware.com)
S4 Brother XP spl Service; C:\Windows\system32\brsvc01a.exe [57344 2004-06-13] (brother Industries Ltd) [File not signed]
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [161048 2008-04-28] (Stardock Corporation)
S2 gupdate1c9a11782fb64e7; C:\Program Files\Google\Update\GoogleUpdate.exe [107912 2014-11-01] (Google Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22184 2015-01-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284472 2015-01-30] (Microsoft Corporation)
S4 SftService; C:\Program Files\Dell DataSafe Local Backup\sftservice.EXE [1692480 2011-08-18] (SoftThinks SAS)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-04] () [File not signed]
S3 ioFakMap; C:\Windows\System32\DRIVERS\ioFakMap.sys [10624 2010-12-15] (KYE System Corp.)
S3 ioTblMap; C:\Windows\System32\DRIVERS\ioTblMap.sys [10632 2011-06-07] (KYE System Corp.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [239224 2014-11-15] (Microsoft Corporation)
R2 RtNdPt60; C:\Windows\System32\DRIVERS\RtNdPt60.sys [27648 2008-03-06] (Windows ® Codename Longhorn DDK provider)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-30] (Almico Software)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2010-05-21] () [File not signed]
R1 StarOpen; C:\Windows\system32\Drivers\StarOpen.sys [5632 2010-10-27] () [File not signed]
R3 stdriver; C:\Windows\System32\DRIVERS\stdriverx86.sys [40344 2012-10-01] ()
R3 VX1000; C:\Windows\System32\DRIVERS\VX1000.sys [1961072 2010-05-20] (Microsoft Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-21 08:41 - 2015-03-21 08:41 - 00021328 _____ () C:\Users\Davie\Desktop\FRST.txt
2015-03-21 08:40 - 2015-03-21 08:41 - 00000000 ____D () C:\FRST
2015-03-21 08:39 - 2015-03-21 08:39 - 01135104 _____ (Farbar) C:\Users\Davie\Downloads\FRST.exe
2015-03-21 08:39 - 2015-03-21 08:39 - 01135104 _____ (Farbar) C:\Users\Davie\Desktop\FRST.exe
2015-03-20 21:23 - 2015-03-20 21:23 - 00001828 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-03-20 21:22 - 2015-03-20 21:23 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2015-03-20 21:00 - 2015-03-20 21:00 - 11530032 _____ (Microsoft Corporation) C:\Users\Davie\Downloads\mseinstall.exe
2015-03-20 20:46 - 2015-03-20 20:46 - 00000000 ____D () C:\$WINDOWS.~LS
2015-03-20 20:41 - 2015-03-20 20:41 - 00000000 ____D () C:\$WINDOWS.~BT
2015-03-20 20:33 - 2015-03-20 21:01 - 00001905 _____ () C:\Windows\diagwrn.xml
2015-03-20 20:33 - 2015-03-20 21:01 - 00001905 _____ () C:\Windows\diagerr.xml
2015-03-20 20:21 - 2015-03-20 20:21 - 00000000 ____D () C:\ProgramData\Auslogics
2015-03-20 20:20 - 2015-03-20 20:20 - 06691480 _____ (Auslogics Labs Pty Ltd ) C:\Users\Davie\Downloads\disk-defrag-setup.exe
2015-03-19 21:03 - 2015-03-19 21:04 - 28579392 _____ (Sony Mobile Communications ) C:\Users\Davie\AppData\Local\pcc.exe
2015-03-18 15:09 - 2015-03-18 15:09 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\CrystalIdea Software
2015-03-17 16:54 - 2015-03-17 16:54 - 00355632 _____ (Dropbox, Inc.) C:\Users\Davie\Downloads\DropboxInstaller (1).exe
2015-03-17 16:09 - 2015-03-17 16:09 - 02171392 _____ () C:\Users\Davie\Downloads\adwcleaner_4.112.exe
2015-03-17 14:11 - 2015-03-18 15:07 - 00000000 ____D () C:\Program Files\SpeedFan
2015-03-17 14:11 - 2015-03-17 14:11 - 00000806 _____ () C:\Users\Davie\Desktop\SpeedFan.lnk
2015-03-17 14:11 - 2015-03-17 14:11 - 00000045 _____ () C:\Windows\system32\initdebug.nfo
2015-03-17 14:11 - 2015-03-17 14:11 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-03-17 11:20 - 2007-10-22 17:35 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\system32\CSVer.dll
2015-03-17 11:16 - 2015-03-17 11:16 - 00000000 ____D () C:\Intel
2015-03-17 11:00 - 2015-03-17 11:00 - 00000000 ____D () C:\ProgramData\PC-Doctor for Windows
2015-03-17 10:59 - 2015-03-17 11:00 - 00000000 ____D () C:\Program Files\Dell Support Center
2015-03-17 10:55 - 2015-03-17 11:13 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\PCDr
2015-03-17 10:55 - 2015-03-17 11:12 - 00000000 ____D () C:\ProgramData\PCDr
2015-03-17 10:10 - 2015-03-18 02:41 - 00000000 ____D () C:\Users\Davie\{51a6b5cd-8cd5-4612-84c5-e503d01a41f2}
2015-03-16 20:08 - 2015-03-16 20:09 - 00000000 ____D () C:\Users\Davie\Desktop\rave
2015-03-16 19:32 - 2015-03-16 20:02 - 00000000 ____D () C:\Users\Davie\Downloads\rave
2015-03-16 19:09 - 2015-03-16 19:28 - 591474701 _____ () C:\Users\Davie\Downloads\rave.zip
2015-03-16 18:26 - 2015-03-16 18:28 - 00002035 _____ () C:\Users\Davie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\.lnk
2015-03-16 18:03 - 2015-03-16 18:03 - 01080488 _____ (WinZip) C:\Users\Davie\Downloads\winzip19-lan.exe
2015-03-16 12:38 - 2015-03-20 21:14 - 00578178 _____ () C:\Windows\PFRO.log
2015-03-16 11:06 - 2015-03-16 11:06 - 00000197 _____ () C:\Windows\system32\2015-03-16-03-06-27.058-AvastVBoxSVC.exe-3328.log
2015-03-15 20:24 - 2015-03-15 20:24 - 00001909 _____ () C:\Users\Public\Desktop\Google Slides.lnk
2015-03-15 20:24 - 2015-03-15 20:24 - 00001907 _____ () C:\Users\Public\Desktop\Google Sheets.lnk
2015-03-15 20:24 - 2015-03-15 20:24 - 00001897 _____ () C:\Users\Public\Desktop\Google Docs.lnk
2015-03-15 20:24 - 2015-03-15 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-03-15 20:22 - 2015-03-15 20:22 - 00880208 _____ (Google Inc.) C:\Users\Davie\Downloads\googledrivesync.exe
2015-03-15 20:05 - 2015-03-15 20:05 - 00000000 ____D () C:\ProgramData\Wondershare
2015-03-15 19:37 - 2015-03-16 17:27 - 00001894 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2015-03-15 19:28 - 2015-03-15 19:28 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Land Rover
2015-03-15 10:23 - 2015-03-15 10:23 - 00000247 _____ () C:\Windows\system32\2015-03-15-02-23-20.020-aswFe.exe-176.log
2015-03-14 12:23 - 2015-03-14 12:23 - 00000000 ____D () C:\Program Files\Common Files\Java
2015-03-14 11:36 - 2015-03-20 19:02 - 00000000 ____D () C:\Users\Davie\AppData\Local\CrashDumps
2015-03-13 14:20 - 2015-03-13 14:20 - 00000759 _____ () C:\Users\Davie\Documents\.Test.vbs
2015-03-13 12:47 - 2015-03-13 12:47 - 00000197 _____ () C:\Windows\system32\2015-03-13-04-47-01.039-AvastVBoxSVC.exe-2676.log
2015-03-13 12:35 - 2015-03-13 12:35 - 00001923 _____ () C:\Users\Public\Desktop\Brother Creative Center.lnk
2015-03-13 12:33 - 2015-03-13 12:33 - 00000000 ____D () C:\Program Files\Browny02
2015-03-13 12:33 - 2012-08-20 12:19 - 01534464 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrWi209c.dll
2015-03-13 12:33 - 2010-03-08 13:50 - 00003072 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2S.dll
2015-03-13 12:33 - 2010-02-05 11:42 - 00180224 ____N (Brother Industries, Ltd.) C:\Windows\system32\BroSNMP.dll
2015-03-13 12:33 - 2007-12-13 22:16 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2.dll
2015-03-13 12:33 - 2007-12-13 22:16 - 00005120 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2L.dll
2015-03-13 12:32 - 2015-03-13 12:32 - 00000000 ____D () C:\Users\Davie\Downloads\wlan_wiz
2015-03-13 12:26 - 2015-03-13 12:29 - 122136464 _____ (A.I.SOFT,INC.) C:\Users\Davie\Downloads\dcp-j315w-inst-B1-cd1.EXE
2015-03-13 11:39 - 2015-03-20 21:00 - 00003007 _____ () C:\Windows\setupact.log
2015-03-13 11:39 - 2015-03-20 20:33 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-13 11:39 - 2015-03-13 11:39 - 00000197 _____ () C:\Windows\system32\2015-03-13-03-38-59.091-AvastVBoxSVC.exe-2876.log
2015-03-13 11:09 - 2015-03-13 11:09 - 00000197 _____ () C:\Windows\system32\2015-03-13-03-09-55.084-AvastVBoxSVC.exe-3916.log
2015-03-13 10:56 - 2015-03-13 10:56 - 00000197 _____ () C:\Windows\system32\2015-03-13-02-56-08.030-AvastVBoxSVC.exe-3976.log
2015-03-13 08:10 - 2015-03-13 08:10 - 00000197 _____ () C:\Windows\system32\2015-03-13-00-10-09.057-AvastVBoxSVC.exe-2608.log
2015-03-12 09:31 - 2015-03-12 09:31 - 00000197 _____ () C:\Windows\system32\2015-03-12-01-31-25.065-AvastVBoxSVC.exe-2972.log
2015-03-11 14:20 - 2015-03-11 14:20 - 00000197 _____ () C:\Windows\system32\2015-03-11-06-20-41.007-AvastVBoxSVC.exe-2976.log
2015-03-11 08:40 - 2015-01-29 09:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 08:39 - 2015-02-26 08:18 - 02064384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 08:39 - 2015-01-29 09:35 - 00975360 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 08:32 - 2015-02-20 10:03 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 08:32 - 2015-02-20 08:28 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 08:31 - 2015-02-26 10:01 - 03604408 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-03-11 08:31 - 2015-02-26 10:01 - 03552184 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-11 08:31 - 2015-01-21 10:02 - 00807936 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 08:31 - 2015-01-09 10:04 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 08:31 - 2015-01-09 08:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 08:30 - 2015-03-06 12:01 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 08:30 - 2014-10-13 09:12 - 02264064 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-11 08:29 - 2015-02-18 10:02 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 07:55 - 2015-02-22 01:37 - 12375040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-11 07:55 - 2015-02-22 01:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-03-11 07:55 - 2015-02-22 01:29 - 09747968 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-11 07:55 - 2015-02-22 01:28 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-11 07:55 - 2015-02-22 01:22 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-11 07:55 - 2015-02-22 01:21 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-11 07:55 - 2015-02-22 01:21 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-11 07:55 - 2015-02-22 01:20 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-03-11 07:55 - 2015-02-22 01:20 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-11 07:55 - 2015-02-22 01:19 - 01803264 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-11 07:55 - 2015-02-22 01:19 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-03-11 07:55 - 2015-02-22 01:19 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-11 07:55 - 2015-02-22 01:19 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-11 07:55 - 2015-02-22 01:19 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-11 07:55 - 2015-02-22 01:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-11 07:55 - 2015-02-22 01:18 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-11 07:55 - 2015-02-22 01:18 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-11 07:55 - 2015-02-22 01:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-11 07:55 - 2015-02-22 01:18 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-03-11 07:55 - 2015-02-22 01:18 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-03-11 07:55 - 2015-02-22 01:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-03-11 07:55 - 2015-02-22 01:17 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-11 07:52 - 2015-03-11 08:05 - 00007977 _____ () C:\Users\Davie\Documents\System Idle Process.txt
2015-03-11 07:41 - 2015-03-11 07:42 - 00000197 _____ () C:\Windows\system32\2015-03-10-23-41-54.060-AvastVBoxSVC.exe-3996.log
2015-03-10 11:07 - 2015-03-10 11:07 - 00000197 _____ () C:\Windows\system32\2015-03-10-03-07-00.079-AvastVBoxSVC.exe-3132.log
2015-03-08 08:55 - 2015-03-08 08:55 - 00000197 _____ () C:\Windows\system32\2015-03-08-00-55-20.095-AvastVBoxSVC.exe-1216.log
2015-03-06 17:02 - 2015-03-06 18:22 - 00000000 ____D () C:\Users\Davie\Documents\rave (1)
2015-03-06 15:05 - 2015-03-06 15:05 - 00000775 _____ () C:\Users\Davie\Desktop\7-Zip File Manager.lnk
2015-03-06 15:02 - 2015-03-06 15:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2015-03-06 15:02 - 2015-03-06 15:02 - 00000000 ____D () C:\Program Files\7-Zip
2015-03-06 13:11 - 2015-03-10 12:16 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-03-06 13:11 - 2015-03-06 13:50 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-03-06 07:41 - 2015-03-06 07:41 - 00000197 _____ () C:\Windows\system32\2015-03-05-23-41-45.029-AvastVBoxSVC.exe-3032.log
2015-03-05 11:41 - 2015-03-05 11:41 - 00000197 _____ () C:\Windows\system32\2015-03-05-03-41-41.090-AvastVBoxSVC.exe-2988.log
2015-03-04 17:09 - 2015-03-04 17:09 - 00000197 _____ () C:\Windows\system32\2015-03-04-09-09-55.042-AvastVBoxSVC.exe-3692.log
2015-03-04 08:34 - 2015-03-04 08:34 - 00000197 _____ () C:\Windows\system32\2015-03-04-00-34-10.001-AvastVBoxSVC.exe-4352.log
2015-02-27 15:50 - 2015-02-27 15:50 - 00000000 ____D () C:\Users\Davie\AppData\Local\{445E4688-1907-4350-9CF6-C33C78C364DA}
2015-02-27 15:36 - 2015-02-27 15:36 - 00000000 ____D () C:\Users\Davie\AppData\Local\{F2EF7F01-C0EC-4431-B5D0-44FB24869713}
2015-02-27 14:18 - 2015-02-27 14:18 - 00000247 _____ () C:\Windows\system32\2015-02-27-06-18-18.013-aswFe.exe-6028.log
2015-02-27 14:04 - 2015-02-27 14:18 - 00000247 _____ () C:\Windows\system32\2015-02-27-06-04-04.095-aswFe.exe-5504.log
2015-02-27 14:03 - 2015-02-27 14:03 - 00000197 _____ () C:\Windows\system32\2015-02-27-06-03-57.041-AvastVBoxSVC.exe-3136.log
2015-02-27 11:54 - 2015-02-27 11:56 - 00000000 ____D () C:\Windows\system32\vbox
2015-02-27 11:48 - 2015-03-20 21:14 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-02-27 11:38 - 2015-02-27 11:41 - 132469808 _____ (AVAST Software) C:\Users\Davie\Downloads\avast_free_antivirus_setup.exe
2015-02-27 10:14 - 2015-03-12 22:43 - 00000020 _____ () C:\Users\Davie\AppData\Roaming\appdataFr3.bin
2015-02-27 09:54 - 2015-02-27 12:09 - 00000000 ____D () C:\Program Files\comfix
2015-02-23 09:47 - 2014-11-26 10:05 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-23 09:46 - 2015-01-15 12:13 - 00440760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-23 09:37 - 2015-02-23 09:37 - 00000000 ____D () C:\Windows\Temp49189D3D-F36E-6298-86B0-6AD8E0F4F57D-Signatures
2015-02-23 09:34 - 2014-12-08 09:59 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-23 09:32 - 2015-02-23 09:32 - 00001127 _____ () C:\Users\Davie\Desktop\Watchtower Library 2014 - English.lnk
2015-02-23 09:32 - 2015-02-23 09:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Watchtower Library 2014
2015-02-23 09:29 - 2015-02-23 09:30 - 00000000 ____D () C:\1dde1cb4387c5846477e94eeeafd
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-21 08:37 - 2012-03-10 10:28 - 02058921 _____ () C:\Windows\WindowsUpdate.log
2015-03-21 08:35 - 2014-10-08 13:43 - 00000000 ___RD () C:\Users\Davie\Dropbox
2015-03-21 08:35 - 2013-10-11 19:54 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\Skype
2015-03-21 08:35 - 2013-06-27 12:22 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\Dropbox
2015-03-21 08:35 - 2013-06-03 15:44 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job
2015-03-21 08:33 - 2009-06-27 16:32 - 00000880 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-21 08:32 - 2008-08-01 17:19 - 00000276 _____ () C:\Windows\Tasks\RtlNICDiagVistaStart.job
2015-03-21 08:31 - 2006-11-02 21:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-21 08:31 - 2006-11-02 20:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-21 08:31 - 2006-11-02 20:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-20 22:41 - 2006-11-02 21:01 - 00032586 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-03-20 21:24 - 2011-01-26 19:40 - 00001945 _____ () C:\Windows\epplauncher.mif
2015-03-20 21:18 - 2013-06-03 15:44 - 00000000 ____D () C:\ProgramData\Google Updater
2015-03-20 19:01 - 2008-08-01 17:18 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2015-03-19 21:04 - 2006-11-02 18:33 - 00759542 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-18 14:35 - 2013-10-11 19:54 - 00000000 ___RD () C:\Program Files\Skype
2015-03-18 14:34 - 2010-02-10 17:14 - 00000000 ____D () C:\ProgramData\Skype
2015-03-18 14:11 - 2008-09-26 10:54 - 00000000 ____D () C:\Netgear
2015-03-18 13:54 - 2008-08-01 17:17 - 00000000 ____D () C:\Program Files\Java
2015-03-18 02:41 - 2006-11-02 19:18 - 00000000 ____D () C:\Windows\system32\Msdtc
2015-03-18 02:41 - 2006-11-02 19:18 - 00000000 ____D () C:\Windows\registration
2015-03-18 02:41 - 2006-11-02 18:22 - 49807360 _____ () C:\Windows\system32\config\software_previous
2015-03-18 02:41 - 2006-11-02 18:22 - 29097984 _____ () C:\Windows\system32\config\system_previous
2015-03-18 02:39 - 2006-11-02 18:22 - 44040192 _____ () C:\Windows\system32\config\components_previous
2015-03-18 02:39 - 2006-11-02 18:22 - 00262144 _____ () C:\Windows\system32\config\sam_previous
2015-03-17 11:22 - 2008-08-01 17:19 - 00000000 ____D () C:\Program Files\Realtek
2015-03-17 11:20 - 2008-08-01 17:19 - 00000000 ____D () C:\Program Files\Intel
2015-03-17 11:12 - 2009-10-26 14:48 - 00000000 ____D () C:\Users\Davie\AppData\Local\Deployment
2015-03-17 11:06 - 2010-12-10 18:41 - 00000000 ____D () C:\Temp
2015-03-17 11:00 - 2008-08-01 17:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2015-03-17 10:58 - 2008-08-01 17:23 - 00000000 ____D () C:\Program Files\Dell
2015-03-17 10:42 - 2008-09-25 17:59 - 00000000 ____D () C:\Users\Davie
2015-03-17 10:14 - 2006-11-02 18:22 - 00524288 _____ () C:\Windows\system32\config\default_previous
2015-03-17 10:14 - 2006-11-02 18:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
2015-03-17 10:11 - 2008-08-02 01:05 - 00000000 ____D () C:\Windows\system32\RTCOM
2015-03-17 10:10 - 2009-10-26 14:51 - 00319456 _____ (Microsoft Corporation) C:\Windows\DIFxAPI.dll
2015-03-17 07:57 - 2006-11-02 19:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-03-16 18:35 - 2012-11-29 12:51 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\vlc
2015-03-16 18:32 - 2010-11-11 11:09 - 00000000 ____D () C:\ProgramData\WinZip
2015-03-16 18:27 - 2008-09-25 18:00 - 00001000 _____ () C:\Users\Davie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-03-16 18:16 - 2008-09-29 10:39 - 00000000 ____D () C:\Users\Davie\AppData\Local\Adobe
2015-03-16 17:27 - 2011-08-08 11:52 - 00002425 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2015-03-16 17:27 - 2008-10-18 19:32 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-03-16 17:27 - 2008-08-01 17:23 - 00000000 ____D () C:\ProgramData\Adobe
2015-03-16 16:48 - 2010-03-10 10:13 - 00000000 ____D () C:\Windows\pss
2015-03-15 20:24 - 2008-09-25 18:01 - 00000000 ____D () C:\Users\Davie\AppData\Local\Google
2015-03-15 20:24 - 2008-08-01 17:23 - 00000000 ____D () C:\Program Files\Google
2015-03-15 20:05 - 2014-08-29 16:07 - 00000000 ____D () C:\Users\Davie\AppData\Roaming\Wondershare
2015-03-15 19:27 - 2008-09-25 20:09 - 00045568 _____ () C:\Users\Davie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-15 19:06 - 2008-09-25 18:21 - 00000000 ____D () C:\ProgramData\Roxio
2015-03-14 12:34 - 2015-01-06 12:52 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-03-14 12:15 - 2014-10-26 18:09 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-03-14 12:11 - 2015-01-06 12:52 - 00778928 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-03-14 12:11 - 2015-01-06 12:52 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-03-14 11:46 - 2008-09-26 11:56 - 00007512 _____ () C:\Users\Davie\AppData\Local\d3d9caps.dat
2015-03-13 12:35 - 2012-10-12 11:02 - 00000050 _____ () C:\Windows\system32\BRIDF10A.DAT
2015-03-13 12:35 - 2008-09-26 13:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2015-03-13 12:33 - 2008-09-26 13:11 - 00000000 ____D () C:\Program Files\Brother
2015-03-13 11:42 - 2008-09-26 13:12 - 00000462 _____ () C:\Windows\BRWMARK.INI
2015-03-11 14:08 - 2006-11-02 20:47 - 00315880 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-11 08:39 - 2013-08-10 10:28 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 08:32 - 2006-11-02 18:24 - 119837696 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-03-10 11:15 - 2015-02-08 12:04 - 00001973 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-03-05 16:20 - 2014-12-05 20:49 - 00000861 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-03-04 16:59 - 2013-08-01 18:37 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2015-02-27 12:46 - 2014-09-01 16:18 - 00000365 _____ () C:\Users\Davie\AppData\Roaming\LSHLRGPF
2015-02-27 12:36 - 2015-01-09 16:06 - 00000000 ____D () C:\ProgramData\4001812108
2015-02-27 09:54 - 2015-02-08 11:14 - 00000000 ____D () C:\ProgramData\59b4cf200005341
2015-02-25 14:00 - 2015-01-13 17:56 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-02-25 13:56 - 2006-11-02 19:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-02-24 04:23 - 2009-10-03 17:31 - 00246920 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-02-23 12:19 - 2011-06-01 21:14 - 00000000 ____D () C:\Users\Davie\dwhelper
2015-02-23 09:49 - 2011-09-25 14:14 - 00000000 ____D () C:\Program Files\Watchtower
==================== Files in the root of some directories =======
2013-06-11 12:15 - 2013-06-11 12:13 - 0013824 _____ () C:\Program Files\1033.MST
2012-09-17 13:33 - 2012-09-17 13:33 - 0000288 _____ () C:\Users\Davie\AppData\Roaming\.backup.dm
2015-02-27 10:14 - 2015-03-12 22:43 - 0000020 _____ () C:\Users\Davie\AppData\Roaming\appdataFr3.bin
2014-09-01 16:18 - 2015-02-27 12:46 - 0000365 _____ () C:\Users\Davie\AppData\Roaming\LSHLRGPF
2014-01-20 12:30 - 2014-01-20 12:30 - 0000041 _____ () C:\Users\Davie\AppData\Roaming\mbam.context.scan
2014-09-01 16:18 - 2014-09-01 16:18 - 0002086 _____ () C:\Users\Davie\AppData\Roaming\QAKOG
2008-10-12 13:48 - 2008-10-12 13:48 - 0026340 _____ () C:\Users\Davie\AppData\Roaming\UserTile.png
2009-09-24 16:17 - 2014-03-14 11:46 - 0000140 _____ () C:\Users\Davie\AppData\Roaming\wklnhst.dat
2012-04-18 13:56 - 2012-04-18 13:56 - 0000552 _____ () C:\Users\Davie\AppData\Local\d3d8caps.dat
2008-09-26 11:56 - 2015-03-14 11:46 - 0007512 _____ () C:\Users\Davie\AppData\Local\d3d9caps.dat
2008-09-25 20:09 - 2015-03-15 19:27 - 0045568 _____ () C:\Users\Davie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-06-07 14:46 - 2009-06-07 14:46 - 0008248 _____ () C:\Users\Davie\AppData\Local\en.ini
2015-03-19 21:03 - 2015-03-19 21:04 - 28579392 _____ (Sony Mobile Communications ) C:\Users\Davie\AppData\Local\pcc.exe
2012-09-05 17:11 - 2012-09-05 17:11 - 0001503 _____ () C:\Users\Davie\AppData\Local\recently-used.xbel
2010-02-10 17:23 - 2010-02-10 17:23 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2008-10-15 16:08 - 2010-10-27 18:40 - 0000000 _____ () C:\ProgramData\LauncherAccess.dt
Some content of TEMP:
====================
C:\Users\Davie\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpz6kmz7.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-21 08:39
==================== End Of Log ============================