Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Removing tammgR119.sys and tammgF119.sys virus help.


  • This topic is locked This topic is locked

#16
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
Hello,

Sorry for some delay. I need to see another set of FRST Logs.

Re-run Farbar Recovery Scan Tool (FRST/FRST64) you ran at the very beginning of this topic.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure you checkmark Addition.txt box.
  • Press Scan button.
  • Scan will create two logs, FRST.txt and Addition.txt in the same directory the tool is run. Please copy and paste them to your reply.

  • 0

Advertisements


#17
mxsx353

mxsx353

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts

Here are the files.

Attached Files


  • 0

#18
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
Thanks,

I'll paste those into the forum, it's easier to look at them.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2015 01
Ran by Alec (administrator) on ALEC-PC on 23-05-2015 14:12:26
Running from C:\Users\Alec\Desktop
Loaded Profiles: Alec (Available Profiles: Alec)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
(Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
(Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
() C:\Windows\System32\spool\drivers\x64\3\dldoserv.exe
( ) C:\Windows\System32\dldocoms.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\runSW.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Realtek\REALTEK USB Wireless LAN Driver\WPSService20.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek) C:\Windows\SwUSB.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.3.374.0\McCSPServiceHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(BitTorrent Inc.) C:\Users\Alec\AppData\Roaming\uTorrent\uTorrent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7573208 2014-04-22] (Realtek Semiconductor)
HKLM-x32\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-27] (NVIDIA Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8204056 2015-04-23] (Piriform Ltd)
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: F - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {8f15e18a-dd64-11e4-a41c-6805ca2ceaa7} - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {8f15e1a8-dd64-11e4-a41c-6805ca2ceaa7} - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {bd88f3b4-b54b-11e4-83d2-6805ca2ceaa7} - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {bd88f3bc-b54b-11e4-83d2-6805ca2ceaa7} - E:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {bd88f3de-b54b-11e4-83d2-6805ca2ceaa7} - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {bd88f3e4-b54b-11e4-83d2-6805ca2ceaa7} - F:\VZW_Software_upgrade_assistant.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {e5d2a948-86d2-11e4-86fa-806e6f6e6963} - D:\autorun.exe
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\MountPoints2: {fac26674-b32a-11e4-9bcb-6805ca2ceaa7} - F:\VZW_Software_upgrade_assistant.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-88998690-3935351832-2280324733-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-22] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29] (Microsoft Corp.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-22] (Oracle Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-22] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-22] (Oracle Corporation)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2015-04-29] (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2015-02-27] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2015-02-27] (McAfee, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2014-09-03] (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-22] (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-02-27] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-16] (Adobe Systems, Inc.)
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2014-09-03] (Citrix Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-22] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2015-02-27] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2011-05-13] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-88998690-3935351832-2280324733-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Alec\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-27] (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-12-28]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor

Chrome:
=======
CHR Profile: C:\Users\Alec\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Cloud SWF, Flash Player with Drive) - C:\Users\Alec\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffhhaadihgfcgmlefioblaahpnglnkbk [2015-05-19]
CHR Extension: (SiteAdvisor) - C:\Users\Alec\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-04-25]
CHR Extension: (AdBlock) - C:\Users\Alec\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-19]
CHR Extension: (Bookmark Manager) - C:\Users\Alec\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-22]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Alec\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-12]
CHR Extension: (Google Wallet) - C:\Users\Alec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-25]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-19]
CHR HKLM-x32\...\Chrome\Extension: [dogdoihocdkadpalbghcpfafbojcfofa] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-05-19]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] ()
R2 BtSwitcherService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216 2012-03-22] (Cambridge Silicon Radio Limited)
R2 CSRBtAudioService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624 2012-03-22] (Cambridge Silicon Radio Limited)
R2 CsrBtOBEXService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616 2012-03-22] (Cambridge Silicon Radio Limited)
R2 CsrBtService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032 2012-03-22] (Cambridge Silicon Radio Limited)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1254400 2015-04-27] (Microsoft Corporation)
R2 dldoCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\x64\3\\dldoserv.exe [34032 2007-10-05] ()
R2 dldo_device; C:\Windows\system32\dldocoms.exe [1044720 2007-10-05] ( )
R2 dldo_device; C:\Windows\SysWOW64\dldocoms.exe [595184 2007-10-05] ( )
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-27] (NVIDIA Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [155368 2015-04-29] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [562200 2015-02-27] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.3.374.0\McCSPServiceHost.exe [422632 2015-01-22] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [601864 2015-02-27] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [335064 2014-10-31] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1050952 2014-11-06] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [221832 2014-10-01] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189920 2014-10-01] (McAfee, Inc.)
S4 MSMQ; C:\Windows\system32\mqsvc.exe [9216 2009-07-13] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-27] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-27] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-12-31] ()
R2 RunSwUSB; C:\Windows\runSW.exe [44104 2014-01-16] ()
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-02] (DEVGURU Co., LTD.)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2014-11-04] (Tunngle.net GmbH)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44856 2015-02-25] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36664 2015-02-25] (AVG Technologies)
S4 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-20] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WPSService20; C:\Program Files (x86)\Realtek\REALTEK USB Wireless LAN Driver\WPSService20.exe [96768 2013-05-07] () []

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72136 2014-10-01] (McAfee, Inc.)
S3 csravrcp; C:\Windows\System32\DRIVERS\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Limited)
S3 CsrBtPort; C:\Windows\System32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Limited)
S3 csrhidmini; C:\Windows\System32\DRIVERS\csrhidmini.sys [29896 2012-03-22] (Cambridge Silicon Radio Limited)
S3 csrpan; C:\Windows\System32\DRIVERS\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Limited)
S3 csrserial; C:\Windows\System32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Limited)
S3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Limited)
S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Limited)
S3 csr_bthav; C:\Windows\System32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Limited)
S3 DFX11_1; C:\Windows\System32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows ® Win 7 DDK provider)
S3 GPUZ; No ImagePath
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49264 2014-07-28] (Visicom Media Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-23] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35440 2014-05-13] (Visicom Media Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181584 2014-10-01] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313680 2014-10-01] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [526360 2014-10-01] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786304 2014-10-01] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [447440 2014-09-19] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [96600 2014-09-19] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348560 2014-10-01] (McAfee, Inc.)
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Generic USB smartcard reader)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [189440 2009-07-13] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-27] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [2978520 2014-01-10] (Realtek Semiconductor Corporation )
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-23 14:11 - 2015-05-23 14:12 - 00026684 _____ () C:\Users\Alec\Desktop\FRST.txt
2015-05-23 14:11 - 2015-05-23 14:11 - 00033154 _____ () C:\Users\Alec\Downloads\Addition.txt
2015-05-23 14:10 - 2015-05-23 14:12 - 00000000 ____D () C:\FRST
2015-05-23 14:10 - 2015-05-23 14:10 - 00000000 ____D () C:\Users\Alec\Downloads\FRST-OlderVersion
2015-05-23 11:13 - 2015-05-23 11:13 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\lzmtjmvm
2015-05-23 09:33 - 2015-05-23 09:33 - 00000000 ____D () C:\Users\Alec\Desktop\GrandTheftAutoV+15Tr-LNG_v1.03
2015-05-23 09:33 - 2015-05-23 09:32 - 01908710 _____ () C:\Users\Alec\Desktop\GrandTheftAutoV+15Tr-LNG_v1.03.rar
2015-05-23 09:32 - 2015-05-23 09:32 - 01908710 _____ () C:\Users\Alec\Downloads\GrandTheftAutoV+15Tr-LNG_v1.03.rar
2015-05-23 09:16 - 2015-05-23 09:16 - 00491368 _____ () C:\Users\Alec\Downloads\SGTA50001
2015-05-22 21:13 - 2015-05-22 21:13 - 00058400 _____ () C:\Users\Alec\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-22 21:13 - 2015-05-22 21:13 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\fjlzpdxt
2015-05-22 21:05 - 2015-05-22 21:05 - 00001112 _____ () C:\Users\Alec\Desktop\checkup.txt
2015-05-22 19:25 - 2015-05-22 19:26 - 04784837 _____ () C:\Users\Alec\Downloads\GTAV-unpacked.exe
2015-05-22 18:49 - 2015-05-22 18:49 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\lhgvyumb
2015-05-22 18:47 - 2015-05-22 18:47 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\etnwyexu
2015-05-22 18:46 - 2015-05-22 18:46 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\ucufjdic
2015-05-22 18:39 - 2015-05-22 18:39 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\unvugnzw
2015-05-22 18:39 - 2015-05-22 18:39 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\dtmrnead
2015-05-22 18:39 - 2015-05-22 18:38 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-05-22 18:38 - 2015-05-22 18:38 - 00000000 ____D () C:\Program Files\Java
2015-05-22 18:29 - 2015-05-22 18:35 - 43189344 _____ (Oracle Corporation) C:\Users\Alec\Downloads\jre-8u45-windows-x64.exe
2015-05-22 18:28 - 2015-05-22 18:28 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\pueghkhs
2015-05-22 18:27 - 2015-05-22 18:27 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\noddewip
2015-05-22 18:20 - 2015-05-22 18:20 - 00562272 _____ (Oracle Corporation) C:\Users\Alec\Downloads\chromeinstall-8u45.exe
2015-05-22 18:17 - 2015-05-22 18:20 - 21930163 _____ (Lime Wire LLC) C:\Users\Alec\Downloads\LimeWirePirateEdition.exe
2015-05-22 17:48 - 2015-05-22 17:50 - 00000000 ____D () C:\Users\Alec\Downloads\Taylor Swift - 1989 (Deluxe) (2014) [FLAC]
2015-05-22 17:47 - 2015-05-22 17:47 - 00020046 _____ () C:\Users\Alec\Downloads\[kat.cr]taylor.swift.1989.torrent
2015-05-22 13:35 - 2015-04-21 09:33 - 14374400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 13771776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 02864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00690176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-05-22 13:35 - 2015-04-21 09:33 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-05-22 13:35 - 2015-04-21 09:32 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-22 13:35 - 2015-04-21 08:53 - 02237440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-22 13:35 - 2015-04-21 08:53 - 01409536 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-22 13:35 - 2015-04-21 08:53 - 00601600 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-22 13:35 - 2015-04-21 08:53 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-05-22 13:35 - 2015-04-21 08:53 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-22 13:35 - 2015-04-21 08:52 - 19291136 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 15414784 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 02656768 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-22 13:35 - 2015-04-21 08:52 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-05-22 13:35 - 2015-04-21 08:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-05-22 13:35 - 2015-04-17 22:06 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-05-22 13:35 - 2015-04-17 21:59 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-05-22 13:35 - 2015-04-17 21:37 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-22 13:35 - 2015-04-17 21:34 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-22 13:35 - 2015-04-17 21:12 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-05-22 13:35 - 2015-04-17 21:09 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-05-22 03:45 - 2015-05-23 03:18 - 00000336 _____ () C:\Windows\setupact.log
2015-05-22 03:45 - 2015-05-22 03:45 - 00268392 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-22 03:45 - 2015-05-22 03:45 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-22 03:43 - 2015-05-23 09:03 - 00005023 _____ () C:\Windows\runSW.log
2015-05-22 03:26 - 2015-05-22 03:26 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2015-05-22 03:26 - 2015-05-22 03:26 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2015-05-22 03:26 - 2015-05-22 03:26 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-05-22 03:26 - 2015-05-22 03:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-05-22 03:26 - 2015-05-22 03:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2015-05-22 03:26 - 2015-05-22 03:26 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-05-22 03:26 - 2015-05-22 03:26 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-05-22 03:05 - 2015-05-22 03:28 - 00007633 _____ () C:\Windows\IE10_main.log
2015-05-22 03:00 - 2015-05-22 03:05 - 00003275 _____ () C:\Windows\IE9_main.log
2015-05-21 07:51 - 2015-05-20 15:41 - 02347384 _____ (ESET) C:\Users\Alec\Desktop\esetsmartinstaller_enu.exe
2015-05-20 20:45 - 2015-05-20 20:45 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\tleygnio
2015-05-20 20:09 - 2015-05-20 20:09 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\uchqndni
2015-05-20 20:06 - 2015-05-20 16:33 - 00852639 _____ () C:\Users\Alec\Desktop\SecurityCheck.exe
2015-05-20 20:01 - 2015-05-20 20:01 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\rnnrcirc
2015-05-20 16:32 - 2015-05-20 16:33 - 00852639 _____ () C:\Users\Alec\Downloads\SecurityCheck.exe
2015-05-20 15:41 - 2015-05-20 15:41 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-05-20 15:40 - 2015-05-20 15:41 - 02347384 _____ (ESET) C:\Users\Alec\Downloads\esetsmartinstaller_enu.exe
2015-05-19 18:00 - 2015-05-19 18:00 - 00308696 _____ () C:\Users\Alec\Downloads\ScriptHookV_1.0.350.2a.zip
2015-05-19 17:55 - 2015-05-19 17:55 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\diakowmq
2015-05-19 17:31 - 2015-05-19 17:31 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-19 17:31 - 2015-05-19 17:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-19 17:31 - 2015-05-19 17:31 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-19 17:31 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-19 17:31 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-19 17:28 - 2015-05-19 17:29 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Alec\Downloads\mbam-setup-2.1.6.1022.exe
2015-05-19 07:34 - 2015-05-19 07:34 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\jgjvtugi
2015-05-19 07:29 - 2015-05-19 07:29 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\hwkfayyk
2015-05-19 07:23 - 2015-05-19 07:23 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\pwinnsso
2015-05-19 07:20 - 2015-05-19 07:20 - 00253869 _____ (Thisisu) C:\Users\Alec\Downloads\Unconfirmed 703837.crdownload
2015-05-19 07:19 - 2015-05-19 07:19 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-ALEC-PC-Windows-7-Professional-(64-bit).dat
2015-05-19 07:19 - 2015-05-19 07:19 - 00000000 ____D () C:\RegBackup
2015-05-19 07:18 - 2015-05-19 07:19 - 02720186 _____ (Thisisu) C:\Users\Alec\Downloads\JRT.exe
2015-05-19 07:12 - 2015-05-19 07:13 - 02209792 _____ () C:\Users\Alec\Downloads\adwcleaner_4.204 (1).exe
2015-05-18 21:41 - 2015-05-18 21:41 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\icypfzax
2015-05-18 21:36 - 2015-05-18 21:36 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\mmrkvnjz
2015-05-18 20:44 - 2015-05-18 20:44 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\zfdnfbiw
2015-05-18 19:08 - 2015-05-20 20:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GTA 5
2015-05-18 19:08 - 2015-05-18 19:08 - 00000869 _____ () C:\Users\Alec\Desktop\Grand Theft Auto V.lnk
2015-05-18 17:50 - 2015-05-18 17:50 - 00000000 ____D () C:\Users\Alec\Documents\Rockstar Games
2015-05-18 17:50 - 2015-05-18 17:50 - 00000000 ____D () C:\ProgramData\Socialclub
2015-05-18 15:24 - 2015-05-18 17:56 - 00000000 ____D () C:\Games
2015-05-17 22:32 - 2015-05-23 14:11 - 00080166 _____ () C:\Users\Alec\Downloads\FRST.txt
2015-05-17 22:28 - 2015-05-23 14:10 - 02108416 _____ (Farbar) C:\Users\Alec\Desktop\FRST64.exe
2015-05-17 22:25 - 2015-05-17 22:28 - 00000000 ____D () C:\Users\Alec\AppData\Local\DesktopSearch
2015-05-17 17:07 - 2015-05-17 17:07 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\jddsxwck
2015-05-17 16:39 - 2015-05-17 16:39 - 00001994 _____ () C:\Users\Public\Desktop\SketchUp 2015.lnk
2015-05-17 16:39 - 2015-05-17 16:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2015
2015-05-17 16:38 - 2015-05-17 16:38 - 00000000 ____D () C:\Program Files\SketchUp
2015-05-17 15:12 - 2015-05-17 16:01 - 00000000 ____D () C:\Users\Alec\Downloads\SketchUp Pro 2015 v15.2.687 (x86) & v15.2.685 (x64)-[FirstUploads]
2015-05-17 15:11 - 2015-05-17 15:11 - 00268729 _____ () C:\Users\Alec\Downloads\[kat.cr]sketchup.pro.2015.v15.2.687.x86.v15.2.685.x64.firstuploads.torrent
2015-05-17 10:03 - 2015-05-23 12:37 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-17 10:03 - 2015-05-18 20:40 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-05-17 09:59 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-17 09:57 - 2015-05-17 09:59 - 16502728 _____ (Malwarebytes Corp.) C:\Users\Alec\Downloads\mbar-1.09.1.1004.exe
2015-05-17 09:38 - 2015-05-17 09:43 - 12728192 _____ () C:\Users\Alec\Downloads\#S.C.U.15.64#.rar
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\zzoisgxg
2015-05-16 21:41 - 2015-05-17 09:34 - 00000000 ____D () C:\ProgramData\ASGVIS
2015-05-16 21:40 - 2015-05-16 21:40 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\SketchUp
2015-05-16 19:55 - 2015-05-19 17:24 - 00000000 ____D () C:\AdwCleaner
2015-05-16 19:54 - 2015-05-16 19:54 - 02209792 _____ () C:\Users\Alec\Downloads\adwcleaner_4.204.exe
2015-05-16 18:42 - 2015-05-16 18:42 - 00000000 ____D () C:\ProgramData\Reprise
2015-05-16 18:41 - 2015-05-16 18:41 - 00000000 ____D () C:\ProgramData\SketchUp
2015-05-16 18:29 - 2015-05-16 18:38 - 114281544 _____ (Trimble Navigation Limited) C:\Users\Alec\Downloads\SketchUpPro-en-x64.exe
2015-05-16 17:42 - 2015-05-16 20:58 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\21E504E0-1431816148-11DD-B696-382C4ABA7555.SH!
2015-05-16 17:28 - 2015-05-16 17:44 - 00000000 ____D () C:\Users\Alec\Downloads\Vray 2.00.24261 for Sketchup 2014
2015-05-16 17:27 - 2015-05-16 17:27 - 00018556 _____ () C:\Users\Alec\Downloads\[kat.cr]vray.2.00.24261.for.sketchup.2014.torrent
2015-05-16 17:27 - 2015-05-16 17:27 - 00006092 _____ () C:\Users\Alec\Downloads\[kat.cr]google.sketchup.pro.2014.v14.0.4900.2.click.run.registered.torrent
2015-05-15 17:09 - 2015-05-15 23:50 - 00000000 ____D () C:\Users\Alec\Downloads\Grand Theft Auto V by xatab
2015-05-15 17:08 - 2015-05-15 17:08 - 00150478 _____ () C:\Users\Alec\Downloads\[kat.cr]grand.theft.auto.v.repack.xatab.torrent
2015-05-15 17:04 - 2015-05-15 17:04 - 00000000 ____D () C:\Windows\pss
2015-05-15 16:59 - 2015-05-22 19:28 - 00000000 ____D () C:\Users\Alec\Downloads\UTORRENT
2015-05-15 16:55 - 2015-05-17 10:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-15 03:02 - 2015-05-01 08:17 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-15 03:02 - 2015-05-01 08:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 19:59 - 2015-05-14 19:59 - 00000000 ____D () C:\Users\Alec\AppData\Local\TeknoGods
2015-05-14 15:33 - 2015-05-04 20:29 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-14 15:33 - 2015-05-04 20:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-14 15:33 - 2015-04-17 22:10 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-14 15:33 - 2015-04-17 21:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-14 15:32 - 2015-04-27 14:28 - 05569984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-14 15:32 - 2015-04-27 14:28 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-14 15:32 - 2015-04-27 14:28 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-05-14 15:32 - 2015-04-27 14:26 - 01728960 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 01254400 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 01162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-14 15:32 - 2015-04-27 14:23 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-14 15:32 - 2015-04-27 14:22 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-05-14 15:32 - 2015-04-27 14:22 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-14 15:32 - 2015-04-27 14:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-05-14 15:32 - 2015-04-27 14:18 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-14 15:32 - 2015-04-27 14:18 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 14:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-05-14 15:32 - 2015-04-27 14:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-05-14 15:32 - 2015-04-27 14:08 - 01310744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-05-14 15:32 - 2015-04-27 14:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-14 15:32 - 2015-04-27 14:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2015-05-14 15:32 - 2015-04-27 14:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-14 15:32 - 2015-04-27 14:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-14 15:32 - 2015-04-27 14:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-05-14 15:32 - 2015-04-27 14:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-05-14 15:32 - 2015-04-27 14:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-05-14 15:32 - 2015-04-27 14:04 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-14 15:32 - 2015-04-27 14:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-05-14 15:32 - 2015-04-27 14:03 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-05-14 15:32 - 2015-04-27 14:03 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-05-14 15:32 - 2015-04-27 14:03 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-05-14 15:32 - 2015-04-27 14:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-05-14 15:32 - 2015-04-27 14:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-05-14 15:32 - 2015-04-27 14:03 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-14 15:32 - 2015-04-27 14:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-05-14 15:32 - 2015-04-27 14:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 13:06 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-14 15:32 - 2015-04-27 12:57 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-14 15:32 - 2015-04-27 12:57 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-14 15:32 - 2015-04-27 12:55 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 12:55 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 12:55 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-05-14 15:32 - 2015-04-27 12:55 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-05-14 15:32 - 2015-04-19 22:17 - 01647104 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-14 15:32 - 2015-04-19 22:17 - 01179136 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-14 15:32 - 2015-04-19 21:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-14 15:32 - 2015-04-19 21:11 - 03204608 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-14 15:32 - 2015-04-12 22:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-14 15:32 - 2015-04-07 22:29 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-14 15:32 - 2015-04-07 22:29 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-14 15:32 - 2015-04-07 22:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-14 15:32 - 2015-03-03 23:41 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-05-14 15:32 - 2015-03-03 23:41 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-05-14 15:32 - 2015-03-03 23:41 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-14 15:32 - 2015-03-03 23:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-05-14 15:32 - 2015-03-03 23:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-05-14 15:32 - 2015-03-03 23:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-05-14 15:32 - 2015-03-03 23:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-14 15:32 - 2015-02-18 02:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-14 15:32 - 2015-02-18 02:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-14 15:32 - 2015-01-28 22:19 - 02543104 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-14 15:32 - 2015-01-28 22:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-10 08:44 - 2015-05-10 08:44 - 00002330 _____ () C:\Users\Alec\Desktop\Play COD MW3 nosTEAM.lnk
2015-05-09 22:27 - 2015-05-09 22:27 - 00000000 ____D () C:\Windows\System32\Tasks\PCMeter
2015-05-09 17:22 - 2015-05-09 17:22 - 00002217 _____ () C:\Users\Public\Desktop\Call of Duty - Black Ops Call MP.lnk
2015-05-09 17:22 - 2015-05-09 17:22 - 00002203 _____ () C:\Users\Public\Desktop\Call of Duty - Black Ops.lnk
2015-05-09 17:22 - 2015-05-09 17:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
2015-05-09 14:05 - 2007-11-01 17:23 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2015-05-09 14:05 - 2007-11-01 17:23 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2015-05-09 13:56 - 2015-05-09 13:56 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\WinRAR
2015-05-09 13:55 - 2015-05-09 13:55 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-09 13:55 - 2015-05-09 13:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-09 13:55 - 2015-05-09 13:55 - 00000000 ____D () C:\Program Files\WinRAR
2015-05-03 22:25 - 2015-05-03 22:25 - 00001059 _____ () C:\Users\Alec\Desktop\Left 4 Dead 2.lnk
2015-05-03 22:11 - 2015-05-05 19:34 - 00000000 ____D () C:\Program Files (x86)\Left 4 Dead 2
2015-05-03 21:53 - 2015-02-25 03:24 - 00044856 _____ (AVG Technologies) C:\Windows\system32\uxtuneup.dll
2015-05-03 21:53 - 2015-02-25 03:24 - 00036664 _____ (AVG Technologies) C:\Windows\SysWOW64\uxtuneup.dll
2015-05-03 21:41 - 2015-05-03 21:41 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\AVG
2015-05-03 21:41 - 2015-02-25 03:25 - 00041784 _____ (AVG Technologies) C:\Windows\system32\TURegOpt.exe
2015-05-03 21:41 - 2015-02-25 03:24 - 00030520 _____ (AVG Technologies) C:\Windows\system32\authuitu.dll
2015-05-03 21:41 - 2015-02-25 03:24 - 00025912 _____ (AVG Technologies) C:\Windows\SysWOW64\authuitu.dll
2015-05-03 21:39 - 2015-05-03 21:39 - 00000000 ____D () C:\Users\Alec\AppData\Local\Avg
2015-05-03 21:38 - 2015-05-03 21:41 - 00000000 ____D () C:\ProgramData\AVG
2015-05-03 11:22 - 2015-05-03 12:33 - 00000000 ____D () C:\Users\Alec\AppData\Local\PAYDAY 2
2015-05-03 09:41 - 2014-12-29 15:56 - 00000226 _____ () C:\Program Files (x86)\update-PayDay2.bat
2015-05-03 09:41 - 2013-11-06 13:28 - 00000732 _____ () C:\Program Files (x86)\visit-www.nosteam.ro.html
2015-05-03 09:34 - 2015-05-03 09:34 - 00000000 ____D () C:\Program Files (x86)\New folder
2015-05-03 09:33 - 2015-05-03 12:22 - 00000000 ____D () C:\Program Files (x86)\PAYDAY 2
2015-05-03 09:33 - 2015-05-03 09:41 - 00001902 _____ () C:\Users\Alec\Desktop\Play PAYDAY 2.lnk
2015-05-02 14:35 - 2015-04-08 15:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-05-02 14:34 - 2015-04-08 19:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-05-02 14:34 - 2015-04-08 19:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-05-02 14:33 - 2015-04-08 19:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-05-02 14:33 - 2015-04-08 19:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-25 20:17 - 2015-04-25 20:17 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZombieModding
2015-04-25 20:17 - 2015-04-25 20:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZombieModding
2015-04-25 17:06 - 2015-04-25 20:29 - 00000000 ____D () C:\ProgramData\Tunngle
2015-04-25 17:06 - 2015-04-25 17:06 - 00000998 _____ () C:\Users\Public\Desktop\Tunngle.lnk
2015-04-25 17:06 - 2015-04-25 17:06 - 00000000 ____D () C:\Users\Public\Documents\Tunngle
2015-04-25 17:06 - 2015-04-25 17:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2015-04-25 17:06 - 2015-04-25 17:06 - 00000000 ____D () C:\Program Files (x86)\Tunngle
2015-04-25 16:11 - 2015-04-25 16:11 - 00003374 _____ () C:\Windows\System32\Tasks\SidebarExecute
2015-04-25 16:08 - 2015-04-25 16:08 - 00000000 ____D () C:\Users\Alec\Documents\Tunngle

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-23 14:11 - 2014-12-28 22:57 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\uTorrent
2015-05-23 14:07 - 2014-12-25 17:14 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-23 13:34 - 2015-01-25 21:43 - 02020122 _____ () C:\Windows\WindowsUpdate.log
2015-05-23 13:30 - 2014-12-28 23:52 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-23 09:03 - 2014-12-25 17:14 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-23 03:26 - 2009-07-13 23:45 - 00021904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-23 03:26 - 2009-07-13 23:45 - 00021904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-23 03:23 - 2009-07-14 00:13 - 00910468 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-23 03:18 - 2014-12-18 11:38 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-23 03:18 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-22 18:24 - 2014-12-28 22:34 - 00000000 ____D () C:\Program Files (x86)\Java
2015-05-22 18:23 - 2014-12-28 22:34 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-05-22 17:53 - 2014-12-30 14:24 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\Notepad++
2015-05-22 17:34 - 2014-12-25 16:51 - 00001420 _____ () C:\Users\Alec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-22 04:22 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2015-05-22 03:46 - 2011-11-07 14:02 - 00000000 ____D () C:\Windows\panther
2015-05-22 03:44 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-05-21 23:25 - 2014-12-25 17:15 - 00002190 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-21 20:59 - 2015-01-14 19:49 - 00000000 ____D () C:\Windows\Minidump
2015-05-20 20:39 - 2015-02-03 21:18 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2015-05-20 20:06 - 2015-03-10 18:52 - 00000000 ____D () C:\Users\Alec\Documents\Mods
2015-05-20 03:01 - 2015-04-06 03:00 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-05-20 03:01 - 2015-04-06 03:00 - 00000000 ___SD () C:\Windows\system32\GWX
2015-05-19 17:22 - 2014-12-25 18:21 - 00000000 ____D () C:\Program Files (x86)\McAfee
2015-05-18 17:50 - 2015-02-15 15:33 - 00000000 ____D () C:\Users\Alec\AppData\Local\Rockstar Games
2015-05-18 17:49 - 2015-04-18 17:54 - 00000000 ____D () C:\Program Files\Rockstar Games
2015-05-18 17:49 - 2015-01-31 19:03 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2015-05-18 16:36 - 2014-12-30 15:15 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-05-16 20:11 - 2014-12-30 15:43 - 00000000 ____D () C:\Users\DefaultAppPool
2015-05-16 19:57 - 2014-12-18 11:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-16 19:57 - 2014-12-18 11:37 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-16 19:50 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-05-16 14:29 - 2014-12-29 11:52 - 00001982 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2015-05-16 14:29 - 2014-12-28 22:46 - 00000873 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-05-15 17:02 - 2015-03-10 20:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InputMapper
2015-05-15 03:31 - 2014-12-28 22:50 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-05-15 03:31 - 2014-12-28 22:50 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-05-15 03:29 - 2010-11-21 02:17 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-15 03:29 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-15 03:11 - 2015-03-10 18:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft Application Virtualization Client
2015-05-15 03:11 - 2014-12-18 11:45 - 00928926 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-05-15 03:09 - 2014-12-29 13:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-15 03:02 - 2014-12-29 13:25 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-15 03:02 - 2014-12-28 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-15 03:02 - 2014-12-25 17:14 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-15 03:01 - 2014-12-25 17:14 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-10 08:44 - 2014-12-30 15:07 - 00000000 ____D () C:\Program Files (x86)\Activision
2015-05-09 14:41 - 2015-03-14 14:22 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\SoftGrid Client
2015-05-09 14:08 - 2014-12-29 13:01 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\Adobe
2015-05-09 14:05 - 2014-12-18 11:43 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-05-09 14:03 - 2014-12-28 23:50 - 00000000 ____D () C:\Users\Alec\AppData\Local\Adobe
2015-05-09 11:40 - 2015-03-29 18:59 - 00000000 ____D () C:\Users\Alec\AppData\Local\Cloud Penguin
2015-05-09 11:25 - 2015-04-19 10:48 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\Azureus
2015-05-09 11:24 - 2014-12-28 22:46 - 00000000 ____D () C:\Program Files\CCleaner
2015-05-03 22:25 - 2011-11-07 15:32 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-05-02 14:34 - 2014-12-18 11:37 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-25 20:29 - 2014-12-28 23:37 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\Tunngle
2015-04-25 17:29 - 2014-12-18 11:37 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-04-25 17:28 - 2014-12-25 23:23 - 00001384 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk

==================== Files in the root of some directories =======

2015-05-03 09:41 - 2014-12-29 15:56 - 0000226 _____ () C:\Program Files (x86)\update-PayDay2.bat
2015-05-03 09:41 - 2013-11-06 13:28 - 0000732 _____ () C:\Program Files (x86)\visit-www.nosteam.ro.html
2014-12-18 11:45 - 2014-12-18 11:45 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Alec\AppData\Local\Temp\Bass.dll
C:\Users\Alec\AppData\Local\Temp\Bass.Net.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-15 04:01

==================== End of log ============================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-05-2015 01
Ran by Alec at 2015-05-23 14:12:47
Running from C:\Users\Alec\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-88998690-3935351832-2280324733-500 - Administrator - Disabled)
Alec (S-1-5-21-88998690-3935351832-2280324733-1001 - Administrator - Enabled) => C:\Users\Alec
Guest (S-1-5-21-88998690-3935351832-2280324733-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-88998690-3935351832-2280324733-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Akamai NetSession Interface (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
ARMA III (HKLM-x32\...\ARMA III_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Autodesk 3ds Max 2015 SP1 (HKLM\...\Autodesk 3ds Max 2015 SP1) (Version: 17.1.149.0 - Autodesk)
AVG PC TuneUp 2015 (en-US) (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
Black Ops 2 - GSC Studio (HKLM-x32\...\{909C0DF9-6BBE-42BD-8FB2-0ADEBA3459B6}_is1) (Version: 15.1.2.0 - iMCS Productions)
Call of Duty: Black Ops (HKLM-x32\...\Call of Duty: Black Ops_is1) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version: - Cheat Engine)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.1.200.13 - Citrix Systems, Inc.)
Cloud Penguin (HKLM\...\Cloud Penguin) (Version: 1.3.5580.32927 - Cloud Penguin)
CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - Cambridge Silicon Radio Limited.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell 968 AIO Printer (HKLM\...\Dell 968 AIO Printer) (Version: - Dell, Inc.)
Farming Simulator 15 (HKLM-x32\...\FarmingSimulator2015INT_is1) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 2011 (HKLM-x32\...\FarmingSimulator2011_PLATINUMEN_is1) (Version: 1.0 - GIANTS Software)
FaxRedist (HKLM-x32\...\{2C8CC208-965C-48A1-90A8-DFB484358F1C}) (Version: 1.0.0 - )
GameSalad Creator (HKLM-x32\...\{2B1D8001-8F73-4E7D-938E-B1D732EF7E6B}) (Version: 0.10.5 - GameSalad)
GIANTS Editor 6.0.3 64-bit (HKLM-x32\...\giants_editor_6.0.3_win64_is1) (Version: 6.0.3 - GIANTS Software GmbH)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.65 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Grand Theft Auto V v.1.0.350.1 (HKLM-x32\...\Grand Theft Auto V_is1) (Version: - )
Grand Theft Auto Vice City (HKLM-x32\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - )
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
InputMapper (HKLM-x32\...\{2EF39E81-9525-40FB-90C4-CE2AF318FF3F}) (Version: 1.5.24.0 - DSDCS)
Intel® Chipset Device Software (x32 Version: 10.0.14 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 13.6.1599 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.274 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
MFS (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\524cc66f48985a16) (Version: 1.0.0.8 - MFS)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{BBDE8A3D-64A2-43A6-95F3-C27B87DF7AC1}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{0826F9E4-787E-481D-83E0-BC6A57B056D5}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{63227E62-F417-497E-9060-22B3A9A52D7A}) (Version: 1.0.1.0 - Mojang)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
MX vs ATV Reflex (HKLM-x32\...\MX vs ATV Reflex_is1) (Version: - )
MXGP (HKLM-x32\...\TVhHUA==_is1) (Version: 1 - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.2 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Online Plug-in (x32 Version: 14.1.200.13 - Citrix Systems, Inc.) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.8 - PowerISO Computing, Inc.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.70.314.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7233 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0218.1 - REALTEK Semiconductor Corp.)
RepZ Installer (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\1b1c64cc2484e6cc) (Version: 1.0.2.24 - RepZ)
Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version: - )
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.15022.8 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.15022.8 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Self-service Plug-in (x32 Version: 4.1.200.588 - Citrix Systems, Inc.) Hidden
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
SimCity 4 Deluxe (HKLM-x32\...\{A7A34FC9-DF24-4A36-00AD-D4EFE94CC116}) (Version: - )
SketchUp 2015 (HKLM\...\{319CD380-1AAB-4CAD-BE1D-59189A780FA6}) (Version: 15.2.685 - Trimble Navigation Limited)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Tunngle version Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
Unity Web Player (HKU\S-1-5-21-88998690-3935351832-2280324733-1001\...\UnityWebPlayer) (Version: 5.0.1f1 - Unity Technologies ApS)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16423 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

22-05-2015 01:54:06 Scheduled Checkpoint
22-05-2015 03:00:10 Windows Update
23-05-2015 03:00:11 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2015-05-18 20:39 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2D015971-24A9-4221-A0AD-FDDCBB36127E} - System32\Tasks\{7C02F3C8-7673-422F-90EE-DE8F467496E0} => pcalua.exe -a "C:\Users\Alec\Downloads\Call of Duty World at War\vcredist.exe" -d "C:\Users\Alec\Downloads\Call of Duty World at War"
Task: {3F19C048-5068-4D85-9EB4-FF4AC033537E} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {4455E884-CF0E-453F-98C0-C6555F6491F4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-25] (Google Inc.)
Task: {471BA3DA-2BD2-46A8-857C-7B4D4990CF17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-25] (Google Inc.)
Task: {5592A92C-877D-46CB-B872-81E412A6160F} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {784E3C2C-F341-42F3-99F9-4129A1592344} - System32\Tasks\{5541BBC3-0B1D-49C4-A5C3-C6E581C49BC6} => C:\Users\Alec\Downloads\Grand Theft Auto V\Launcher.exe
Task: {89905277-72C7-40F8-BC15-33DE49D8EC5C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated)
Task: {B538BA62-EB0E-4180-85E5-C3C75D3444B5} - \SuperClick Auto Updater 1.10.0.16 Core No Task File <==== ATTENTION
Task: {C37D1563-21F5-4917-BCCA-467B9CA63F53} - System32\Tasks\{14E0950E-30FF-4E5E-8EF0-EA140BCEDA69} => C:\Users\Alec\Downloads\Grand Theft Auto V\Launcher.exe
Task: {C4B08625-C648-425D-A32D-6EE6F0F55BFE} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {C5B804D0-7B61-4088-86A9-236167771913} - System32\Tasks\PCMeter\Startup => C:\Users\Alec\Desktop\PCMeter\PCMeterV4\PCMeterV0.4.exe
Task: {F2443289-1CCC-423C-A5CE-A7BE71392177} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-01-12 17:30 - 2009-04-13 10:21 - 00045568 _____ () C:\Windows\System32\DLDOPMON.DLL
2015-01-12 17:30 - 2007-06-11 10:01 - 00049152 _____ () C:\Windows\System32\DLDOOEM.DLL
2015-01-12 17:30 - 2009-04-13 10:19 - 00081408 _____ () C:\Program Files (x86)\Dell 968 AIO Printer\ipcmt64.dll
2015-01-12 17:30 - 2007-07-18 07:45 - 00138240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\dldodrpp.dll
2014-12-18 11:42 - 2014-01-28 14:16 - 00936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2007-10-05 10:31 - 2007-10-05 10:31 - 00034032 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\dldoserv.exe
2014-12-31 18:58 - 2014-12-31 18:58 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-12-18 11:48 - 2014-01-16 19:19 - 00044104 ____N () C:\Windows\runSW.exe
2014-12-18 11:48 - 2013-05-07 18:06 - 00096768 ____N () C:\Program Files (x86)\Realtek\REALTEK USB Wireless LAN Driver\WPSService20.exe
2014-12-18 11:37 - 2015-04-08 16:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-05-12 04:49 - 2014-05-12 04:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2014-12-18 11:42 - 2015-05-23 03:18 - 00029696 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2014-12-18 11:42 - 2014-01-28 14:16 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2015-04-25 17:28 - 2015-03-27 22:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-05-23 11:13 - 2015-05-23 11:13 - 00140800 _____ () C:\Users\Alec\AppData\Roaming\lzmtjmvm\encecal.dll
2015-05-21 23:24 - 2015-05-13 11:48 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\libglesv2.dll
2015-05-21 23:24 - 2015-05-13 11:48 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tammgF119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tammgR119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tammgF119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tammgR119.sys => ""="Driver"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-88998690-3935351832-2280324733-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Alec\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.254.254

==================== MSCONFIG/TASK MANAGER Error getting ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Alec\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: ConnectionCenter => "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
MSCONFIG\startupreg: CsrAudioguiCtrl => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe
MSCONFIG\startupreg: CSRHarmonySkypePlugin => C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe
MSCONFIG\startupreg: CsrHCRPServer => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe
MSCONFIG\startupreg: CsrSyncMLServer => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe
MSCONFIG\startupreg: Dell 968 AIO Printer => "C:\Program Files (x86)\Dell 968 AIO Printer\fm3032.exe" /s
MSCONFIG\startupreg: dldomon.exe => "C:\Program Files (x86)\Dell 968 AIO Printer\dldomon.exe"
MSCONFIG\startupreg: HarmonyUserStartup => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe
MSCONFIG\startupreg: mcpltui_exe => "C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui /runkey
MSCONFIG\startupreg: MemoryCardManager => "C:\Program Files (x86)\Dell 968 AIO Printer\memcard.exe"
MSCONFIG\startupreg: MouseDriver => TiltWheelMouse.exe
MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
MSCONFIG\startupreg: Redirector => "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: TrayApplication => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe
MSCONFIG\startupreg: vksts => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{CBBA8D17-EB3E-498B-9F15-0E3802D14F4B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{7634106C-DF36-4130-8DA2-9A297D8DCE41}] => (Allow) LPort=2869
FirewallRules: [{9FADE37B-732E-4D32-BEC7-994EB66EFA1A}] => (Allow) LPort=1900
FirewallRules: [{8E766792-2242-4627-8067-27B148EF783D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{C800A05C-F2EB-4772-8D3D-AC1B97EC3077}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [{36BA3B02-8DF4-4C8D-9CD2-D0C6F0E09041}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{0230928F-E569-4CEB-8DCE-7E612D573BB7}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\FarmingSimulator2015.exe
FirewallRules: [{F81DDDC2-E4F6-46E3-AC40-864649F7CE16}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{8FEA1907-9961-430F-B101-7F8CBE808C56}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x86\FarmingSimulator2015Game.exe
FirewallRules: [{824712A0-2EBC-46D6-86C5-13914466D8F1}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{14E25FF9-A9C8-4730-8237-3692C92CFEAE}] => (Allow) C:\Program Files (x86)\Farming Simulator 2015\x64\FarmingSimulator2015Game.exe
FirewallRules: [{6DA12CC9-8A5C-4718-A74C-D05401384F01}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{A12DFDDC-42CA-4004-A076-AFE3F9613BC1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{942CC9C5-3A5F-4CEA-8155-F38910C448D3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{AC9C7FB0-B273-4B11-B03A-44BD727576B0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{7A590917-B823-406B-B44F-F816F0D0A6BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{0E37B5A7-6F8F-4CAA-9107-82042C6FAEF8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F141E729-3A9E-4EA0-A76D-74B47F01D8B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{583B293D-0723-401D-B5AB-F4AF190A8DFA}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\FarmingSimulator2011.exe
FirewallRules: [{51B8E090-FAB1-4E52-BAD4-FEE542960DF2}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\FarmingSimulator2011.exe
FirewallRules: [{8287F53A-5E09-4406-A6DC-6C91683185E0}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\game.exe
FirewallRules: [{30CBFC60-703E-4189-8775-87C8F7870177}] => (Allow) C:\Program Files (x86)\Farming Simulator 2011\game.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [{F85FE8DA-084E-44CB-AB6E-EC7510B61A96}] => (Allow) C:\Users\Alec\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BBAEF4A5-DF07-47B7-9375-32CC2EF69521}] => (Allow) C:\Users\Alec\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{068C5174-748C-42C9-9374-E554CB2126BF}] => (Allow) C:\Windows\SysWOW64\dldocoms.exe
FirewallRules: [{B3230719-BCEE-43FF-8E2F-30AA52ED332D}] => (Allow) C:\Windows\SysWOW64\dldocoms.exe
FirewallRules: [{E10B56AA-77A6-4B63-926F-CF856A5A643E}] => (Allow) C:\Windows\System32\dldocoms.exe
FirewallRules: [{E46CC330-6673-4E70-A425-7CC6FA87484A}] => (Allow) C:\Windows\System32\dldocoms.exe
FirewallRules: [{846591E7-8856-4744-8E87-C0AA3BEECF31}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\memcard.exe
FirewallRules: [{5A403F7D-758F-42B5-B0EB-4FA67A93ADE7}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\memcard.exe
FirewallRules: [{7F7F4CF1-E2A8-4656-B0B6-D88D53B81193}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldopswx.exe
FirewallRules: [{3725BA6C-D033-465C-844A-68FA11E56058}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldopswx.exe
FirewallRules: [{5FB37912-F006-4831-AA33-390F773AC058}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldomon.exe
FirewallRules: [{21425CF7-10FC-4A90-B33C-DF6EDDCF7FF4}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldomon.exe
FirewallRules: [{1F7EA3C6-4930-43E6-8DB0-C75AB35F38E5}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldotime.exe
FirewallRules: [{67FC6D39-5AD1-4C31-AEC5-047461C26DC1}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldotime.exe
FirewallRules: [{896789EC-022C-459B-9DD7-100848771805}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldojswx.exe
FirewallRules: [{B4B3464C-B169-42FF-B5A3-DD7114C1E51B}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\dldojswx.exe
FirewallRules: [{94DA4A80-157B-494D-8FC2-92425CB5DCCD}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldoaiox.exe
FirewallRules: [{47FBDB3F-39F8-4847-8CA9-EF07470D62DA}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\dldoaiox.exe
FirewallRules: [{1012B4C7-5D06-48D4-990F-69528F46478B}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\DLDOFax.exe
FirewallRules: [{7A7C9F97-C576-4B2B-BF29-27AE72EF94E8}] => (Allow) C:\Program Files (x86)\Dell 968 AIO Printer\DLDOFax.exe
FirewallRules: [TCP Query User{AD69E9BE-9CB2-493A-88F9-D6C2693BD509}C:\program files (x86)\dell 968 aio printer\dldomon.exe] => (Allow) C:\program files (x86)\dell 968 aio printer\dldomon.exe
FirewallRules: [UDP Query User{B297C89F-6F92-4899-A1D2-51C25EFF5D1B}C:\program files (x86)\dell 968 aio printer\dldomon.exe] => (Allow) C:\program files (x86)\dell 968 aio printer\dldomon.exe
FirewallRules: [TCP Query User{776406F4-7F26-4524-A2AB-6AE8C857A79F}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{13CC87E2-705B-41F2-B748-B3BAF4A98248}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{7F1E303F-2FBA-48C4-86F4-7F7141B5C4EC}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{9DDA02A6-ACEF-4CA4-8711-73FEEDE786DA}C:\users\alec\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\alec\appdata\local\akamai\netsession_win.exe
FirewallRules: [{9DB1DD5B-EB9E-46C3-A819-AE34781FF057}] => (Allow) C:\Users\Alec\AppData\Local\Cloud Penguin\Cloud Penguin.exe
FirewallRules: [{BA1707CC-3578-4542-A2FA-44F86CC17682}] => (Allow) LPort=1337
FirewallRules: [{14C32076-3FB1-4D95-9FCB-016D4DC3CC2A}] => (Allow) LPort=9775
FirewallRules: [{4166D8FA-FF97-4A64-852C-2F2AECB91022}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{DEB8ADB2-72AB-4078-8E33-364EDA85680B}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{D37A59B8-DEFD-449F-BEF0-1AD58D67FFB7}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{D08A38EE-FADE-42AD-A3F5-1BB8A8EA0981}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{6659FE87-1F80-4227-BFB2-98929777411A}] => (Allow) LPort=49199
FirewallRules: [{DE35B4FD-3961-44A8-82A6-CB205BDBB2AC}] => (Allow) LPort=5000
FirewallRules: [{F5D2C166-BBA5-4EB4-B13B-1DC23862B4A5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/23/2015 02:09:42 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest.

Error: (05/23/2015 03:19:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/23/2015 03:18:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
Faulting module name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
Exception code: 0xc0000005
Fault offset: 0x00000000004e920f
Faulting process id: 0xc0c
Faulting application start time: 0xNvStreamNetworkService.exe0
Faulting application path: NvStreamNetworkService.exe1
Faulting module path: NvStreamNetworkService.exe2
Report Id: NvStreamNetworkService.exe3

Error: (05/23/2015 03:16:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CsrBtOBEXService.exe, version: 2.1.63.0, time stamp: 0x4f68683b
Faulting module name: CsrBtOBEXService.exe, version: 2.1.63.0, time stamp: 0x4f68683b
Exception code: 0xc0000005
Fault offset: 0x0000000000006f58
Faulting process id: 0x7c0
Faulting application start time: 0xCsrBtOBEXService.exe0
Faulting application path: CsrBtOBEXService.exe1
Faulting module path: CsrBtOBEXService.exe2
Report Id: CsrBtOBEXService.exe3

Error: (05/22/2015 05:35:15 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest.

Error: (05/22/2015 05:35:12 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest.

Error: (05/22/2015 03:47:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/22/2015 03:46:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
Faulting module name: NvStreamNetworkService.exe, version: 4.1.1943.6202, time stamp: 0x551399be
Exception code: 0xc0000005
Fault offset: 0x00000000004e920f
Faulting process id: 0xc30
Faulting application start time: 0xNvStreamNetworkService.exe0
Faulting application path: NvStreamNetworkService.exe1
Faulting module path: NvStreamNetworkService.exe2
Report Id: NvStreamNetworkService.exe3

Error: (05/22/2015 03:44:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: CsrBtOBEXService.exe, version: 2.1.63.0, time stamp: 0x4f68683b
Faulting module name: CsrBtOBEXService.exe, version: 2.1.63.0, time stamp: 0x4f68683b
Exception code: 0xc0000005
Fault offset: 0x0000000000006f58
Faulting process id: 0x348
Faulting application start time: 0xCsrBtOBEXService.exe0
Faulting application path: CsrBtOBEXService.exe1
Faulting module path: CsrBtOBEXService.exe2
Report Id: CsrBtOBEXService.exe3

Error: (05/21/2015 08:59:14 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest.


System errors:
=============
Error: (05/23/2015 09:28:27 AM) (Source: cdrom) (EventID: 11) (User: )
Description: The driver detected a controller error on \Device\CdRom0.

Error: (05/23/2015 09:20:14 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (05/23/2015 09:16:59 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: A duplicate name has been detected on the TCP network. The IP address of
the computer that sent the message is in the data. Use nbtstat -n in a
command window to see which name is in the Conflict state.

Error: (05/23/2015 09:16:47 AM) (Source: NetBT) (EventID: 4319) (User: )
Description: A duplicate name has been detected on the TCP network. The IP address of
the computer that sent the message is in the data. Use nbtstat -n in a
command window to see which name is in the Conflict state.

Error: (05/23/2015 03:19:48 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the RunSwUSB service.

Error: (05/23/2015 03:18:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Net.Msmq Listener Adapter service depends on the Message Queuing service which failed to start because of the following error:
%%1058

Error: (05/23/2015 03:17:08 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The CSR Bluetooth Service service did not shut down properly after receiving a preshutdown control.

Error: (05/23/2015 03:16:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CSR OBEX Service service terminated unexpectedly. It has done this 1 time(s).

Error: (05/22/2015 09:06:27 PM) (Source: NetBT) (EventID: 4319) (User: )
Description: A duplicate name has been detected on the TCP network. The IP address of
the computer that sent the message is in the data. Use nbtstat -n in a
command window to see which name is in the Conflict state.

Error: (05/22/2015 08:09:46 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.


Microsoft Office:
=========================
Error: (05/23/2015 02:09:42 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestC:\Users\Alec\Downloads\esetsmartinstaller_enu.exe

Error: (05/23/2015 03:19:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/23/2015 03:18:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fc0c01d095310e44e21aC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe5bf23f90-0124-11e5-83f1-74da381822d8

Error: (05/23/2015 03:16:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: CsrBtOBEXService.exe2.1.63.04f68683bCsrBtOBEXService.exe2.1.63.04f68683bc00000050000000000006f587c001d0946bbc6a3b32C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exeC:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe03221853-0124-11e5-a40b-74da381822d8

Error: (05/22/2015 05:35:15 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestC:\Users\Alec\Desktop\esetsmartinstaller_enu.exe

Error: (05/22/2015 05:35:12 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestC:\Users\Alec\Desktop\esetsmartinstaller_enu.exe

Error: (05/22/2015 03:47:34 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/22/2015 03:46:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fc3001d0946bc6d4c21dC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe14543117-005f-11e5-a40b-74da381822d8

Error: (05/22/2015 03:44:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: CsrBtOBEXService.exe2.1.63.04f68683bCsrBtOBEXService.exe2.1.63.04f68683bc00000050000000000006f5834801d0943212a1d114C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exeC:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exeb1ad6fd9-005e-11e5-86d4-6805ca2ceaa7

Error: (05/21/2015 08:59:14 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestC:\Users\Alec\Desktop\esetsmartinstaller_enu.exe


CodeIntegrity Errors:
===================================
Date: 2015-05-17 22:24:32.041
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:23:47.984
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:21:47.320
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:19:46.640
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:17:45.983
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:15:45.324
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:13:44.641
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:11:43.981
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:09:43.327
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.

Date: 2015-05-17 22:07:42.692
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel® Core™ i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 41%
Total physical RAM: 8135.29 MB
Available physical RAM: 4767.32 MB
Total Pagefile: 16268.78 MB
Available Pagefile: 8797.81 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:931.41 GB) (Free:548.06 GB) NTFS
Drive d: (Farming Simulator 15) (CDROM) (Total:1.87 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5AC11AA7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of log ============================
  • 0

#19
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
Download CKScanner by askey127 from HERE http://downloads.mal...m/CKScanner.exe
Important - Save it to your desktop.
Doubleclick CKScanner.exe and click Search For Files.
After a very short time, when the cursor hourglass disappears, click Save List To File.
A message box will verify the file saved.
Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.
  • 0

#20
mxsx353

mxsx353

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
CKScanner 2.5 - Additional Security Risks - These are not necessarily bad
c:\program files (x86)\activision\call of duty - black ops\zone\common\mp_cracked.ff
c:\program files (x86)\activision\call of duty - black ops\zone\english\en_mp_cracked.ff
c:\program files (x86)\gimp 2\share\gimp\2.0\patterns\cracked.pat
c:\program files (x86)\rockstar games\gta san andreas\data\decision\craig\crack1.ped
c:\users\alec\downloads\gtav_uncracked.torrent
c:\users\alec\downloads\utorrent\winrar 5.21 final incl. crack [techtools.net]\winrar 5.21 final incl. crack [techtools.net].rar
c:\users\alec\downloads\utorrent\winrar 5.21 final incl. crack [techtools.net]\www.techtools.net.txt
c:\users\alec\downloads\utorrent\winrar 5.21 final incl. crack [techtools.net]\winrar 5.21 final incl. crack [techtools.net]\winrar 5.21 final incl. crack [techtools.net]\winrar-x64-521.exe
c:\users\alec\downloads\utorrent\winrar 5.21 final incl. crack [techtools.net]\winrar 5.21 final incl. crack [techtools.net]\winrar 5.21 final incl. crack [techtools.net]\wrar521.exe
c:\users\alec\downloads\utorrent\winrar 5.21 final incl. crack [techtools.net]\winrar 5.21 final incl. crack [techtools.net]\winrar 5.21 final incl. crack [techtools.net]\_readme.txt
scanner sequence 3.DF.11.VJAPMZ
 ----- EOF ----- 

  • 0

#21
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
CKScanner has detected illegal software on your system. Besides being illegal, it's the number one way of infecting your system as all cracked/keygen software is infected. This forum, as well as all the other malware removal forums, do not support the use of illegal software except for their removal.

Remove these programs too,

1 µTorrent

2 2015-05-22 18:17 - 2015-05-22 18:20 - 21930163 _____ (Lime Wire LLC) C:\Users\Alec\Downloads\LimeWirePirateEdition.exe


This may or may not be related to your computer issues, however, if you wish me to continue helping you, then you must remove crack files as well as the related programs. If you do not agree to this then this thread will be closed and no further help will be offered
  • 0

#22
mxsx353

mxsx353

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts

I have removed the LimeWire program, but it is not µTorrents fault for the virus caused. I always virus check everything before i download, but i was checking my emails a few weeks back and accidentally clicked on and infected email. I want further help but would prefer to keep µTorrent.


  • 0

#23
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
A few items to fix

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Open notepad (Start =>All Programs => Accessories => Notepad).
Copy/Paste the contents of the code box below into Notepad.
 
start
CloseProcesses:
CreateRestorePoint:
C:\Users\Alec\AppData\Roaming\diakowmq\encecal.dll
C:\Users\Alec\AppData\Roaming\diakowmq\ticyver.dll
C:\Users\Alec\AppData\Roaming\hwkfayyk\encecal.dll
C:\Users\Alec\AppData\Roaming\hwkfayyk\ticyver.dll
C:\Users\Alec\AppData\Roaming\icypfzax\encecal.dll
C:\Users\Alec\AppData\Roaming\icypfzax\ticyver.dll
C:\Users\Alec\AppData\Roaming\jddsxwck\encecal.dll
C:\Users\Alec\AppData\Roaming\jddsxwck\ticyver.dll
C:\Users\Alec\AppData\Roaming\jgjvtugi\encecal.dll
C:\Users\Alec\AppData\Roaming\jgjvtugi\ticyver.dll
C:\Users\Alec\AppData\Roaming\mmrkvnjz\encecal.dll
C:\Users\Alec\AppData\Roaming\mmrkvnjz\ticyver.dll
C:\Users\Alec\AppData\Roaming\pwinnsso\encecal.dll
C:\Users\Alec\AppData\Roaming\pwinnsso\ticyver.dll
C:\Users\Alec\AppData\Roaming\rnnrcirc\encecal.dll
C:\Users\Alec\AppData\Roaming\rnnrcirc\ticyver.dll
C:\Users\Alec\AppData\Roaming\tleygnio\encecal.dll
C:\Users\Alec\AppData\Roaming\tleygnio\ticyver.dll
C:\Users\Alec\AppData\Roaming\uchqndni\encecal.dll
C:\Users\Alec\AppData\Roaming\uchqndni\ticyver.dll
C:\Users\Alec\AppData\Roaming\zfdnfbiw\encecal.dll
C:\Users\Alec\AppData\Roaming\zfdnfbiw\ticyver.dll
C:\Users\Alec\AppData\Roaming\zzoisgxg\encecal.dll
C:\Users\Alec\AppData\Roaming\zzoisgxg\ticyver.dll
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-88998690-3935351832-2280324733-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 GPUZ; No ImagePath
Task: {B538BA62-EB0E-4180-85E5-C3C75D3444B5} - \SuperClick Auto Updater 1.10.0.16 Core No Task File <==== ATTENTION
2015-05-22 21:13 - 2015-05-22 21:13 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\fjlzpdxt
2015-05-22 21:05 - 2015-05-22 21:05 - 00001112 _____ () C:\Users\Alec\Desktop\checkup.txt
2015-05-22 18:49 - 2015-05-22 18:49 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\lhgvyumb
2015-05-22 18:47 - 2015-05-22 18:47 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\etnwyexu
2015-05-22 18:46 - 2015-05-22 18:46 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\ucufjdic
2015-05-22 18:39 - 2015-05-22 18:39 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\unvugnzw
2015-05-22 18:39 - 2015-05-22 18:39 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\dtmrnead
2015-05-23 11:13 - 2015-05-23 11:13 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\lzmtjmvm
2015-05-22 18:28 - 2015-05-22 18:28 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\pueghkhs
2015-05-22 18:27 - 2015-05-22 18:27 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\noddewip
2015-05-20 20:45 - 2015-05-20 20:45 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\tleygnio
2015-05-20 20:09 - 2015-05-20 20:09 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\uchqndni
2015-05-20 20:01 - 2015-05-20 20:01 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\rnnrcirc
2015-05-19 17:55 - 2015-05-19 17:55 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\diakowmq
2015-05-19 07:34 - 2015-05-19 07:34 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\jgjvtugi
2015-05-19 07:29 - 2015-05-19 07:29 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\hwkfayyk
2015-05-19 07:23 - 2015-05-19 07:23 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\pwinnsso
2015-05-19 07:20 - 2015-05-19 07:20 - 00253869 _____ (Thisisu) C:\Users\Alec\Downloads\Unconfirmed 703837.crdownload
2015-05-18 21:41 - 2015-05-18 21:41 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\icypfzax
2015-05-18 21:36 - 2015-05-18 21:36 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\mmrkvnjz
2015-05-18 20:44 - 2015-05-18 20:44 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\zfdnfbiw
2015-05-17 22:25 - 2015-05-17 22:28 - 00000000 ____D () C:\Users\Alec\AppData\Local\DesktopSearch
2015-05-17 17:07 - 2015-05-17 17:07 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\jddsxwck
2015-05-16 21:49 - 2015-05-16 21:49 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\zzoisgxg
2015-05-03 21:39 - 2015-05-03 21:39 - 00000000 ____D () C:\Users\Alec\AppData\Local\Avg
2015-05-03 21:38 - 2015-05-03 21:41 - 00000000 ____D () C:\ProgramData\AVG
2015-05-09 11:25 - 2015-04-19 10:48 - 00000000 ____D () C:\Users\Alec\AppData\Roaming\Azureus
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tammgF119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tammgR119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tammgF119.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\tammgR119.sys => ""="Driver"
Emptytemp:
Click Format and ensure Wordwrap is unchecked.
Save as Fixlist.txt to your Desktop (Must be in this location)
Run FRST/FRST64 and press the Fix button just once and wait.
If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

Note: If the tool warns you about the version you're using being an outdated version please download and run the updated version.


Post the fixlog.txt in your next reply and tell me how things are.
  • 0

#24
mxsx353

mxsx353

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts

Here is the fixlog. So far things seem better.

Attached Files


Edited by mxsx353, 23 May 2015 - 06:42 PM.

  • 0

#25
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
Hello,

Can you run another Malwarebytes scan for me

Posting the Malwarebytes log.
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the Scan Log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • post that saved log to your next reply.

  • 0

Advertisements


#26
mxsx353

mxsx353

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 5/23/2015
Scan Time: 7:48:46 PM
Logfile: MBAM.txt
Administrator: Yes
 
Version: 2.01.6.1022
Malware Database: v2015.05.23.05
Rootkit Database: v2015.05.16.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Alec
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 456664
Time Elapsed: 8 min, 42 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

  • 0

#27
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
What issues remain and in what browser ?

Edit---> Let the computer run for a day and let me know how things are
  • 0

#28
mxsx353

mxsx353

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts

I'm still experiencing problems with Internet Explorer. What is weird is I can not see the page, but I can hear the sounds and if I go to task manager, it will show up there. 


  • 0

#29
zep516

zep516

    Trusted Helper

  • Malware Removal
  • 6,811 posts
It looks like you're using Internet Explorer 10 according to the log files. Can you up grade to the latest version 11.

http://windows.micro...rer/download-ie

See what that does for us

Joe
  • 0

#30
mxsx353

mxsx353

    Member

  • Topic Starter
  • Member
  • PipPip
  • 21 posts

So far things are good. I'll get back with you later/tomorrow depending if I have problems soon or not.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP