Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

I THINK I'm infected, but not sure! [Solved]


  • This topic is locked This topic is locked

#16
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hmm intriguing..

Click here and select the blue Run ESET Online Scanner button:
ESET1_zps23a5e840.png

If using Internet Explorer:
  • Accept the Terms of Use and click Start.
  • Allow the running of add-on.
If using Mozilla Firefox or Google Chrome:
  • A link to esetsmartinstaller_enu.exe will be provided. Make sure to download it to the desktop.
  • Double click esetsmartinstaller_enu.exe.
  • Allow the Terms of Use and click Start.
To perform the scan:
  • Make sure that Enable detection of potentially unwanted applications is checked.
  • In the Advanced Settings dropdown menu:
    • Make sure that Remove found threats is unchecked.
    • Scan archives is checked.
    • Scan for potentially unsafe applications and Enable Anti-Stealth technology are checked.
    • Use custom proxy settings is unchecked.
  • Now click on Start.
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • Now click on Finish.
  • Use notepad to open the logfile located at C:\Program Files(x86)\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

  • 0

Advertisements


#17
moondog830

moondog830

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 626 posts

jumped ahead I think ... is this the same as the log.txt by copying and pasting the eset scan results? 

 

C:\$Recycle.Bin\S-1-5-21-1752649306-4100760835-3452497139-1001\$RG40ZGJ.crdownload a variant of Win32/InstallCore.ZC potentially unwanted application
C:\Users\papa\Desktop\Hotspot Shield Elite (3.42)+Patch [Chaos].rar BAT/HostsChanger.A potentially unsafe application
C:\Users\papa\Desktop\comics\Newsbin Pro 5.35 Build 1842.rar a variant of Generik.FQUZTDJ trojan
C:\Users\papa\Desktop\from HP laptop\Downloads Folder from old laptop\utorrent.exe a variant of Win32/AdkDLLWrapper.A potentially unwanted application
C:\Users\papa\Desktop\from HP laptop\Downloads Folder from old laptop\scanning programs\ccsetup406.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\papa\Desktop\Hotspot Shield Elite (3.42)+Patch [Chaos]\HSS-3.42-install-e-550-plain.exe Win32/Bundled.Toolbar.Ask.L potentially unsafe application
C:\Users\papa\Desktop\stuff from laptop\Microsoft Office Professional Plus 2013 -32-64 Bit(Activator)[RareAbyss].rar a variant of MSIL/HackTool.IdleKMS.E potentially unsafe application
C:\Users\papa\Downloads\UTorrent3.4.2.35702.exe a variant of Win32/OpenCandy.C potentially unsafe application

  • 0

#18
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Could I have a fresh FRST scan please, how is the computer behaving now ?
  • 0

#19
moondog830

moondog830

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 626 posts

sure ... it seems to vary ... the computer is acting okay ... so far today, no problems with opening pages

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:30-07-2015
Ran by papa (administrator) on PAPAS (31-07-2015 09:16:52)
Running from C:\Users\papa\Desktop
Loaded Profiles: papa (Available Profiles: papa)
Platform: Windows 8.1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel Corporation\Intel® Technology Access\IntelTechnologyAccessService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
() C:\Windows\SysWOW64\UMonit64.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.1\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13774040 2015-01-13] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-03-26] (NVIDIA Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-07-20] (AVAST Software)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [91488 2015-07-27] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-02-26] (Qualcomm®Atheros®)
HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7930136 2015-07-31] (SUPERAntiSpyware)
HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-18\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2015-07-27] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk [2015-04-18]
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-07-20] (AVAST Software)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://acer13.msn.com/?pc=ACJB
HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\Software\Microsoft\Internet Explorer\Main,Start Page = 
HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> {D6EEA06B-1DF7-46E0-BE8F-C66B5C6F2BB2} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001 -> DefaultScope {99A029AD-B1B5-42B9-BD0D-513656FD84B0} URL = 
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-07-28] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-07-20] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-07-28] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-15] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-07-20] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-15] (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{04F0CB9A-8BB9-47A6-9744-550650E38658}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{578D2FEE-34D7-40D4-BD4B-0B28E6162879}: [NameServer] 10.0.0.17 10.1.0.35
Tcpip\..\Interfaces\{578D2FEE-34D7-40D4-BD4B-0B28E6162879}: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-28] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-09] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-15] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-23] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-23] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-11-14]
 
Chrome: 
=======
CHR Profile: C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Readium) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fepbnnnkkadjhjahcafoaglimekefifl [2015-04-11]
CHR Extension: (Avast Online Security) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-04-10]
CHR Extension: (PDFPocket - PDF to EPUB) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpackgjjakgbeipilljfdhjhfbpobjjo [2015-04-11]
CHR Extension: (Convert EPUB to MOBI (Kindle format)) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkcichgcjcnjhkkaiglnobgopalkinhe [2015-04-11]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\papa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-10]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-07-20]
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-02-26] (Windows ® Win 7 DDK provider) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-07-20] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-07-20] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-07-20] (Avast Software)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-28] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [329104 2014-10-03] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 Intel® TechnologyAccessService; C:\Program Files\Intel Corporation\Intel® Technology Access\IntelTechnologyAccessService.exe [480512 2015-07-07] (Intel® Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [174368 2014-06-09] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-09] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1616160 2014-03-26] (NVIDIA Corporation)
S2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [765144 2014-11-28] (Secunia)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-03-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-03-10] (Microsoft Corporation)
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-07-20] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-07-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-07-20] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [454016 2015-07-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-07-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-07-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048856 2015-07-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-07-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150160 2015-07-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-07-20] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-26] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2014-03-18] (Microsoft Corporation)
S3 GeneStor; C:\Windows\System32\drivers\GeneStor.sys [111336 2014-04-28] (GenesysLogic)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2014-12-27] (REALiX™)
R3 iaLPSS_GPIO; C:\Windows\System32\drivers\iaLPSS_GPIO.sys [35832 2014-06-03] (Intel Corporation)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [120312 2014-06-03] (Intel Corporation)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-03-27] (Intel Corporation)
R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [41688 2015-04-30] (Intel Corporation)
S3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [67800 2015-04-30] (Intel Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-07-20] (AVAST Software)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2014-11-28] (Secunia)
S3 QRDCIO; C:\Windows\System32\drivers\QRDCIO.sys [9728 2009-10-20] (QUANTA)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2015-01-05] (Synaptics Incorporated)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-19] (Synaptics Incorporated)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-05-16] (Anchorfree Inc.)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-07-20] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-03-10] (Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-07-31 09:16 - 2015-07-31 09:17 - 00019897 _____ C:\Users\papa\Desktop\FRST.txt
2015-07-31 09:16 - 2015-07-31 09:16 - 02168832 _____ (Farbar) C:\Users\papa\Desktop\FRST64.exe
2015-07-30 14:06 - 2015-07-30 14:06 - 00000000 ____D C:\Program Files (x86)\ESET
2015-07-30 14:04 - 2015-07-30 14:04 - 02870984 _____ (ESET) C:\Users\papa\Downloads\esetsmartinstaller_enu.exe
2015-07-30 11:36 - 2015-07-30 11:36 - 00001929 _____ C:\Users\Public\Desktop\abDocs.lnk
2015-07-29 15:33 - 2015-07-31 09:16 - 00000000 ____D C:\Users\papa\Desktop\FRST-OlderVersion
2015-07-29 15:26 - 2015-07-29 15:26 - 00014552 _____ C:\Users\papa\Downloads\The Routledge Atlas of Jewish History[ebooks-shares.org].torrent
2015-07-29 15:26 - 2015-07-29 15:26 - 00008204 _____ C:\Users\papa\Downloads\Creating Textures in Watercolor[ebooks-shares.org].torrent
2015-07-28 22:00 - 2015-07-28 22:00 - 00014692 _____ C:\Users\papa\Downloads\[kat.cr]wolfskin.hundredth.dream.01.06.extras.nem.torrent
2015-07-28 21:59 - 2015-07-28 21:59 - 00034115 _____ C:\Users\papa\Downloads\[kat.cr]weird.war.tales.torrent
2015-07-28 21:59 - 2015-07-28 21:59 - 00022959 _____ C:\Users\papa\Downloads\[kat.cr]the.walking.dead.comics.1.134.specials.torrent
2015-07-28 21:58 - 2015-07-28 21:58 - 00056730 _____ C:\Users\papa\Downloads\[kat.cr]the.magic.of.belle.isle.2012.limited.french.brrip.xvid.ac3.riddick.torrent
2015-07-28 21:58 - 2015-07-28 21:58 - 00013735 _____ C:\Users\papa\Downloads\[kat.cr]the.7th.dwarf.2014.720p.hdrip.650mb.mkvcage.torrent
2015-07-28 21:57 - 2015-07-28 21:57 - 00012661 _____ C:\Users\papa\Downloads\[kat.cr]the.league.of.extraordinary.gentlemen.v1.v2.century01.03.digital.scans.2002.2012.minutemen.empire.nem.torrent
2015-07-28 21:53 - 2015-07-28 21:53 - 00029655 _____ C:\Users\papa\Downloads\[kat.cr]steampunk.00.12 (1).torrent
2015-07-28 21:53 - 2015-07-28 21:53 - 00021541 _____ C:\Users\papa\Downloads\[kat.cr]the.adventures.of.luther.arkwright.1.9.extras.1990.1991.torrent
2015-07-28 21:51 - 2015-07-28 21:51 - 00029655 _____ C:\Users\papa\Downloads\[kat.cr]steampunk.00.12.torrent
2015-07-28 21:51 - 2015-07-28 21:51 - 00013421 _____ C:\Users\papa\Downloads\[kat.cr]steampunk.soldiers.osprey.publishing.pdf.torrent
2015-07-28 21:49 - 2015-07-28 21:49 - 00015766 _____ C:\Users\papa\Downloads\[kat.cr]robert.e.howard.s.hawks.of.outremer.01.04.2010.digital.minutemen.endriago.vts.torrent
2015-07-28 21:49 - 2015-07-28 21:49 - 00011882 _____ C:\Users\papa\Downloads\[kat.cr]six.gun.gorilla.01.06.complete.nem.torrent
2015-07-28 21:48 - 2015-07-28 21:48 - 00008176 _____ C:\Users\papa\Downloads\[kat.cr]northmen.a.viking.saga.2014.720p.brrip.x264.yify.torrent
2015-07-28 21:46 - 2015-07-28 21:46 - 00057422 _____ C:\Users\papa\Downloads\[kat.cr]night.at.the.museum.secret.of.the.tomb.2014.brrip.xvid.juggs.etrg.torrent
2015-07-28 21:46 - 2015-07-28 21:46 - 00014130 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.002.2014.digital.exclusive.edition.tlk.empire.hd.cbr.nem.torrent
2015-07-28 21:46 - 2015-07-28 21:46 - 00013396 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.007.2014.digital.exclusive.edi.torrent
2015-07-28 21:46 - 2015-07-28 21:46 - 00012096 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.torrent
2015-07-28 21:46 - 2015-07-28 21:46 - 00011601 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.005.2014.digital.exclusive.edi.torrent
2015-07-28 21:46 - 2015-07-28 21:46 - 00011573 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.vol.1.tpb.2015.digital.dr.quinch.ii.empire.cbr.nem.torrent
2015-07-28 21:45 - 2015-07-28 21:45 - 00016920 _____ C:\Users\papa\Downloads\[kat.cr]legendary.talespinners.001.003.2010.2.covers.digital.salem.empire.nem.torrent
2015-07-28 21:45 - 2015-07-28 21:45 - 00016828 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.001.2013.digital.exclusive.edition.tlk.empire.hd.cbr.nem.torrent
2015-07-28 21:45 - 2015-07-28 21:45 - 00015152 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.006.2014.digital.exclusive.edi.torrent
2015-07-28 21:45 - 2015-07-28 21:45 - 00014925 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.001.007.2013.2014.digital.tlk.empire.hd.nem.torrent
2015-07-28 21:45 - 2015-07-28 21:45 - 00013236 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.tpb.2015.digital.tlk.empire.hd.cbr.nem.torrent
2015-07-28 21:45 - 2015-07-28 21:45 - 00012647 _____ C:\Users\papa\Downloads\[kat.cr]legenderry.a.steampunk.adventure.004.2014.digital.exclusive.edi.torrent
2015-07-28 21:44 - 2015-07-28 21:44 - 00082595 _____ C:\Users\papa\Downloads\[kat.cr]kull.destroyer.11.13.15.22.27.28.marvel.1973.1978 (1).torrent
2015-07-28 21:44 - 2015-07-28 21:44 - 00014839 _____ C:\Users\papa\Downloads\[kat.cr]chronicles.of.kull.v01.v05.2009.2012.digital.bean.empire.nem.torrent
2015-07-28 21:44 - 2015-07-28 21:44 - 00014783 _____ C:\Users\papa\Downloads\[kat.cr]kull.the.conqueror.1997.dvdrip.xvid.blitzkrieg.avi.torrent
2015-07-28 21:44 - 2015-07-28 21:44 - 00012025 _____ C:\Users\papa\Downloads\[kat.cr]the.savage.sword.of.kull.v1.v2.minutemen.endriago.nem.torrent
2015-07-28 21:43 - 2015-07-28 21:43 - 00016963 _____ C:\Users\papa\Downloads\[kat.cr]kingdom.rush.origins.v1.0.2.apk.obb.mod.unmod.android.joker.torrent
2015-07-28 21:41 - 2015-07-28 21:41 - 00018598 _____ C:\Users\papa\Downloads\[kat.cr]gearhearts.steampunk.glamor.revue.001.011.2011.ongoing.dcp.empire.nem.torrent
2015-07-28 21:41 - 2015-07-28 21:41 - 00017519 _____ C:\Users\papa\Downloads\[kat.cr]girl.genius.web.comic.complete.through.2014.webcomixfan.torrent
2015-07-28 21:40 - 2015-07-28 21:40 - 00019587 _____ C:\Users\papa\Downloads\[kat.cr]into.the.woods.2014.1080p.brrip.x264.yify.torrent
2015-07-28 21:40 - 2015-07-28 21:40 - 00017267 _____ C:\Users\papa\Downloads\[kat.cr]great.pacific.001.018.extra.2012.2014.digital.minutemen.spaztastic.nem.torrent
2015-07-28 21:40 - 2015-07-28 21:40 - 00009350 _____ C:\Users\papa\Downloads\[kat.cr]into.the.woods.2014.720p.brrip.x264.yify.torrent
2015-07-28 21:39 - 2015-07-28 21:39 - 00023730 _____ C:\Users\papa\Downloads\[kat.cr]kamandi.the.last.boy.on.earth.01.27.by.kirby.1972.1975.digital.tlk.empire.vts.torrent
2015-07-28 21:39 - 2015-07-28 21:39 - 00015203 _____ C:\Users\papa\Downloads\[kat.cr]jack.of.fables.v6.v9.2009.2011.digital.empire.nem.torrent
2015-07-28 21:39 - 2015-07-28 21:39 - 00014447 _____ C:\Users\papa\Downloads\[kat.cr]jack.of.fables.vol.01.the.nearly.great.escape.2007.digital.tpb.nahga.empire.cbr.requested.nem.torrent
2015-07-28 21:39 - 2015-07-28 21:39 - 00013507 _____ C:\Users\papa\Downloads\[kat.cr]jack.of.fables.v02.jack.of.hearts.2007.digital.empire.cbr.nem.torrent
2015-07-28 21:39 - 2015-07-28 21:39 - 00013454 _____ C:\Users\papa\Downloads\[kat.cr]jack.of.fables.v05.turning.pages.2009.digital.empire.cbr.nem.torrent
2015-07-28 21:39 - 2015-07-28 21:39 - 00012470 _____ C:\Users\papa\Downloads\[kat.cr]jack.of.fables.v04.americana.2008.digital.empire.cbr.nem.torrent
2015-07-28 21:39 - 2015-07-28 21:39 - 00011048 _____ C:\Users\papa\Downloads\[kat.cr]jack.of.fables.v03.the.bad.prince.2008.digital.empire.cbr.nem.torrent
2015-07-28 21:37 - 2015-07-28 21:37 - 00013409 _____ C:\Users\papa\Downloads\[kat.cr]heavy.metal.magazine.1977.1978.torrent
2015-07-28 21:36 - 2015-07-28 21:36 - 00147848 _____ C:\Users\papa\Downloads\[kat.cr]heavy.metal.magazine.1977.2012.specials.psiclone.torrent
2015-07-28 21:36 - 2015-07-28 21:36 - 00008872 _____ C:\Users\papa\Downloads\[kat.cr]cake.2014.720p.brrip.x264.yify.torrent
2015-07-28 21:35 - 2015-07-28 21:35 - 00038111 _____ C:\Users\papa\Downloads\[kat.cr]company.of.heroes.2.collector.s.edition.black.box.torrent
2015-07-28 21:35 - 2015-07-28 21:35 - 00019399 _____ C:\Users\papa\Downloads\[kat.cr]bram.stoker.s.death.ship.01.04.2010.minutemen.darth.angor.nem.torrent
2015-07-28 21:32 - 2015-07-28 21:32 - 00013618 _____ C:\Users\papa\Downloads\[kat.cr]bryan.talbot.the.tale.of.one.bad.rat.restored.torrent
2015-07-28 21:32 - 2015-07-28 21:32 - 00013408 _____ C:\Users\papa\Downloads\[kat.cr]bryan.talbot.grandville.2009.greek.digital.cbr.torrent
2015-07-28 21:31 - 2015-07-28 21:31 - 00017843 _____ C:\Users\papa\Downloads\[kat.cr]bryan.talbot.grandville.noel.2014.digital.empire.cbr.torrent
2015-07-28 21:30 - 2015-07-28 21:30 - 00092315 _____ C:\Users\papa\Downloads\[kat.cr]garth.ennis.battlefields.vol.1.6.dynamite.2009.11.dgtl.tpb.hr.torrent
2015-07-28 21:30 - 2015-07-28 21:30 - 00018230 _____ C:\Users\papa\Downloads\[kat.cr]an.act.of.war.2015.web.dl.x264.rarbg.torrent
2015-07-28 21:30 - 2015-07-28 21:30 - 00016053 _____ C:\Users\papa\Downloads\[kat.cr]39.68.homefront.001.004.2014.digital.dr.quinch.em.torrent
2015-07-28 21:26 - 2015-07-28 21:26 - 00116301 _____ C:\Users\papa\Downloads\[kat.cr]homefront.2013.dvdrip.xvid.ac3.acab.torrent
2015-07-28 21:26 - 2015-07-28 21:26 - 00082595 _____ C:\Users\papa\Downloads\[kat.cr]kull.destroyer.11.13.15.22.27.28.marvel.1973.1978.torrent
2015-07-28 21:24 - 2015-07-28 21:24 - 00152532 _____ C:\Users\papa\Downloads\[kat.cr]terminator.genisys.2015.hd.ts.xvid.ac3.cpg.torrent
2015-07-28 21:24 - 2015-07-28 21:24 - 00016537 _____ C:\Users\papa\Downloads\[kat.cr]pixels.2015.hdcam.new.source.xvid.ac3.mrg.torrent
2015-07-28 21:23 - 2015-07-28 21:23 - 00007570 _____ C:\Users\papa\Downloads\[kat.cr]hot.pursuit.2015.720p.brrip.x264.yify.torrent
2015-07-28 20:14 - 2015-07-28 20:16 - 02765758 _____ C:\Users\papa\Downloads\z5ergoAoA69.rar
2015-07-28 19:38 - 2015-07-28 19:37 - 00110688 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-07-28 19:36 - 2015-07-28 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-07-28 19:35 - 2015-07-28 19:37 - 00000000 ____D C:\Program Files\Java
2015-07-28 18:56 - 2015-07-28 18:56 - 00019376 _____ C:\Users\papa\Downloads\How to Paint Seascapes[ebooks-shares.org].torrent
2015-07-28 18:56 - 2015-07-28 18:56 - 00019018 _____ C:\Users\papa\Downloads\How to Paint Still Lifes[ebooks-shares.org].torrent
2015-07-28 18:56 - 2015-07-28 18:56 - 00010876 _____ C:\Users\papa\Downloads\Activated Charcoal in Medical Applications[ebooks-shares.org].torrent
2015-07-28 18:55 - 2015-07-28 18:55 - 00010740 _____ C:\Users\papa\Downloads\HTML and XHTML DeMYSTiFieD[ebooks-shares.org].torrent
2015-07-28 18:55 - 2015-07-28 18:55 - 00010174 _____ C:\Users\papa\Downloads\Web Design DeMYSTiFieD[ebooks-shares.org].torrent
2015-07-28 18:30 - 2015-07-28 18:40 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-28 18:30 - 2015-07-28 18:30 - 00001098 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-28 18:30 - 2015-07-28 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-28 18:30 - 2015-07-28 18:30 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-28 18:30 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-07-28 18:30 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-28 18:30 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-07-28 18:27 - 2015-07-28 18:28 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\papa\Downloads\mbam-setup-2.1.8.1057.exe
2015-07-27 20:12 - 2015-07-27 20:12 - 70174443 _____ C:\Users\papa\Downloads\s0f7IoWHiPa.rar
2015-07-27 18:07 - 2015-07-27 18:07 - 00017806 _____ C:\Users\papa\Downloads\[EBS] Laser Books series[ebooks-shares.org].torrent
2015-07-27 16:35 - 2015-07-27 16:37 - 16295400 _____ C:\Users\papa\Downloads\PWP.rar
2015-07-27 16:19 - 2015-07-27 16:28 - 930456592 _____ (Google Inc.) C:\Users\papa\Downloads\android-studio-bundle-141.1980579-windows.exe
2015-07-27 15:56 - 2015-07-27 16:07 - 189276248 _____ (Oracle Corporation) C:\Users\papa\Downloads\jdk-8u51-windows-x64.exe
2015-07-27 15:35 - 2015-07-27 15:35 - 02146816 _____ (Farbar) C:\Users\papa\Downloads\FRST64 (1).exe
2015-07-27 15:34 - 2015-07-05 06:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-07-27 15:31 - 2015-07-14 10:14 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-27 15:31 - 2015-07-14 10:14 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-27 15:31 - 2015-07-14 10:14 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-27 15:31 - 2015-07-14 10:13 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-27 15:31 - 2015-05-25 09:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-07-27 15:31 - 2015-05-25 09:07 - 01430528 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-07-27 11:51 - 2015-07-27 11:51 - 00066598 _____ C:\Users\papa\Downloads\[kat.cr]the.water.diviner.2014.limited.french.bdrip.x264.pridehd.mkv.torrent
2015-07-27 11:51 - 2015-07-27 11:51 - 00021144 _____ C:\Users\papa\Downloads\[kat.cr]survivor.2015.bluray.720p.dts.x264.mgb.etrg.torrent
2015-07-27 11:33 - 2015-07-27 11:33 - 03955123 _____ C:\Users\papa\Downloads\z5ergGob290.rar
2015-07-27 11:30 - 2015-07-27 11:30 - 03320245 _____ C:\Users\papa\Downloads\z5ergOCa21.rar
2015-07-27 11:29 - 2015-07-27 11:29 - 00002983 _____ C:\Users\papa\Downloads\Scott Oden[ebooks-shares.org].torrent
2015-07-25 09:27 - 2015-07-25 09:27 - 00008394 _____ C:\Users\papa\Downloads\[kat.cr]true.story.2015.720p.brrip.x264.yify (1).torrent
2015-07-24 23:20 - 2015-07-24 23:20 - 00176731 _____ C:\Users\papa\Downloads\[kat.cr]autodesk.suites.2016.autocad.design.building.design.entertainmen.t.creation.design.factory.infrastructu.re.design.plant.design.product.design.torrent
2015-07-24 23:20 - 2015-07-24 23:20 - 00049725 _____ C:\Users\papa\Downloads\[kat.cr]battlefield.4.xatab.torrent
2015-07-24 23:20 - 2015-07-24 23:20 - 00019560 _____ C:\Users\papa\Downloads\[kat.cr]computer.gadget.gamer.magzines.july.23.2015.true.pdf.torrent
2015-07-24 22:58 - 2015-07-24 22:58 - 00017687 _____ C:\Users\papa\Downloads\[kat.cr]a.little.chaos.2014.1080p.brrip.x264.yify.torrent
2015-07-24 22:57 - 2015-07-24 22:57 - 00080938 _____ C:\Users\papa\Downloads\[kat.cr]the.amazing.wizard.of.paws.2015.dvdrip.xvid.evo.torrent
2015-07-24 22:57 - 2015-07-24 22:57 - 00007804 _____ C:\Users\papa\Downloads\[kat.cr]dancer.and.the.dame.2015.720p.brrip.x264.yify.torrent
2015-07-24 22:35 - 2015-07-24 22:35 - 00072781 _____ C:\Users\papa\Downloads\[kat.cr]the.dead.lands.2014.limited.french.bdrip.x264.melba.mkv.torrent
2015-07-24 22:35 - 2015-07-24 22:35 - 00057557 _____ C:\Users\papa\Downloads\[kat.cr]war.pigs.2015.hdrip.xvid.etrg.torrent
2015-07-24 22:34 - 2015-07-24 22:34 - 00008394 _____ C:\Users\papa\Downloads\[kat.cr]true.story.2015.720p.brrip.x264.yify.torrent
2015-07-24 21:28 - 2015-07-24 21:28 - 42836458 _____ C:\Users\papa\Downloads\t5VafByLY.rar
2015-07-24 21:28 - 2015-07-24 21:28 - 14342626 _____ C:\Users\papa\Downloads\t5VafBsVB.rar
2015-07-24 20:24 - 2015-07-24 20:24 - 00001625 _____ C:\Users\papa\Downloads\[kat.cr]marko.kloos.angles.of.attack.frontlines.3.wildwielder.epub.torrent
2015-07-24 20:24 - 2015-07-24 20:24 - 00001454 _____ C:\Users\papa\Downloads\[kat.cr]lines.of.departure.by.marko.kloos.torrent
2015-07-24 20:24 - 2015-07-24 20:24 - 00000787 _____ C:\Users\papa\Downloads\[kat.cr]marko.kloos.terms.of.enlistment.frontlines.1.epub.torrent
2015-07-24 20:21 - 2015-07-24 20:21 - 00081295 _____ C:\Users\papa\Downloads\[kat.cr]descendants.2015.dvdrip.xvid.evo.torrent
2015-07-24 18:26 - 2015-07-31 09:16 - 00000000 ____D C:\FRST
2015-07-23 13:20 - 2015-07-30 22:25 - 00000918 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-23 13:20 - 2015-07-30 13:25 - 00000914 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-23 13:17 - 2015-07-23 13:17 - 00001216 _____ C:\Users\papa\Downloads\Tony Venables -The Red Hand.epub[ebooks-shares.org].torrent
2015-07-23 13:16 - 2015-07-23 13:16 - 00004098 _____ C:\Users\papa\Downloads\Tim Severin -Hector Lynch series (1-4)[epub,mobi][ebooks-shares.org].torrent
2015-07-23 13:15 - 2015-07-23 13:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-07-23 13:11 - 2015-07-23 13:11 - 00000000 ____D C:\Users\papa\AppData\Local\Deployment
2015-07-23 13:11 - 2015-07-23 13:11 - 00000000 ____D C:\Users\papa\AppData\Local\Apps\2.0
2015-07-23 13:04 - 2015-07-23 13:04 - 00007292 _____ C:\Users\papa\Downloads\Tim Severin - Saxon Series (1-2)[epub,mobi][ebooks-shares.org].torrent
2015-07-23 09:44 - 2015-07-23 09:45 - 00000000 ____D C:\Users\papa\Desktop\stuff from laptop
2015-07-22 22:30 - 2015-07-22 22:30 - 00113129 _____ C:\Users\papa\Downloads\[kat.cr]before.we.go.2014.hdrip.xvid.ac3.evo (4).torrent
2015-07-22 22:30 - 2015-07-22 22:30 - 00057448 _____ C:\Users\papa\Downloads\[kat.cr]angel.2015.hdrip.xvid.etrg.torrent
2015-07-22 22:29 - 2015-07-22 22:29 - 00101817 _____ C:\Users\papa\Downloads\[kat.cr]furious.seven.2015.extended.1080p.bluray.x264.sparks.torrent
2015-07-22 22:26 - 2015-07-22 22:26 - 00009746 _____ C:\Users\papa\Downloads\[kat.cr]paper.model.hms.warspite.battleship.1.300scale.superunitedkingdom.torrent
2015-07-22 22:26 - 2015-07-22 22:26 - 00001391 _____ C:\Users\papa\Downloads\[kat.cr]christopher.nuttall.a.savage.war.of.peace.warspite.ii.ark.royal.5.wildwielder.epub.torrent
2015-07-22 22:26 - 2015-07-22 22:26 - 00001391 _____ C:\Users\papa\Downloads\[kat.cr]christopher.nuttall.a.savage.war.of.peace.warspite.ii.ark.royal.5.wildwielder.epub (1).torrent
2015-07-22 22:25 - 2015-07-22 22:25 - 00002882 _____ C:\Users\papa\Downloads\[kat.cr]the.trafalgar.gambit.ark.royal.christopher.nuttall.epub.mobi.torrent
2015-07-22 21:30 - 2015-07-22 21:30 - 00113129 _____ C:\Users\papa\Downloads\[kat.cr]before.we.go.2014.hdrip.xvid.ac3.evo.torrent
2015-07-22 21:30 - 2015-07-22 21:30 - 00113129 _____ C:\Users\papa\Downloads\[kat.cr]before.we.go.2014.hdrip.xvid.ac3.evo (3).torrent
2015-07-22 21:30 - 2015-07-22 21:30 - 00113129 _____ C:\Users\papa\Downloads\[kat.cr]before.we.go.2014.hdrip.xvid.ac3.evo (2).torrent
2015-07-22 21:30 - 2015-07-22 21:30 - 00113129 _____ C:\Users\papa\Downloads\[kat.cr]before.we.go.2014.hdrip.xvid.ac3.evo (1).torrent
2015-07-22 21:30 - 2015-07-22 21:30 - 00015484 _____ C:\Users\papa\Downloads\[kat.cr]this.is.our.time.2013.dvdrip.xvid.sc0rp.torrent
2015-07-22 21:30 - 2015-07-22 21:30 - 00015484 _____ C:\Users\papa\Downloads\[kat.cr]this.is.our.time.2013.dvdrip.xvid.sc0rp (1).torrent
2015-07-22 18:43 - 2015-07-30 11:35 - 00003352 _____ C:\Windows\System32\Tasks\BacKGroundAgent
2015-07-21 23:30 - 2015-07-21 23:30 - 00015682 _____ C:\Users\papa\Downloads\Biscuits[ebooks-shares.org].torrent
2015-07-21 23:30 - 2015-07-21 23:30 - 00011406 _____ C:\Users\papa\Downloads\1,000 Inventions and Discoveries[ebooks-shares.org].torrent
2015-07-21 23:17 - 2015-07-21 23:17 - 09719863 _____ C:\Users\papa\Downloads\U5VafPA.rar
2015-07-21 23:16 - 2015-07-21 23:16 - 12154382 _____ C:\Users\papa\Downloads\U5VafBoS.rar
2015-07-21 23:16 - 2015-07-21 23:16 - 11515456 _____ C:\Users\papa\Downloads\U5VafO21p.rar
2015-07-21 23:08 - 2015-07-21 23:08 - 13279780 _____ C:\Users\papa\Downloads\U5VafOCa.rar
2015-07-21 23:07 - 2015-07-21 23:07 - 11870380 _____ C:\Users\papa\Downloads\U5VafO12s.rar
2015-07-21 20:39 - 2015-07-21 20:39 - 00006061 _____ C:\Users\papa\Downloads\[kat.cr]michael.j.sullivan.riyria.revelations.series.fantasy.epub.torrent
2015-07-21 20:02 - 2015-07-21 20:02 - 00004762 _____ C:\Users\papa\Downloads\[kat.cr]scott.lynch.the.gentleman.[bleep].sequence.1.3.epubs.thepillager.torrent
2015-07-21 20:01 - 2015-07-21 20:01 - 00001146 _____ C:\Users\papa\Downloads\[kat.cr]ebook.series.scifan.peter.v.brett.demon.trilogy.3.ebooks.torrent
2015-07-21 20:00 - 2015-07-21 20:00 - 00011058 _____ C:\Users\papa\Downloads\[kat.cr]the.lightbringer.series.1.3.by.brent.weeks.epub.mobi.knightinkat.torrent
2015-07-21 20:00 - 2015-07-21 20:00 - 00003616 _____ C:\Users\papa\Downloads\[kat.cr]brent.weeks.night.angel.trilogy.torrent
2015-07-21 19:59 - 2015-07-21 19:59 - 00003940 _____ C:\Users\papa\Downloads\[kat.cr]anthony.ryan.raven.s.shadow.03.queen.of.fire.epub.mobi.torrent
2015-07-21 19:59 - 2015-07-21 19:59 - 00001991 _____ C:\Users\papa\Downloads\[kat.cr]anthony.ryan.queen.of.fire.wildwielder.cpul.epub.torrent
2015-07-21 19:55 - 2015-07-21 19:55 - 00003662 _____ C:\Users\papa\Downloads\[kat.cr]mark.lawrence.the.broken.empire.01.03.mobi.torrent
2015-07-21 19:55 - 2015-07-21 19:55 - 00002899 _____ C:\Users\papa\Downloads\[kat.cr]broken.empire.3.books.by.mark.lawrence.sam2085.torrent
2015-07-21 17:41 - 2015-07-21 17:41 - 00012262 _____ C:\Users\papa\Downloads\[kat.cr]superantispyware.professional.6.0.1106.saw000.ctrg.torrent
2015-07-21 17:40 - 2015-07-21 17:40 - 00014316 _____ C:\Users\papa\Downloads\[kat.cr]superantispyware.professional.6.0.1200.final.keys.4realtorrentz.torrent
2015-07-21 17:37 - 2015-07-21 17:37 - 00121884 _____ C:\Users\papa\Downloads\[kat.cr]child.44.2015.real.hdrip.xvid.ac3.evo.torrent
2015-07-21 17:37 - 2015-07-21 17:37 - 00008311 _____ C:\Users\papa\Downloads\[kat.cr]the.road.within.2014.720p.brrip.x264.yify.torrent
2015-07-21 17:37 - 2015-07-21 17:37 - 00008164 _____ C:\Users\papa\Downloads\[kat.cr]the.last.survivors.2014.720p.brrip.x264.yify.torrent
2015-07-20 17:33 - 2015-07-20 17:33 - 00031469 _____ C:\Users\papa\Downloads\[kat.cr]malwarebytes.anti.malware.premium.2.1.8.1057.multilingual.keygen.by.fff.torrent
2015-07-20 17:33 - 2015-07-20 17:33 - 00013400 _____ C:\Users\papa\Downloads\[kat.cr]malwarebytes.anti.malware.premium.2.0.4.1028.final.keys.atom.torrent
2015-07-20 15:18 - 2015-07-20 15:18 - 00000000 ____D C:\Windows\%LOCALAPPDATA%
2015-07-20 15:12 - 2015-07-23 10:03 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-07-20 15:12 - 2015-07-20 15:12 - 01048856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00454016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-07-20 15:12 - 2015-07-20 15:12 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00150160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00115152 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-07-20 15:12 - 2015-07-20 15:12 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-07-20 15:12 - 2015-07-20 15:12 - 00028144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2015-07-20 12:25 - 2015-07-20 12:25 - 00000475 _____ C:\Users\papa\Downloads\EBS Endeavour (Atlantia Series Book 4)_nodrm.mobi[ebooks-shares.org].torrent
2015-07-20 12:25 - 2015-07-20 12:25 - 00000454 _____ C:\Users\papa\Downloads\EBS Defiance (Atlantia Series Book 5)_nodrm.mobi[ebooks-shares.org].torrent
2015-07-20 12:22 - 2015-07-20 12:22 - 00000611 _____ C:\Users\papa\Downloads\EBS A Prospect of War (An Age of Discord Novel Book 1)_nodrm.azw3[ebooks-shares.org].torrent
2015-07-20 12:22 - 2015-07-20 12:22 - 00000598 _____ C:\Users\papa\Downloads\EBS Mirandas Demons_nodrm.azw3[ebooks-shares.org].torrent
2015-07-19 23:16 - 2015-07-19 23:16 - 00020562 _____ C:\Users\papa\Downloads\Fitness Tracker.xlsx
2015-07-19 21:51 - 2015-07-19 21:51 - 00021945 _____ C:\Users\papa\Downloads\Levitt.xlsx
2015-07-19 21:49 - 2015-07-19 23:39 - 00022241 _____ C:\Users\papa\Downloads\PetroChart.xlsx
2015-07-19 21:48 - 2015-07-19 21:49 - 00278628 _____ C:\Users\papa\Downloads\Bertrand.xlsx
2015-07-19 21:19 - 2015-07-19 21:19 - 00000441 _____ C:\Users\papa\Downloads\EBS Space Carrier Avalon_nodrm.azw3[ebooks-shares.org].torrent
2015-07-19 20:51 - 2015-07-19 20:51 - 00015897 _____ C:\Users\papa\Downloads\Quality.xlsx
2015-07-19 18:26 - 2015-07-13 17:10 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-19 18:26 - 2015-07-13 17:10 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-19 17:29 - 2015-07-19 17:29 - 00017681 _____ C:\Users\papa\Downloads\Fitness (1).xlsx
2015-07-19 17:03 - 2015-07-19 17:04 - 21328258 _____ C:\Users\papa\Downloads\GWIWT29.rar
2015-07-19 16:50 - 2015-07-19 16:51 - 21125537 _____ C:\Users\papa\Downloads\GWIWT27.rar
2015-07-19 09:31 - 2015-07-19 09:31 - 00013652 _____ C:\Users\papa\Downloads\Hernandez.xlsx
2015-07-19 09:29 - 2015-07-19 09:29 - 00017681 _____ C:\Users\papa\Downloads\Fitness.xlsx
2015-07-19 09:10 - 2015-07-19 09:10 - 00015320 _____ C:\Users\papa\Downloads\read_and_understand_fairy_tales_and_folktales.pdf[ebooks-shares.org].torrent
2015-07-17 23:12 - 2015-07-17 23:13 - 64950272 _____ C:\Users\papa\Downloads\calibre-2.32.1.msi
2015-07-17 18:28 - 2015-07-17 18:28 - 51608829 _____ (soloviyko ) C:\Users\papa\Downloads\SoloModPack_v0.9.9_U1.exe
2015-07-17 16:57 - 2015-07-09 15:51 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-17 16:57 - 2015-07-09 14:40 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-17 16:57 - 2015-07-09 12:03 - 03701760 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-17 16:57 - 2015-07-09 11:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-17 16:57 - 2015-07-09 11:53 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-17 16:57 - 2015-07-09 11:50 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-07-17 16:57 - 2015-07-09 11:50 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-17 16:57 - 2015-07-09 11:48 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-17 16:57 - 2015-07-09 11:46 - 02229248 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-17 16:57 - 2015-07-09 11:38 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-17 16:57 - 2015-07-09 11:37 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-17 16:57 - 2015-07-09 11:35 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-17 16:57 - 2015-07-09 11:34 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-17 16:57 - 2015-06-26 23:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-17 16:57 - 2015-06-26 23:08 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-17 16:57 - 2015-06-26 22:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-17 16:57 - 2015-06-24 22:31 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-17 16:57 - 2015-04-29 19:22 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll
2015-07-17 16:56 - 2015-06-28 01:07 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-17 16:56 - 2015-06-28 01:07 - 00178008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-17 16:56 - 2015-06-28 01:06 - 01311960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-17 16:56 - 2015-06-28 01:06 - 00332120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-07-17 16:56 - 2015-06-27 12:42 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-07-17 16:56 - 2015-06-26 23:13 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-17 16:56 - 2015-06-26 23:12 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-17 16:56 - 2015-06-26 23:12 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-17 16:56 - 2015-06-26 22:40 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-07-17 16:56 - 2015-06-26 22:05 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-17 16:56 - 2015-06-26 22:00 - 00989184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-17 16:56 - 2015-06-26 21:53 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-07-17 16:56 - 2015-06-26 21:26 - 00802816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-17 16:56 - 2015-05-30 17:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-07-17 16:56 - 2015-05-30 15:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-07-17 16:56 - 2015-05-30 15:35 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-07-17 16:56 - 2015-05-02 20:39 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-07-17 16:55 - 2015-06-15 18:41 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-17 16:55 - 2015-06-15 18:24 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-17 16:55 - 2015-06-15 17:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-07-17 16:55 - 2015-06-15 17:09 - 03607552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-07-17 16:55 - 2015-06-15 16:50 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-17 16:55 - 2015-06-15 15:57 - 02460160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-17 16:55 - 2015-05-07 13:50 - 22292672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-07-17 16:55 - 2015-05-07 13:00 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-07-17 16:55 - 2015-05-07 12:53 - 19734960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-07-17 16:55 - 2015-05-07 12:12 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-07-17 16:55 - 2015-05-07 11:21 - 00522240 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-07-17 16:55 - 2015-05-07 11:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GeofenceMonitorService.dll
2015-07-17 16:55 - 2015-03-19 23:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-07-17 16:55 - 2015-03-19 23:08 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-07-17 16:55 - 2015-03-19 22:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-07-17 16:55 - 2015-03-19 22:07 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-07-17 16:54 - 2015-03-01 21:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-07-17 16:54 - 2015-03-01 21:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-07-17 16:53 - 2015-05-11 14:17 - 01201664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-07-17 16:53 - 2015-04-24 22:25 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-07-17 16:53 - 2015-04-08 18:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-07-17 16:52 - 2015-06-29 18:43 - 00026288 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-17 16:52 - 2015-06-29 11:07 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-17 16:52 - 2015-06-29 11:07 - 01084928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-17 16:52 - 2015-06-29 11:07 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-17 16:52 - 2015-06-29 11:07 - 00433152 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-17 16:52 - 2015-06-29 11:07 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-17 16:52 - 2015-06-26 19:21 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-17 16:52 - 2015-06-26 19:21 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-17 16:50 - 2015-06-15 18:39 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-17 16:50 - 2015-06-15 18:38 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-17 16:50 - 2015-06-15 18:26 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-17 16:50 - 2015-06-15 18:24 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-17 16:50 - 2015-06-15 18:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2015-07-17 16:50 - 2015-06-15 17:58 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-17 16:50 - 2015-06-15 17:57 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-17 16:50 - 2015-06-15 17:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-07-17 16:50 - 2015-06-15 17:55 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-17 16:50 - 2015-06-15 17:49 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-07-17 16:50 - 2015-06-15 17:41 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-07-17 16:50 - 2015-06-15 17:38 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-17 16:50 - 2015-06-15 17:36 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-17 16:50 - 2015-06-15 17:17 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-07-17 16:50 - 2015-06-15 17:16 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-17 16:50 - 2015-06-15 17:15 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-17 16:50 - 2015-06-15 17:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-17 16:50 - 2015-06-15 17:04 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-07-17 16:50 - 2015-06-15 17:03 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-17 16:50 - 2015-06-15 16:52 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-17 16:50 - 2015-06-15 16:47 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2015-07-17 16:50 - 2015-06-15 16:44 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-07-17 16:50 - 2015-06-15 16:43 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-17 16:50 - 2015-06-15 16:42 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-07-17 16:50 - 2015-06-15 16:41 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-17 16:50 - 2015-06-15 16:37 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-07-17 16:50 - 2015-06-15 16:32 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-07-17 16:50 - 2015-06-15 16:31 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-17 16:50 - 2015-06-15 16:30 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-17 16:50 - 2015-06-15 16:30 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-17 16:50 - 2015-06-15 16:17 - 01048576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-07-17 16:50 - 2015-06-15 16:07 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-17 16:50 - 2015-06-15 16:02 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-17 16:50 - 2015-05-22 23:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-07-17 16:50 - 2015-05-22 23:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-07-17 16:50 - 2015-05-22 15:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-17 16:50 - 2015-05-22 14:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-07-17 16:50 - 2015-05-22 14:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-07-17 16:50 - 2015-05-03 11:09 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 16:50 - 2015-05-03 10:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-17 16:50 - 2015-05-03 10:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-07-17 16:50 - 2015-05-03 10:49 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-07-17 16:49 - 2015-07-02 17:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-17 16:49 - 2015-07-02 16:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-17 16:49 - 2015-07-02 16:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-17 16:49 - 2015-07-02 16:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-17 16:49 - 2015-07-02 16:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-17 16:49 - 2015-07-02 15:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-17 16:49 - 2015-07-02 15:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-17 16:49 - 2015-07-02 14:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-17 16:49 - 2015-07-01 18:08 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-17 16:49 - 2015-07-01 17:14 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-17 16:49 - 2015-04-13 18:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-07-17 16:49 - 2015-04-13 18:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-07-17 16:47 - 2015-05-11 12:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-07-17 16:47 - 2015-04-24 22:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-07-17 16:47 - 2015-04-24 22:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-07-17 16:46 - 2015-06-16 01:36 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-17 16:46 - 2015-06-16 01:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-07-17 16:46 - 2015-06-10 23:49 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-17 16:46 - 2015-06-10 12:13 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-07-17 16:46 - 2015-05-07 12:47 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-07-17 16:46 - 2015-05-01 19:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-07-17 16:46 - 2015-04-28 09:13 - 00513480 _____ C:\Windows\SysWOW64\locale.nls
2015-07-17 16:46 - 2015-04-28 09:13 - 00513480 _____ C:\Windows\system32\locale.nls
2015-07-17 16:46 - 2015-04-23 11:47 - 03084288 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-07-17 16:46 - 2015-04-23 11:16 - 02471424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-07-17 16:46 - 2015-04-16 02:17 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-07-17 16:46 - 2015-04-01 00:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-07-17 16:46 - 2015-04-01 00:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-07-17 16:46 - 2015-04-01 00:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-07-17 16:46 - 2015-04-01 00:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-07-17 16:46 - 2015-03-31 23:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-07-17 16:46 - 2015-03-31 23:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-07-17 16:46 - 2015-03-31 23:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-07-17 16:46 - 2015-03-31 22:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-07-17 16:46 - 2015-03-31 22:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-07-17 16:46 - 2015-03-31 22:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-07-17 16:46 - 2015-03-31 22:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-07-17 16:46 - 2015-03-31 22:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-07-17 16:46 - 2015-03-31 22:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-07-17 16:45 - 2015-05-12 09:19 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-07-17 16:45 - 2015-05-03 11:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-17 16:45 - 2015-05-03 10:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-07-16 22:44 - 2015-07-16 22:44 - 00020547 _____ C:\Users\papa\Downloads\0545147131_e.pdf[ebooks-shares.org].torrent
2015-07-16 12:39 - 2015-07-16 12:39 - 00000000 ____D C:\Users\papa\AppData\Local\CEF
2015-07-16 11:53 - 2015-07-16 11:53 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-07-16 11:53 - 2015-07-16 11:53 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-07-16 09:55 - 2015-07-16 09:56 - 08736404 _____ C:\Users\papa\Downloads\w8thVBHlCf.rar
2015-07-15 22:38 - 2015-07-15 22:38 - 00007404 _____ C:\Users\papa\Downloads\1613749619.epub[ebooks-shares.org].torrent
2015-07-15 22:38 - 2015-07-15 22:38 - 00003548 _____ C:\Users\papa\Downloads\Easy MATH Art Projects & Activities.pdf[ebooks-shares.org].torrent
2015-07-15 22:38 - 2015-07-15 22:38 - 00002921 _____ C:\Users\papa\Downloads\Easy and Fun Cursive Writing.pdf[ebooks-shares.org].torrent
2015-07-15 22:37 - 2015-07-15 22:37 - 00007007 _____ C:\Users\papa\Downloads\Fluency Practice Mini Books - Gr 3.pdf[ebooks-shares.org].torrent
2015-07-15 22:37 - 2015-07-15 22:37 - 00004248 _____ C:\Users\papa\Downloads\Every Day of the Year Math Problems.pdf[ebooks-shares.org].torrent
2015-07-15 22:37 - 2015-07-15 22:37 - 00003369 _____ C:\Users\papa\Downloads\Exploring Plants.pdf[ebooks-shares.org].torrent
2015-07-15 22:37 - 2015-07-15 22:37 - 00002617 _____ C:\Users\papa\Downloads\Fractured Fairy Tales - Fractions & Decimals.pdf[ebooks-shares.org].torrent
2015-07-15 22:37 - 2015-07-15 22:37 - 00002121 _____ C:\Users\papa\Downloads\Expository Writing - Primary.pdf[ebooks-shares.org].torrent
2015-07-15 22:37 - 2015-07-15 22:37 - 00001046 _____ C:\Users\papa\Downloads\Fast Facts - Addition & Subtraction.pdf[ebooks-shares.org].torrent
2015-07-15 22:36 - 2015-07-15 22:36 - 00005318 _____ C:\Users\papa\Downloads\Fractured Fairy Tales - Mult. & Div. - Gr 4-6.pdf[ebooks-shares.org].torrent
2015-07-15 22:36 - 2015-07-15 22:36 - 00002439 _____ C:\Users\papa\Downloads\Fractured Fairy Tales Math.pdf[ebooks-shares.org].torrent
2015-07-15 10:40 - 2015-07-15 10:50 - 33124422 _____ C:\Users\papa\Downloads\x9thVIowWiB.rar
2015-07-15 10:34 - 2015-07-15 10:37 - 16366602 _____ C:\Users\papa\Downloads\x9thVIowUbP.rar
2015-07-13 20:53 - 2015-07-13 20:53 - 05709124 _____ C:\Users\papa\Downloads\The Infantry's Armor.epub
2015-07-13 18:55 - 2015-07-13 18:55 - 06125138 _____ C:\Users\papa\Downloads\yMaIoMIAI.rar
2015-07-13 18:54 - 2015-07-13 18:55 - 06358966 _____ C:\Users\papa\Downloads\sbaIoMPa2.rar
2015-07-13 15:31 - 2015-07-13 15:31 - 00269312 _____ ([bleep]) C:\Users\papa\Downloads\DAMN_NFO_Viewer_v2-10-0032-RC3.exe
2015-07-11 18:27 - 2015-07-11 18:28 - 00000000 ____D C:\Users\papa\Desktop\gettysburg off stephs
2015-07-11 18:24 - 2015-07-11 18:24 - 00000000 ____D C:\Users\papa\Desktop\steph's phone pics
2015-07-10 22:21 - 2015-04-09 20:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-07-10 22:21 - 2015-04-09 20:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-07-10 16:25 - 2015-07-15 22:25 - 00000000 ____D C:\Users\papa\Desktop\gettysburg pics
2015-07-09 09:51 - 2015-07-09 09:52 - 87270706 _____ C:\Users\papa\Downloads\x9thVIww12.rar
2015-07-08 18:51 - 2015-07-08 18:52 - 39902656 _____ C:\Users\papa\Downloads\x9thVHL.rar
2015-07-08 18:42 - 2015-07-08 18:42 - 00000000 ____D C:\Users\papa\Downloads\EBS Ken Scholes
2015-07-08 18:42 - 2015-07-08 18:42 - 00000000 ____D C:\Users\papa\Downloads\Daniel Abraham
2015-07-07 16:39 - 2015-07-07 16:39 - 28448164 _____ C:\Users\papa\Downloads\r9thVBbHlVP.rar
2015-07-07 16:38 - 2015-07-07 16:39 - 45741164 _____ C:\Users\papa\Downloads\r9thVIoWTb.rar
2015-07-06 20:09 - 2015-07-06 20:10 - 00012288 _____ (Microsoft) C:\Users\papa\Downloads\VCF Viewer.exe
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-07-31 09:17 - 2014-11-13 07:03 - 00003910 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{26ACF6BE-75A4-4FDC-A990-EB59D2508DDE}
2015-07-31 09:14 - 2015-03-16 08:02 - 00000000 ____D C:\Users\papa\AppData\Local\CrashDumps
2015-07-31 09:14 - 2014-08-13 06:06 - 01602582 _____ C:\Windows\WindowsUpdate.log
2015-07-31 09:13 - 2014-11-14 15:03 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2015-07-31 09:13 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\system32\sru
2015-07-30 18:43 - 2014-11-26 16:56 - 00000000 ____D C:\Users\papa\AppData\Roaming\TS3Client
2015-07-30 12:43 - 2014-11-23 12:00 - 00000000 ____D C:\Users\papa\AppData\Roaming\vlc
2015-07-30 12:40 - 2015-01-27 20:54 - 00000000 ____D C:\Users\papa\Desktop\Epub Stuff
2015-07-30 12:01 - 2014-03-18 06:03 - 00863592 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-30 11:49 - 2014-11-13 06:56 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1752649306-4100760835-3452497139-1001
2015-07-30 11:36 - 2014-06-12 04:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-07-30 11:36 - 2014-06-12 04:07 - 00000000 ____D C:\Program Files (x86)\Acer
2015-07-30 11:35 - 2014-06-12 04:36 - 00000000 ___HD C:\OEM
2015-07-30 11:33 - 2014-11-13 06:52 - 00000000 ____D C:\Users\papa\AppData\Local\clear.fi
2015-07-30 11:06 - 2014-06-12 04:05 - 00000000 ____D C:\ProgramData\Intel
2015-07-30 11:05 - 2015-04-08 07:24 - 00033905 _____ C:\Windows\setupact.log
2015-07-30 11:05 - 2015-04-08 07:23 - 00067596 _____ C:\Windows\PFRO.log
2015-07-30 11:05 - 2013-08-22 10:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-30 11:04 - 2013-08-22 09:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-07-29 09:06 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\AppReadiness
2015-07-27 15:55 - 2015-02-23 17:30 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-27 15:46 - 2013-08-22 09:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-07-27 15:45 - 2013-08-22 10:44 - 09738256 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-27 15:34 - 2013-08-22 11:20 - 00000000 ____D C:\Windows\CbsTemp
2015-07-25 09:13 - 2015-03-30 07:50 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-24 18:27 - 2014-11-26 16:42 - 00000000 ____D C:\Users\papa\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack
2015-07-24 18:07 - 2015-05-31 13:51 - 00000000 ____D C:\Program Files (x86)\OMC ModPack Client
2015-07-24 18:07 - 2014-11-26 12:31 - 00000000 ____D C:\Users\papa\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack Client
2015-07-23 13:20 - 2014-11-14 05:16 - 00003890 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-23 13:20 - 2014-11-14 05:16 - 00003654 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-23 13:15 - 2014-11-14 05:16 - 00000000 ____D C:\Program Files (x86)\Google
2015-07-23 13:07 - 2015-02-25 09:58 - 00000000 __SHD C:\Users\papa\AppData\Local\EmieBrowserModeList
2015-07-23 13:07 - 2014-11-13 07:03 - 00000000 __SHD C:\Users\papa\AppData\Local\EmieUserList
2015-07-23 13:07 - 2014-11-13 07:03 - 00000000 __SHD C:\Users\papa\AppData\Local\EmieSiteList
2015-07-23 10:17 - 2015-01-15 10:08 - 00000000 ____D C:\Program Files\Adobe
2015-07-23 10:17 - 2014-06-12 04:17 - 00000000 ____D C:\ProgramData\Adobe
2015-07-23 10:16 - 2014-06-12 04:16 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-07-23 10:10 - 2014-11-13 06:49 - 00000000 ____D C:\Users\papa
2015-07-23 10:05 - 2014-11-22 21:25 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2015-07-23 09:49 - 2014-12-31 15:26 - 00000000 ____D C:\Users\papa\Desktop\4KAD stuff
2015-07-23 09:45 - 2014-11-22 19:37 - 00000000 ____D C:\Users\papa\AppData\Local\Adobe
2015-07-22 22:52 - 2015-01-15 11:46 - 00000000 ____D C:\Users\papa\Documents\Calibre Library
2015-07-21 20:20 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\rescache
2015-07-21 09:20 - 2014-11-14 14:49 - 00000000 ____D C:\Windows\SysWOW64\vbox
2015-07-21 09:20 - 2014-11-14 14:49 - 00000000 ____D C:\Windows\system32\vbox
2015-07-20 16:47 - 2015-03-16 12:52 - 00000000 ____D C:\Users\papa\Desktop\book covers
2015-07-20 15:14 - 2014-11-14 14:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-07-19 18:33 - 2015-03-15 15:12 - 00000000 ____D C:\Users\papa\AppData\Local\Microsoft Help
2015-07-19 18:22 - 2013-08-22 11:36 - 00000000 ___RD C:\Windows\ToastData
2015-07-19 18:21 - 2014-12-11 17:36 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-19 18:21 - 2014-11-19 17:18 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-19 18:21 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\WinStore
2015-07-19 18:21 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-07-19 09:20 - 2015-01-15 11:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2015-07-19 09:20 - 2015-01-15 11:45 - 00000000 ____D C:\Program Files (x86)\Calibre2
2015-07-19 08:56 - 2015-03-01 14:49 - 00000000 ____D C:\Users\papa\Documents\ConvertXtoDVD
2015-07-17 17:12 - 2014-11-15 14:06 - 00000000 ____D C:\Windows\system32\MRT
2015-07-17 17:01 - 2015-03-30 07:50 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-17 16:45 - 2015-05-31 13:51 - 00000000 ____D C:\Users\papa\Documents\OMC ModPack
2015-07-14 20:24 - 2015-06-29 11:50 - 00013433 _____ C:\Users\papa\Desktop\Church 2nd Quarter 2015.xlsx
2015-07-13 14:38 - 2015-02-21 17:34 - 00000000 ____D C:\Users\papa\Desktop\movies
2015-07-11 23:05 - 2015-01-24 12:14 - 00001456 _____ C:\Users\papa\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-07-10 22:02 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\system32\NDF
2015-07-06 23:19 - 2015-05-03 15:51 - 00000000 ____D C:\Users\papa\Desktop\warbooks
2015-07-03 08:43 - 2014-11-15 14:06 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
 
==================== Files in the root of some directories =======
 
2014-12-23 17:05 - 2014-12-23 17:36 - 0000132 _____ () C:\Users\papa\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2015-04-24 09:30 - 2015-05-30 09:51 - 0000132 _____ () C:\Users\papa\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-11-26 10:59 - 2014-11-26 10:59 - 0099384 _____ () C:\Users\papa\AppData\Roaming\inst.exe
2014-11-26 10:59 - 2014-11-26 10:59 - 0007859 _____ () C:\Users\papa\AppData\Roaming\pcouffin.cat
2014-11-26 10:59 - 2014-11-26 10:59 - 0001167 _____ () C:\Users\papa\AppData\Roaming\pcouffin.inf
2014-11-26 10:59 - 2014-11-26 10:59 - 0000055 _____ () C:\Users\papa\AppData\Roaming\pcouffin.log
2014-11-26 10:59 - 2014-11-26 10:59 - 0082816 _____ (VSO Software) C:\Users\papa\AppData\Roaming\pcouffin.sys
2014-12-17 17:11 - 2014-12-17 17:31 - 0001456 _____ () C:\Users\papa\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2015-01-24 12:14 - 2015-07-11 23:05 - 0001456 _____ () C:\Users\papa\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-08-13 06:05 - 2014-08-13 06:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-11-13 07:03 - 2015-01-15 14:14 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
 
Some files in TEMP:
====================
C:\Users\papa\AppData\Local\Temp\HssInstaller.exe
C:\Users\papa\AppData\Local\Temp\HssInstaller64.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-07-24 17:36
 
==================== End of log ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version:30-07-2015
Ran by papa (2015-07-31 09:19:05)
Running from C:\Users\papa\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1752649306-4100760835-3452497139-500 - Administrator - Disabled)
Guest (S-1-5-21-1752649306-4100760835-3452497139-501 - Limited - Disabled)
papa (S-1-5-21-1752649306-4100760835-3452497139-1001 - Administrator - Enabled) => C:\Users\papa
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.08.2003 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2000 - Acer Incorporated)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Reader 64-bit fixes (HKLM\...\{6D80AAE7-FF65-4950-B1CA-3A7EA4995574}_is1) (Version:  - Leo Davidson / Pretentious Name)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.09.2004.0 - Acer Incorporated)
Ashampoo Burning Studio 12 v.12.0.3 (HKLM-x32\...\{91B33C97-93EB-244C-F687-71D85E45A206}_is1) (Version: 12.0.3 - Ashampoo GmbH & Co. KG)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 10.3.2223 - AVAST Software)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
calibre (HKLM-x32\...\{4DA127C8-972B-4A5A-A38B-CCBAF52D499F}) (Version: 2.32.1 - Kovid Goyal)
CryptoPrevent (HKLM-x32\...\{5C5B24E7-4694-4049-A222-CCE7D3FAC63F}_is1) (Version:  - Foolish IT LLC)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.2.1 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.165.1 - Intel Corporation)
Intel® Technology Access (HKLM-x32\...\{413fe921-b226-41c8-bc3c-574074ceec4d}) (Version: 1.4.4.1000 - Intel Corporation)
Intel® Update Manager (HKLM-x32\...\{43FA4AC8-46F8-423F-96FD-9A7D67048F1C}) (Version: 2.5.1634 - Intel Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java SE Development Kit 8 Update 51 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180510}) (Version: 8.0.510.16 - Oracle Corporation)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8100 - Acer Incorporated)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
NVIDIA Graphics Driver 332.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.91 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
OMC ModPack Client version 1.3.8.22 (HKLM-x32\...\{E2F3187C-2B94-486F-8914-E69211487FB6}_is1) (Version: 1.3.8.22 - Odem Mortis)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.29 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.32.508.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Solo's ModPack for World of Tanks (HKLM-x32\...\{547468D0-A0E7-4EDD-8C5F-39CCB4DD9343}_is1) (Version: 9.9.1 - soloviyko)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 2.4 - Krzysztof Kowalczyk)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1158 - SUPERAntiSpyware.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
UltraISO Premium V9.52 (HKLM-x32\...\UltraISO_is1) (Version:  - )
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.0.0.30 - VSO-Software SARL)
WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812NA}_is1) (Version:  - Wargaming.net)
World of Warships (HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814na}_is1) (Version:  - Wargaming.net)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
 
==================== Restore Points =========================
 
21-07-2015 19:24:41 Scheduled Checkpoint
27-07-2015 15:33:15 Windows Update
28-07-2015 18:15:39 Intel® Technology Access
28-07-2015 19:34:22 Installed Java SE Development Kit 8 Update 51 (64-bit)
29-07-2015 15:33:52 Restore Point Created by FRST
30-07-2015 22:43:56 Intel® Technology Access
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 09:25 - 2015-03-07 15:59 - 00001054 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 anchorfree.net
127.0.0.1 rss2search.com
127.0.0.1 techbrowsing.com
127.0.0.1 box.anchorfree.net
127.0.0.1 www.mefeedia.com
127.0.0.3 www.anchorfree.net
127.0.0.2 www.mefeedia.com
127.0.0.1 anchorfree.us
127.0.0.1 a433.com
127.0.0.3 anchorfree.net
127.0.0.1 rpt.anchorfree.net
127.0.0.1 delivery.anchorfree.us/land.php
127.0.0.1 hsselite.com
127.0.0.1 www.hsselite.com
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0F8C4AE3-9238-4D0D-BA4E-A68EF2127E3F} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-03] (Microsoft Corporation)
Task: {1BA7382F-B601-48F4-B0FE-10DD3CBD345C} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-07-23] (Acer Incorporated)
Task: {4A83C9CD-B038-444A-9091-D3069D150A49} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {60D7F1A9-6E6F-4EC1-AF8B-4DA8F1A73A1F} - \ProPCCleaner_Popup No Task File <==== ATTENTION
Task: {8464E7D7-1C32-4249-9C2B-313D7F88428E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-07-20] (AVAST Software)
Task: {97208880-6263-4023-A260-867426D1F220} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-08] ()
Task: {A8988A94-5076-40A4-8065-C81AEF795FF3} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {ACA1E3F2-F97B-4D64-A7C6-1B54C3C063B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-23] (Google Inc.)
Task: {BDC431AF-1E50-4B64-B27B-6090E057E18C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-23] (Google Inc.)
Task: {C4CDEF1D-22F0-424B-885A-D0E18F04038F} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [2014-02-25] ()
Task: {CD9FED0B-FB15-43C0-BB14-922E6D286C1A} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-06-09] ()
Task: {F7374BF4-56B7-4534-9FCB-E77BFDF165F7} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [2014-06-09] ()
Task: {FB5628A9-1B22-4D04-872B-E34E01692FBE} - \ProPCCleaner_Start No Task File <==== ATTENTION
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (Whitelisted) ==============
 
2014-08-13 06:07 - 2014-03-24 08:30 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-07-07 11:44 - 2015-07-07 11:44 - 00088064 _____ () C:\Program Files\Intel Corporation\Intel® Technology Access\libglog.dll
2015-07-07 13:41 - 2015-07-07 13:41 - 01793280 _____ () C:\Program Files\Intel Corporation\Intel® Technology Access\cpprest120_1_4.dll
2015-07-07 13:41 - 2015-07-07 13:41 - 00354560 _____ () C:\Program Files\Intel Corporation\Intel® Technology Access\JsonCpp.dll
2010-01-30 02:40 - 2010-01-30 02:40 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-03-24 21:38 - 2010-03-24 21:38 - 08794976 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2014-08-13 06:52 - 2014-01-03 17:13 - 00111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2014-08-13 06:13 - 2014-02-25 23:13 - 00053248 _____ () C:\Windows\SysWOW64\UMonit64.exe
2014-02-26 01:14 - 2014-02-26 01:14 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-02-26 01:11 - 2014-02-26 01:11 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2014-02-26 01:17 - 2014-02-26 01:17 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2015-07-27 17:46 - 2015-07-27 17:46 - 00091488 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
2015-07-27 17:46 - 2015-07-27 17:46 - 01769312 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
2014-08-13 06:05 - 2013-10-01 05:09 - 00078880 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2015-07-20 15:12 - 2015-07-20 15:12 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-07-20 15:12 - 2015-07-20 15:12 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-07-29 09:13 - 2015-07-29 09:13 - 02960384 _____ () C:\Program Files\AVAST Software\Avast\defs\15072900\algo.dll
2015-07-30 21:23 - 2015-07-30 21:23 - 02960384 _____ () C:\Program Files\AVAST Software\Avast\defs\15073005\algo.dll
2014-08-13 06:52 - 2014-01-03 17:13 - 00090368 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-03-24 21:17 - 2010-03-24 21:17 - 08794464 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2015-07-27 11:33 - 2015-07-23 18:39 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\libglesv2.dll
2015-07-27 11:33 - 2015-07-23 18:39 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\libegl.dll
2015-07-20 14:09 - 2015-07-20 14:09 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-08-13 06:09 - 2013-12-09 19:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2015-07-27 17:47 - 2015-07-27 17:47 - 00277856 _____ () C:\Program Files (x86)\Acer\abDocs\libcurl.dll
2014-12-29 14:25 - 2014-12-29 14:25 - 00203008 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll
2014-12-29 14:26 - 2014-12-29 14:26 - 00654552 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
2014-12-29 14:26 - 2014-12-29 14:26 - 00630528 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll
2014-12-29 14:26 - 2014-12-29 14:26 - 00119552 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll
2015-07-30 11:35 - 2015-07-30 11:35 - 00014176 _____ () C:\Windows\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
2015-07-23 16:08 - 2015-07-23 16:08 - 00012128 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
2015-07-23 15:56 - 2015-07-23 15:56 - 00277856 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll
2015-07-27 11:33 - 2015-07-23 18:39 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\PepperFlash\pepflashplayer.dll
2015-04-23 18:05 - 2015-04-15 16:20 - 00044544 _____ () C:\Games\World_of_Tanks\voip.dll
2014-11-14 16:57 - 2014-09-17 07:59 - 00323568 _____ () C:\Games\World_of_Tanks\ortp.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"
 
==================== EXE Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\...\100sexlinks.com -> 100sexlinks.com
 
There are 4789 more restricted sites.
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1752649306-4100760835-3452497139-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\papa\Desktop\july2013_1280x1024_cl.jpg
DNS Servers: 10.0.0.17 - 10.1.0.35
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [{3ED65B5C-C0CF-421D-ABD3-6E48B3D8CBD5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{5CD59B9C-865D-4E06-A66D-3857764B5749}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{B3F491C4-2BC0-4C9A-B960-54E6FE99855A}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [TCP Query User{B2A72BE7-8795-4658-BB5E-3A8657C4EA16}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{F17EAB72-467C-4E3D-A69D-2A29FB8408C3}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [TCP Query User{AD0F9D88-1B62-4A3E-86BF-0A5C279EDDED}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{BB1160BF-F014-4D33-B6A4-6D6EACCD04FA}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/31/2015 09:13:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: GWXUX.exe, version: 6.3.9600.17924, time stamp: 0x55959290
Faulting module name: ntdll.dll, version: 6.3.9600.17736, time stamp: 0x550f4336
Exception code: 0xc0000005
Fault offset: 0x000000000003d85e
Faulting process id: 0xc20
Faulting application start time: 0xGWXUX.exe0
Faulting application path: GWXUX.exe1
Faulting module path: GWXUX.exe2
Report Id: GWXUX.exe3
Faulting package full name: GWXUX.exe4
Faulting package-relative application ID: GWXUX.exe5
 
Error: (07/30/2015 03:13:28 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
 
Error: (07/30/2015 03:13:23 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
 
Error: (07/30/2015 02:06:00 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
 
Error: (07/30/2015 02:06:00 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
 
Error: (07/30/2015 02:05:39 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
 
Error: (07/30/2015 02:05:29 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifest.
 
Error: (07/30/2015 11:10:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0xc0000409
Fault offset: 0x00093524
Faulting process id: 0x924
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3
Faulting package full name: PSIA.exe4
Faulting package-relative application ID: PSIA.exe5
 
Error: (07/27/2015 03:50:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Faulting module name: PSIA.exe, version: 3.0.0.10004, time stamp: 0x54784a82
Exception code: 0xc0000409
Fault offset: 0x00093524
Faulting process id: 0x84c
Faulting application start time: 0xPSIA.exe0
Faulting application path: PSIA.exe1
Faulting module path: PSIA.exe2
Report Id: PSIA.exe3
Faulting package full name: PSIA.exe4
Faulting package-relative application ID: PSIA.exe5
 
Error: (07/27/2015 03:30:49 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SystemSettings.exe version 6.3.9600.17489 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 5f8
 
Start Time: 01d0c55012ee9453
 
Termination Time: 7
 
Application Path: C:\Windows\ImmersiveControlPanel\SystemSettings.exe
 
Report Id: f84fb749-3495-11e5-82d7-c45444b61c2d
 
Faulting package full name: windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy
 
Faulting package-relative application ID: microsoft.windows.immersivecontrolpanel
 
 
System errors:
=============
Error: (07/30/2015 02:09:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (07/30/2015 02:09:57 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\papa\AppData\Local\Temp\ehdrv.sys
 
Error: (07/30/2015 02:09:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (07/30/2015 02:09:56 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\papa\AppData\Local\Temp\ehdrv.sys
 
Error: (07/30/2015 02:09:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The eapihdrv service failed to start due to the following error: 
%%1275
 
Error: (07/30/2015 02:09:56 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\papa\AppData\Local\Temp\ehdrv.sys
 
Error: (07/30/2015 11:11:34 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Secunia PSI Agent service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (07/30/2015 11:04:41 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The Diagnostics Tracking Service service did not shut down properly after receiving a preshutdown control.
 
Error: (07/30/2015 11:04:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Group Policy Client service failed to start due to the following error: 
%%1053
 
Error: (07/30/2015 11:04:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Group Policy Client service failed to start due to the following error: 
%%1053
 
 
Microsoft Office:
=========================
Error: (07/31/2015 09:13:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.1792455959290ntdll.dll6.3.9600.17736550f4336c0000005000000000003d85ec2001d0cb92bd5f51daC:\Windows\System32\GWX\GWXUX.exeC:\Windows\SYSTEM32\ntdll.dllfe030415-3785-11e5-82d9-c45444b61c2d
 
Error: (07/30/2015 03:13:28 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Users\papa\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/30/2015 03:13:23 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Users\papa\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/30/2015 02:06:00 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Users\papa\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/30/2015 02:06:00 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Users\papa\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/30/2015 02:05:39 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Users\papa\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/30/2015 02:05:29 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_6240b9c7ecbd0bda.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17810_none_a9edf09f013934e0.manifestC:\Users\papa\Downloads\esetsmartinstaller_enu.exe
 
Error: (07/30/2015 11:10:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c00004090009352492401d0cad9421c5f3eC:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exe27b4b36b-36cd-11e5-82d9-c45444b61c2d
 
Error: (07/27/2015 03:50:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c00004090009352484c01d0c8a4dbe5060dC:\Program Files (x86)\Secunia\PSI\PSIA.exeC:\Program Files (x86)\Secunia\PSI\PSIA.exebb0a0e5a-3498-11e5-82d8-c45444b61c2d
 
Error: (07/27/2015 03:30:49 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SystemSettings.exe6.3.9600.174895f801d0c55012ee94537C:\Windows\ImmersiveControlPanel\SystemSettings.exef84fb749-3495-11e5-82d7-c45444b61c2dwindows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewymicrosoft.windows.immersivecontrolpanel
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 45%
Total physical RAM: 8115.27 MB
Available physical RAM: 4435.57 MB
Total Virtual: 9395.27 MB
Available Virtual: 5567.64 MB
 
==================== Drives ================================
 
Drive c: (Acer) (Fixed) (Total:913.91 GB) (Free:379.29 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 1D2D5274)
 
Partition: GPT Partition Type.
 
==================== End of log ============================

  • 0

#20
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Looks like it worked :) even though it did not appear to

Subject to no further problems :)

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems

Now the best part of the day ----- Your log now appears clean :thumbsup:

A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:

Remove tools

Download and run Delfix
Select the options as shown
delfix.JPG


: Keep Java Updated :

WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article

I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser and How to unplug Java from the browser)

If you do need to keep Java then download JavaRa
Run the programme and select Remove Java Runtime. Uninstall all versions of Java present
Once done then run it again and select Update Java runtime > Download and install Latest version
javara.JPG


Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:

Malwarebytes

Update and run weekly to keep your system clean

Unchecky

Click on the link above to be taken to Unchecky.com
click the very large Download button.
click Save
Click Open folder
Right click on the Unchecky_setup and choose to Run as Administrator
Once open click the Install button.
Then click on Finish
Unchecky is now installed and will help you keep unwanted check boxes unchecked, this is a fire and forget programme ;)

It is critical to have both a firewall and anti virus to protect your system and to keep them updated.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe :wave:
  • 0

#21
moondog830

moondog830

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 626 posts

As for whether or not I need Java, how would I know? Or how would I determine that?


  • 0

#22
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Java is generally used for facebook games and accounting programmes

If you use neither of those then uninstall Java and see if any programmes complain
  • 0

#23
moondog830

moondog830

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 626 posts

thanks for your help ... I have a bunch of older friends at church and around me that will love unchecky ... they are the ones I keep having  to help because they want to play a game and don't read or uncheck boxes. thanks  for unchecky and I always use malwarebytes 

 

take care


  • 0

#24
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP