First of all, THANK YOU for all your assistance with this and Happy HolidaysOk, not sure how I missed those first steps but I think I have it all now.
========== OTL ==========
Service vToolbarUpdater17.2.0 stopped successfully!
Service vToolbarUpdater17.2.0 deleted successfully!
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe moved successfully.
Service vpcnfltr stopped successfully!
Service vpcnfltr deleted successfully!
File system32\DRIVERS\vpcnfltr.sys not found.
Service myueyqsz stopped successfully!
Service myueyqsz deleted successfully!
File C:\Windows\system32\drivers\myueyqsz.sys not found.
Service MRESP50 stopped successfully!
Service MRESP50 deleted successfully!
File C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS not found.
Service MREMP50 stopped successfully!
Service MREMP50 deleted successfully!
File C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS not found.
Service motandroidusb stopped successfully!
Service motandroidusb deleted successfully!
File System32\Drivers\motoandroid.sys not found.
Service catchme stopped successfully!
Service catchme deleted successfully!
File C:\Users\LIVING~1\AppData\Local\Temp\catchme.sys not found.
Registry value HKEY_USERS\S-1-5-21-21828565-3005677120-1819634571-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-21828565-3005677120-1819634571-1001\Software\Microsoft\Internet Explorer\SearchScopes\{442CF095-5D34-49AC-843F-8C19EA99DAFF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{442CF095-5D34-49AC-843F-8C19EA99DAFF}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@nielsen/FirefoxTracker\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\
[email protected] deleted successfully.
File C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\
[email protected] not found.
File C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\4qub62kd.default\extensions\
[email protected] not found.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully.
C:\Users\Living Room\AppData\Local\mtqktr4u2mpa0nks1ulk7p652q8l moved successfully.
C:\ProgramData\mtqktr4u2mpa0nks1ulk7p652q8l moved successfully.
========== COMMANDS ==========
[EMPTYFLASH]
User: Ad
->Flash cache emptied: 234061 bytes
User: Administrator
->Flash cache emptied: 57077 bytes
User: All Users
User: Default
User: Default User
User: Living Room
->Flash cache emptied: 3825 bytes
User: Mcx1-LIVINGROOM-PC
->Flash cache emptied: 0 bytes
User: Mcx1-LIVINGROOM-PC.LivingRoom-PC
->Flash cache emptied: 56475 bytes
User: Mcx2-LIVINGROOM-PC
User: Public
User: TEMP
->Flash cache emptied: 56475 bytes
User: UpdatusUser
->Flash cache emptied: 56502 bytes
User: UpdatusUser.LivingRoom-PC
->Flash cache emptied: 56475 bytes
Total Flash Files Cleaned = 0.00 mb
[EMPTYJAVA]
User: Ad
->Java cache emptied: 15271305 bytes
User: Administrator
->Java cache emptied: 88945 bytes
User: All Users
User: Default
User: Default User
User: Living Room
->Java cache emptied: 134181531 bytes
User: Mcx1-LIVINGROOM-PC
User: Mcx1-LIVINGROOM-PC.LivingRoom-PC
User: Mcx2-LIVINGROOM-PC
User: Public
User: TEMP
User: UpdatusUser
User: UpdatusUser.LivingRoom-PC
Total Java Files Cleaned = 143.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 12232013_003940
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-12-2013 01
Ran by Living Room (administrator) on LIVINGROOM-PC on 23-12-2013 01:04:55
Running from C:\Users\Living Room\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
(IOBit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCAvSvc.exe
(Emsi Software GmbH) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corp.) C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Lexmark International, Inc.) C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
( ) C:\Windows\System32\lxddcoms.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\ProgramData\TVersity\Media Server\MediaServer.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Service.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-Network.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-BlockDevice.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-SharedFolder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\AVG SafeGuard toolbar\vprot.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Skillbrains) C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealUpgrade\realupgrade.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Spotify Ltd) C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
(Maxthon International ltd.) C:\Program Files\Maxthon3\Bin\Maxthon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
() C:\Program Files\Real\RealPlayer\RPDS\Tools\ffmpeg\ffprobe.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\Update\realsched.exe [295512 2013-10-17] (RealNetworks, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [vProt] - C:\Program Files\AVG SafeGuard toolbar\vprot.exe [2471448 2013-12-21] ()
HKCU\...\Run: [LightShot] - C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] ()
HKCU\...\Run: [Spotify] - C:\Users\Living Room\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Advanced SystemCare Ultimate] - C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe [2562368 2013-12-02] (IObit)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Ad\...\Run: [swg] - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Ad\...\Policies\system: [LogonHoursAction] 2
HKU\Ad\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Administrator\...\Policies\system: [LogonHoursAction] 2
HKU\Administrator\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Mcx1-LIVINGROOM-PC.LivingRoom-PC\...\Winlogon: [Shell] C:\Windows\eHome\McrMgr.exe [ 2009-07-13] (Microsoft Corporation) <==== ATTENTION
AppInit_DLLs: C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [ 2013-07-27] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft...=ie&ar=iesearchHKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0A32E1B72A7FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com/igSearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
http://mysearch.avg....fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.m...ash/swflash.cabHandler: linkscanner - No CLSID Value -
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.2.0\ViProtocol.dll (AVG Secure Search)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357
FF Homepage: hxxp://www.google.com/ig
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.2.0\\npsitesafety.dll (AVG Technologies)
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @MagellanGPS.com/CommunicationPlugin - C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 - C:\Program Files\Virtual Earth 3D\ ()
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.6.14 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\Living Room\AppData\Local\Roblox\Versions\version-28a069d7dccb4f92\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: CouponNetwork.com/CMDUniversalCouponPrintActivator - C:\Users\LIVING~1\AppData\Roaming\CATALI~2\NPBCSK~1.DLL (Catalina Marketing Corporation)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: Play Pickle TextLinks - C:\Users\Living Room\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\
[email protected]FF Extension: Geocaching.com GPX Downloader - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\
[email protected]FF Extension: Adblock Plus - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Greasemonkey - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\
[email protected]FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG2012\Firefox4\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM\...\Firefox\Extensions: [{1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
Chrome:
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={3676D089-D678-4B66-9CA8-EB83DE303D18}&mid=d162516e7ece47d6853fd16b2e84a5ca-9a17500a96d428a5cdb8b2643968b9a928fc107f&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=hp
CHR RestoreOnStartup: "hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP&dt=070713", "
https://www.google.com/"CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll No File
CHR Plugin: (AVG Internet Security) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (RealPlayer HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
CHR Extension: (Angry Birds) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0
CHR Extension: (YouTube) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Swiki) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0
CHR Extension: (RealPlayer Downloader) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.1_0
CHR Extension: (Skype Click to Call) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0
CHR Extension: (Fieldrunners) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0
CHR Extension: (AVG SafeGuard) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.2.0.38_1
CHR Extension: ( "name":"Advanced SystemCare Surfing Protection",) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0
CHR Extension: (Google Wallet) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0
CHR Extension: (Gmail) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [gikoeigmfnoggdlhnobkbbbkohiahbko] - C:\Program Files\Swiki\chrome.crx
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM\...\Chrome\Extension: [joflpaafchojilpbjjbebljnikhkdhgf] - C:\ProgramData\wxDfast\joflpaafchojilpbjjbebljnikhkdhgf.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\17.2.0.38\avg.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
========================== Services (Whitelisted) =================
R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [3046224 2012-02-21] (Emsi Software GmbH)
R2 AdvancedSystemCareService7; C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe [886592 2013-11-15] (IObit)
R2 ASCAntivirusSrv; C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe [646976 2013-11-28] (IOBit)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 BingDesktopUpdate; C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-05-13] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-05-13] (BlueStack Systems, Inc.)
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151232 2013-12-02] (IObit)
R2 lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [99248 2007-05-25] (Lexmark International, Inc.)
R2 lxdd_device; C:\Windows\system32\lxddcoms.exe [537520 2007-05-25] ( )
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-23] ()
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
S2 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195400 2012-09-25] (NETGEAR)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14592288 2013-07-27] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-09-23] ()
R2 RealPlayer Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1418336 2013-10-17] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [29320 2013-09-25] ()
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
R2 TVersityMediaServer; C:\ProgramData\TVersity\Media Server\MediaServer.exe [1249064 2011-07-29] ()
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [297440 2011-07-28] ()
==================== Drivers (Whitelisted) ====================
S3 a2acc; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [51632 2011-11-02] (Emsi Software GmbH)
R1 A2DDA; C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [17904 2011-05-19] (Emsi Software GmbH)
R1 a2injectiondriver; C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [34768 2011-11-02] (Emsi Software GmbH)
R1 a2util; C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [11776 2010-05-05] (Emsi Software GmbH)
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1564160 2010-10-11] (Atheros Communications, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-10] (AVG Technologies)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-05-13] (BlueStack Systems)
S3 D-Vitec; C:\Windows\System32\DRIVERS\dvitdcnt.sys [281344 2012-07-26] (D-vitec)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsl3b3e4c40; C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317AE8FF-0FC9-4930-93AB-25652828AF84}\MpKsl3b3e4c40.sys [40392 2013-12-23] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34592 2013-05-14] (NVIDIA Corporation)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21472 2011-07-22] (Windows ® Win 7 DDK provider)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [172416 2010-11-20] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2010-11-20] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [296064 2010-11-20] (Microsoft Corporation)
S3 zghsdiag; C:\Windows\System32\DRIVERS\zghsdiag.sys [106752 2011-01-13] (ZTE Incorporated)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-23 01:05 - 2013-12-23 01:05 - 00004134 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-22 19:12 - 2013-12-23 00:59 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-22 18:48 - 2013-12-22 18:48 - 00000000 ____D C:\Program Files\Speccy
2013-12-22 18:32 - 2013-12-22 18:32 - 00012657 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-22 17:39 - 2013-12-22 17:39 - 00002430 _____ C:\VEW.txt
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:36 - 2013-12-22 12:37 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:35 - 2013-12-23 01:04 - 00031258 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-21 20:51 - 2013-12-21 20:51 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 20:48 - 2013-12-21 20:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\Users\Living Room\AppData\Local\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:24 - 2013-12-21 08:25 - 00003743 _____ C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-21 08:24 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-23 00:56 - 00000504 _____ C:\Windows\setupact.log
2013-12-21 00:37 - 2013-12-22 13:10 - 00011806 _____ C:\Windows\PFRO.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:28 - 2013-12-21 00:32 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-18 23:17 - 2013-12-18 23:43 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:27 - 2013-12-18 22:32 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:25 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:03 - 2013-12-18 21:13 - 00002192 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001131 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 20:54 - 2013-12-18 20:56 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:52 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 14:51 - 2013-12-18 15:03 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:43 - 2013-12-18 14:44 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-15 23:54 - 2013-12-16 02:06 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:53 - 2013-12-23 00:58 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-15 23:51 - 2013-12-15 23:52 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:09 - 2013-12-15 16:14 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 09:22 - 2013-12-14 09:23 - 00069195 _____ C:\Users\Living Room\Desktop\logs.odt
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:20 - 2013-12-11 17:31 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 19:42 - 2013-12-10 19:42 - 00000848 _____ C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2011-07-22 10:35 - 00021472 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\SCMNdisP.sys
2013-12-10 19:42 - 2008-05-15 02:28 - 00020384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\jswpslwf.sys
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:08 - 2013-12-10 08:12 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:13 - 2013-12-18 22:14 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-10 07:12 - 2013-12-22 12:55 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 22:00 - 2013-06-27 18:05 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2013-12-09 21:47 - 2013-12-22 12:21 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\ProductData
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\IObit
2013-12-09 21:40 - 2013-12-18 21:02 - 00000000 ____D C:\Program Files\IObit
2013-12-09 21:40 - 2013-12-09 21:41 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:38 - 2013-12-09 21:39 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:25 - 2013-12-09 17:28 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 10:53 - 2013-12-09 11:09 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-05 23:19 - 2013-12-05 23:24 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-11-30 20:59 - 2013-11-30 20:59 - 00000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url
==================== One Month Modified Files and Folders =======
2013-12-23 01:05 - 2013-12-23 01:05 - 00004134 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 01:05 - 2013-12-22 12:35 - 00031258 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-23 01:00 - 2013-06-06 09:27 - 01308275 _____ C:\Windows\WindowsUpdate.log
2013-12-23 00:59 - 2013-12-22 19:12 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-23 00:58 - 2013-12-15 23:53 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-23 00:57 - 2011-03-22 09:06 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-23 00:56 - 2013-12-21 00:37 - 00000504 _____ C:\Windows\setupact.log
2013-12-23 00:56 - 2011-06-04 21:09 - 00586051 _____ C:\Windows\system32\TVersityMediaServer.log
2013-12-23 00:56 - 2011-03-08 03:19 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-23 00:56 - 2009-07-13 23:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-23 00:21 - 2011-03-22 09:06 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-23 00:06 - 2013-11-01 09:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-22 21:43 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job
2013-12-22 21:37 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-sys.job
2013-12-22 19:02 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-22 19:02 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-22 18:49 - 2013-08-23 10:58 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Nitro PDF
2013-12-22 18:48 - 2013-12-22 18:48 - 00000000 ____D C:\Program Files\Speccy
2013-12-22 18:32 - 2013-12-22 18:32 - 00012657 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-22 17:39 - 2013-12-22 17:39 - 00002430 _____ C:\VEW.txt
2013-12-22 17:22 - 2011-03-07 07:01 - 00000000 ____D C:\ProgramData\MFAData
2013-12-22 16:34 - 2012-01-17 23:35 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\.minecraft
2013-12-22 16:33 - 2013-01-08 18:47 - 00000000 ____D C:\Users\Living Room\AppData\Local\CrashDumps
2013-12-22 13:10 - 2013-12-21 00:37 - 00011806 _____ C:\Windows\PFRO.log
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:55 - 2013-12-10 07:12 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-22 12:55 - 2013-06-06 08:05 - 00000000 ____D C:\Users\Administrator
2013-12-22 12:55 - 2012-05-13 00:21 - 00000000 ____D C:\Users\UpdatusUser.LivingRoom-PC
2013-12-22 12:55 - 2012-02-18 01:19 - 00000000 ____D C:\Users\Mcx1-LIVINGROOM-PC.LivingRoom-PC
2013-12-22 12:55 - 2011-03-18 12:54 - 00000000 ____D C:\Users\Ad
2013-12-22 12:55 - 2011-03-06 19:47 - 00000000 ____D C:\Users\Living Room
2013-12-22 12:37 - 2013-12-22 12:36 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-22 12:21 - 2013-12-09 21:47 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-21 20:51 - 2013-12-21 20:51 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-21 20:51 - 2012-07-18 00:01 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-21 20:49 - 2013-12-21 20:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\Users\Living Room\AppData\Local\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:25 - 2013-12-21 08:24 - 00003743 _____ C:\Program Files\Mozilla Firefoxsafeguard-secure-search.xml
2013-12-21 08:25 - 2013-12-21 08:24 - 00000000 ____D C:\ProgramData\AVG SafeGuard toolbar
2013-12-21 08:25 - 2013-11-15 16:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2013-12-21 08:24 - 2013-12-21 08:24 - 00000000 ____D C:\Program Files\AVG SafeGuard toolbar
2013-12-21 07:45 - 2011-03-06 19:50 - 00779306 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:37 - 2012-08-20 19:42 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-21 00:32 - 2013-12-21 00:28 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:32 - 2013-03-14 16:28 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Uniblue
2013-12-21 00:31 - 2013-03-14 16:28 - 00000000 ____D C:\Program Files\Uniblue
2013-12-21 00:26 - 2013-08-27 20:58 - 05155033 _____ (Swearware) C:\Users\Living Room\Downloads\ComboFix.exe
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-20 14:32 - 2011-03-06 22:00 - 00000000 ____D C:\Windows\Panther
2013-12-20 11:36 - 2013-09-07 13:39 - 00001371 _____ C:\Users\Living Room\Desktop\ROBLOX Studio 2013.lnk
2013-12-20 11:36 - 2013-09-05 16:52 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2013-12-19 01:20 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\rescache
2013-12-19 01:05 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-12-19 00:38 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-12-18 23:43 - 2013-12-18 23:17 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:36 - 2012-01-02 21:18 - 00001945 _____ C:\Windows\epplauncher.mif
2013-12-18 22:35 - 2013-07-07 18:41 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-18 22:32 - 2013-12-18 22:27 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:14 - 2013-12-10 07:13 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-18 21:27 - 2011-09-02 08:27 - 00000000 ____D C:\Windows\Minidump
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:13 - 2013-12-18 21:03 - 00002192 _____ C:\Users\Public\Desktop\Advanced SystemCare Ultimate 7.lnk
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\ProductData
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\IObit
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00001131 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 21:02 - 2013-12-09 21:40 - 00000000 ____D C:\Program Files\IObit
2013-12-18 21:01 - 2013-11-22 12:39 - 00000138 _____ C:\Users\Living Room\Desktop\Xmas Turkey Orders.txt
2013-12-18 20:56 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:54 - 2013-12-18 20:52 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 15:03 - 2013-12-18 14:51 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:44 - 2013-12-18 14:43 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-18 14:44 - 2013-08-26 15:59 - 00000000 ____D C:\Users\Living Room\Desktop\homework
2013-12-18 14:43 - 2013-10-06 17:13 - 00000000 ____D C:\Users\Living Room\Desktop\Tyler stuff
2013-12-18 14:28 - 2011-05-29 11:46 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\vlc
2013-12-16 02:06 - 2013-12-15 23:54 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:52 - 2013-12-15 23:51 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:14 - 2013-12-15 16:09 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 09:23 - 2013-12-14 09:22 - 00069195 _____ C:\Users\Living Room\Desktop\logs.odt
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-14 02:23 - 2011-03-22 09:06 - 00000000 ____D C:\Program Files\Google
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:31 - 2013-12-11 17:20 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 23:21 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\NDF
2013-12-10 22:06 - 2013-11-01 09:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-12-10 22:06 - 2013-11-01 09:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-12-10 19:42 - 2013-12-10 19:42 - 00000848 _____ C:\Users\Public\Desktop\NETGEAR WNA1100 Genie.lnk
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2012-01-16 19:47 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:12 - 2013-12-10 08:08 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:28 - 2011-05-14 12:59 - 00007607 _____ C:\Users\Living Room\AppData\Local\resmon.resmoncfg
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:19 - 2011-05-15 20:54 - 00000000 ___RD C:\Users\Living Room\Virtual Machines
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:05 - 2011-10-02 08:16 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:41 - 2013-12-09 21:40 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:41 - 2011-06-03 13:10 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Apple Computer
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:39 - 2013-12-09 21:38 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:28 - 2013-12-09 17:25 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 11:09 - 2013-12-09 10:53 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-08 20:52 - 2013-09-12 14:49 - 00003728 _____ C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2013-12-05 23:24 - 2013-12-05 23:19 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-12-01 14:42 - 2011-03-07 23:25 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-30 20:59 - 2013-11-30 20:59 - 00000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-30 20:59 - 2012-05-01 12:46 - 00000000 ____D C:\Program Files\CCleaner
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url
Files to move or delete:
====================
C:\Users\Ad\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_loginapplet_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE1.dat
C:\Users\Living Room\random.dat
Some content of TEMP:
====================
C:\Users\Living Room\AppData\Local\temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-20 02:16
==================== End Of Log ============================
2013-12-23 07:18:35, Info CSI 00000009 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:35, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:38, Info CSI 0000000c [SR] Verify complete
2013-12-23 07:18:39, Info CSI 0000000d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:39, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:42, Info CSI 00000010 [SR] Verify complete
2013-12-23 07:18:42, Info CSI 00000011 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:42, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:45, Info CSI 00000014 [SR] Verify complete
2013-12-23 07:18:45, Info CSI 00000015 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:45, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:47, Info CSI 00000018 [SR] Verify complete
2013-12-23 07:18:47, Info CSI 00000019 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:47, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:48, Info CSI 0000001c [SR] Verify complete
2013-12-23 07:18:48, Info CSI 0000001d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:48, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:49, Info CSI 00000020 [SR] Verify complete
2013-12-23 07:18:49, Info CSI 00000021 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:49, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:50, Info CSI 00000024 [SR] Verify complete
2013-12-23 07:18:50, Info CSI 00000025 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:50, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:52, Info CSI 00000028 [SR] Verify complete
2013-12-23 07:18:53, Info CSI 00000029 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:53, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:55, Info CSI 0000002c [SR] Verify complete
2013-12-23 07:18:55, Info CSI 0000002d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:55, Info CSI 0000002e [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:57, Info CSI 00000030 [SR] Verify complete
2013-12-23 07:18:57, Info CSI 00000031 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:57, Info CSI 00000032 [SR] Beginning Verify and Repair transaction
2013-12-23 07:18:58, Info CSI 00000034 [SR] Verify complete
2013-12-23 07:18:59, Info CSI 00000035 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:18:59, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:01, Info CSI 00000038 [SR] Verify complete
2013-12-23 07:19:01, Info CSI 00000039 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:01, Info CSI 0000003a [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:04, Info CSI 0000003c [SR] Verify complete
2013-12-23 07:19:04, Info CSI 0000003d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:04, Info CSI 0000003e [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:06, Info CSI 00000040 [SR] Verify complete
2013-12-23 07:19:06, Info CSI 00000041 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:06, Info CSI 00000042 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:09, Info CSI 00000044 [SR] Verify complete
2013-12-23 07:19:09, Info CSI 00000045 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:09, Info CSI 00000046 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:14, Info CSI 00000049 [SR] Verify complete
2013-12-23 07:19:14, Info CSI 0000004a [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:14, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:17, Info CSI 0000004f [SR] Verify complete
2013-12-23 07:19:17, Info CSI 00000050 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:17, Info CSI 00000051 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:20, Info CSI 00000054 [SR] Verify complete
2013-12-23 07:19:20, Info CSI 00000055 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:20, Info CSI 00000056 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:23, Info CSI 0000005a [SR] Verify complete
2013-12-23 07:19:23, Info CSI 0000005b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:23, Info CSI 0000005c [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:30, Info CSI 00000066 [SR] Verify complete
2013-12-23 07:19:30, Info CSI 00000067 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:30, Info CSI 00000068 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:34, Info CSI 0000006a [SR] Verify complete
2013-12-23 07:19:34, Info CSI 0000006b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:34, Info CSI 0000006c [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:38, Info CSI 0000006e [SR] Verify complete
2013-12-23 07:19:38, Info CSI 0000006f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:38, Info CSI 00000070 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:46, Info CSI 00000072 [SR] Verify complete
2013-12-23 07:19:46, Info CSI 00000073 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:46, Info CSI 00000074 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:49, Info CSI 00000076 [SR] Verify complete
2013-12-23 07:19:50, Info CSI 00000077 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:50, Info CSI 00000078 [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:53, Info CSI 0000007a [SR] Verify complete
2013-12-23 07:19:53, Info CSI 0000007b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:53, Info CSI 0000007c [SR] Beginning Verify and Repair transaction
2013-12-23 07:19:56, Info CSI 0000007e [SR] Verify complete
2013-12-23 07:19:57, Info CSI 0000007f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:19:57, Info CSI 00000080 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:03, Info CSI 00000084 [SR] Verify complete
2013-12-23 07:20:03, Info CSI 00000085 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:03, Info CSI 00000086 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:12, Info CSI 00000088 [SR] Verify complete
2013-12-23 07:20:13, Info CSI 00000089 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:13, Info CSI 0000008a [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:21, Info CSI 0000008c [SR] Verify complete
2013-12-23 07:20:22, Info CSI 0000008d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:22, Info CSI 0000008e [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:30, Info CSI 00000090 [SR] Verify complete
2013-12-23 07:20:30, Info CSI 00000091 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:30, Info CSI 00000092 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:33, Info CSI 00000094 [SR] Verify complete
2013-12-23 07:20:33, Info CSI 00000095 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:33, Info CSI 00000096 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:35, Info CSI 00000098 [SR] Verify complete
2013-12-23 07:20:35, Info CSI 00000099 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:35, Info CSI 0000009a [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:36, Info CSI 0000009c [SR] Verify complete
2013-12-23 07:20:36, Info CSI 0000009d [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:36, Info CSI 0000009e [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:41, Info CSI 000000a4 [SR] Verify complete
2013-12-23 07:20:41, Info CSI 000000a5 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:41, Info CSI 000000a6 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:46, Info CSI 000000c0 [SR] Verify complete
2013-12-23 07:20:46, Info CSI 000000c1 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:46, Info CSI 000000c2 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:49, Info CSI 000000c4 [SR] Verify complete
2013-12-23 07:20:49, Info CSI 000000c5 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:49, Info CSI 000000c6 [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:52, Info CSI 000000c8 [SR] Verify complete
2013-12-23 07:20:53, Info CSI 000000c9 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:53, Info CSI 000000ca [SR] Beginning Verify and Repair transaction
2013-12-23 07:20:55, Info CSI 000000cc [SR] Verify complete
2013-12-23 07:20:56, Info CSI 000000cd [SR] Verifying 100 (0x00000064) components
2013-12-23 07:20:56, Info CSI 000000ce [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:01, Info CSI 000000d0 [SR] Verify complete
2013-12-23 07:21:02, Info CSI 000000d1 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:02, Info CSI 000000d2 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:07, Info CSI 000000d5 [SR] Verify complete
2013-12-23 07:21:07, Info CSI 000000d6 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:07, Info CSI 000000d7 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:09, Info CSI 000000d9 [SR] Verify complete
2013-12-23 07:21:09, Info CSI 000000da [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:09, Info CSI 000000db [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:12, Info CSI 000000dd [SR] Verify complete
2013-12-23 07:21:12, Info CSI 000000de [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:12, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:18, Info CSI 000000e1 [SR] Verify complete
2013-12-23 07:21:19, Info CSI 000000e2 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:19, Info CSI 000000e3 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:24, Info CSI 000000e5 [SR] Verify complete
2013-12-23 07:21:25, Info CSI 000000e6 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:25, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:30, Info CSI 000000e9 [SR] Verify complete
2013-12-23 07:21:30, Info CSI 000000ea [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:30, Info CSI 000000eb [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:39, Info CSI 000000fd [SR] Verify complete
2013-12-23 07:21:39, Info CSI 000000fe [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:39, Info CSI 000000ff [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:45, Info CSI 00000115 [SR] Verify complete
2013-12-23 07:21:45, Info CSI 00000116 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:45, Info CSI 00000117 [SR] Beginning Verify and Repair transaction
2013-12-23 07:21:52, Info CSI 00000119 [SR] Verify complete
2013-12-23 07:21:52, Info CSI 0000011a [SR] Verifying 100 (0x00000064) components
2013-12-23 07:21:52, Info CSI 0000011b [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:07, Info CSI 0000011d [SR] Verify complete
2013-12-23 07:22:07, Info CSI 0000011e [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:07, Info CSI 0000011f [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:18, Info CSI 00000122 [SR] Verify complete
2013-12-23 07:22:18, Info CSI 00000123 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:18, Info CSI 00000124 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:26, Info CSI 00000126 [SR] Verify complete
2013-12-23 07:22:26, Info CSI 00000127 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:26, Info CSI 00000128 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:30, Info CSI 0000012a [SR] Verify complete
2013-12-23 07:22:31, Info CSI 0000012b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:31, Info CSI 0000012c [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:35, Info CSI 0000012e [SR] Verify complete
2013-12-23 07:22:36, Info CSI 0000012f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:36, Info CSI 00000130 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:40, Info CSI 00000132 [SR] Verify complete
2013-12-23 07:22:40, Info CSI 00000133 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:40, Info CSI 00000134 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:45, Info CSI 00000137 [SR] Verify complete
2013-12-23 07:22:45, Info CSI 00000138 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:45, Info CSI 00000139 [SR] Beginning Verify and Repair transaction
2013-12-23 07:22:56, Info CSI 0000013b [SR] Verify complete
2013-12-23 07:22:56, Info CSI 0000013c [SR] Verifying 100 (0x00000064) components
2013-12-23 07:22:56, Info CSI 0000013d [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:03, Info CSI 00000140 [SR] Verify complete
2013-12-23 07:23:03, Info CSI 00000141 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:03, Info CSI 00000142 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:12, Info CSI 00000144 [SR] Verify complete
2013-12-23 07:23:12, Info CSI 00000145 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:12, Info CSI 00000146 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:19, Info CSI 00000148 [SR] Verify complete
2013-12-23 07:23:19, Info CSI 00000149 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:19, Info CSI 0000014a [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:34, Info CSI 0000014d [SR] Verify complete
2013-12-23 07:23:34, Info CSI 0000014e [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:34, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:41, Info CSI 00000151 [SR] Verify complete
2013-12-23 07:23:41, Info CSI 00000152 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:41, Info CSI 00000153 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:46, Info CSI 00000155 [SR] Verify complete
2013-12-23 07:23:46, Info CSI 00000156 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:46, Info CSI 00000157 [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:52, Info CSI 00000159 [SR] Verify complete
2013-12-23 07:23:52, Info CSI 0000015a [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:52, Info CSI 0000015b [SR] Beginning Verify and Repair transaction
2013-12-23 07:23:58, Info CSI 0000015e [SR] Verify complete
2013-12-23 07:23:58, Info CSI 0000015f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:23:58, Info CSI 00000160 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:10, Info CSI 00000162 [SR] Verify complete
2013-12-23 07:24:10, Info CSI 00000163 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:10, Info CSI 00000164 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:17, Info CSI 00000166 [SR] Verify complete
2013-12-23 07:24:17, Info CSI 00000167 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:17, Info CSI 00000168 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:23, Info CSI 0000016a [SR] Verify complete
2013-12-23 07:24:23, Info CSI 0000016b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:23, Info CSI 0000016c [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:28, Info CSI 0000016e [SR] Verify complete
2013-12-23 07:24:28, Info CSI 0000016f [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:28, Info CSI 00000170 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:30, Info CSI 00000172 [SR] Verify complete
2013-12-23 07:24:31, Info CSI 00000173 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:31, Info CSI 00000174 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:35, Info CSI 00000175 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:24:35, Info CSI 00000176 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:24:35, Info CSI 00000177 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 07:24:35, Info CSI 00000178 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 07:24:36, Info CSI 0000017a [SR] Verify complete
2013-12-23 07:24:36, Info CSI 0000017b [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:36, Info CSI 0000017c [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:43, Info CSI 0000017f [SR] Verify complete
2013-12-23 07:24:43, Info CSI 00000180 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:43, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:50, Info CSI 00000183 [SR] Verify complete
2013-12-23 07:24:50, Info CSI 00000184 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:50, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2013-12-23 07:24:56, Info CSI 00000187 [SR] Verify complete
2013-12-23 07:24:56, Info CSI 00000188 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:24:56, Info CSI 00000189 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:04, Info CSI 0000018b [SR] Verify complete
2013-12-23 07:25:04, Info CSI 0000018c [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:04, Info CSI 0000018d [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:10, Info CSI 0000018f [SR] Verify complete
2013-12-23 07:25:10, Info CSI 00000190 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:10, Info CSI 00000191 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:14, Info CSI 00000193 [SR] Verify complete
2013-12-23 07:25:15, Info CSI 00000194 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:15, Info CSI 00000195 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:19, Info CSI 00000197 [SR] Verify complete
2013-12-23 07:25:19, Info CSI 00000198 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:19, Info CSI 00000199 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:28, Info CSI 0000019b [SR] Verify complete
2013-12-23 07:25:29, Info CSI 0000019c [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:29, Info CSI 0000019d [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:35, Info CSI 0000019f [SR] Verify complete
2013-12-23 07:25:36, Info CSI 000001a0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:36, Info CSI 000001a1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:40, Info CSI 000001a3 [SR] Verify complete
2013-12-23 07:25:40, Info CSI 000001a4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:40, Info CSI 000001a5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:43, Info CSI 000001a7 [SR] Verify complete
2013-12-23 07:25:43, Info CSI 000001a8 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:43, Info CSI 000001a9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:25:54, Info CSI 000001ab [SR] Verify complete
2013-12-23 07:25:54, Info CSI 000001ac [SR] Verifying 100 (0x00000064) components
2013-12-23 07:25:54, Info CSI 000001ad [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:20, Info CSI 000001af [SR] Verify complete
2013-12-23 07:26:21, Info CSI 000001b0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:21, Info CSI 000001b1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:28, Info CSI 000001b3 [SR] Verify complete
2013-12-23 07:26:29, Info CSI 000001b4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:29, Info CSI 000001b5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:36, Info CSI 000001b7 [SR] Verify complete
2013-12-23 07:26:36, Info CSI 000001b8 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:36, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:40, Info CSI 000001bb [SR] Verify complete
2013-12-23 07:26:40, Info CSI 000001bc [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:40, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:45, Info CSI 000001bf [SR] Verify complete
2013-12-23 07:26:45, Info CSI 000001c0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:45, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:49, Info CSI 000001c3 [SR] Verify complete
2013-12-23 07:26:49, Info CSI 000001c4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:49, Info CSI 000001c5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:53, Info CSI 000001c7 [SR] Verify complete
2013-12-23 07:26:53, Info CSI 000001c8 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:53, Info CSI 000001c9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:26:59, Info CSI 000001cb [SR] Verify complete
2013-12-23 07:26:59, Info CSI 000001cc [SR] Verifying 100 (0x00000064) components
2013-12-23 07:26:59, Info CSI 000001cd [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:00, Info CSI 000001cf [SR] Verify complete
2013-12-23 07:27:01, Info CSI 000001d0 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:27:01, Info CSI 000001d1 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:03, Info CSI 000001d3 [SR] Verify complete
2013-12-23 07:27:04, Info CSI 000001d4 [SR] Verifying 100 (0x00000064) components
2013-12-23 07:27:04, Info CSI 000001d5 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:08, Info CSI 000001d7 [SR] Verify complete
2013-12-23 07:27:09, Info CSI 000001d8 [SR] Verifying 46 (0x0000002e) components
2013-12-23 07:27:09, Info CSI 000001d9 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:11, Info CSI 000001db [SR] Verify complete
2013-12-23 07:27:11, Info CSI 000001dc [SR] Repairing 1 components
2013-12-23 07:27:11, Info CSI 000001dd [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:11, Info CSI 000001de [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001df [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001e0 [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 07:27:11, Info CSI 000001e1 [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 07:27:11, Info CSI 000001e3 [SR] Repair complete
2013-12-23 07:27:11, Info CSI 000001e4 [SR] Committing transaction
2013-12-23 07:27:11, Info CSI 000001e5 [SR] Cannot commit interactively, there are boot critical components being repaired
2013-12-23 07:27:11, Info CSI 000001e6 [SR] Repairing 1 components
2013-12-23 07:27:11, Info CSI 000001e7 [SR] Beginning Verify and Repair transaction
2013-12-23 07:27:11, Info CSI 000001e8 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001e9 [SR] Cannot repair member file [l:24{12}]"vpcnfltr.sys" of Microsoft-Windows-VirtualPC-VMNet, Version = 7.1.7601.17514, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, file is missing
2013-12-23 07:27:11, Info CSI 000001ea [SR] This component was referenced by [l:164{82}]"Microsoft-Windows-VirtualPC-Package~31bf3856ad364e35~x86~~7.1.7601.17514.VirtualPC"
2013-12-23 07:27:11, Info CSI 000001eb [SR] Could not reproject corrupted file [ml:520{260},l:62{31}]"\??\C:\Windows\System32\drivers"\[l:24{12}]"vpcnfltr.sys"; source file in store is also corrupted
2013-12-23 07:27:11, Info CSI 000001ed [SR] Repair complete
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 23/12/2013 7:33:27 AM
Note: All dates below are in the format dd/mm/yyyy
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 23/12/2013 11:37:57 AM
Type: Error Category: 0
Event: 7034 Source: Service Control Manager
The LiveUpdate service terminated unexpectedly. It has done this 1 time(s).
Log: 'System' Date/Time: 23/12/2013 6:32:20 AM
Type: Error Category: 0
Event: 7000 Source: Service Control Manager
The NETGEARGenieDaemon service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
Log: 'System' Date/Time: 23/12/2013 6:32:20 AM
Type: Error Category: 0
Event: 7009 Source: Service Control Manager
A timeout was reached (30000 milliseconds) while waiting for the NETGEARGenieDaemon service to connect.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 23/12/2013 6:32:36 AM
Type: Warning Category: 212
Event: 219 Source: Microsoft-Windows-Kernel-PnP
The driver \Driver\WUDFRd failed to load for the device WpdBusEnumRoot\UMB\2&37c186b&0&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_KINGSTON&PROD_DATATRAVELER_G3&REV_PMAP#0019B927C9F6EB50C3B10073&0#.
Log: 'System' Date/Time: 23/12/2013 6:17:40 AM
Type: Warning Category: 0
Event: 4001 Source: Microsoft-Windows-WLAN-AutoConfig
WLAN AutoConfig service has successfully stopped.
Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 23/12/2013 7:35:23 AM
Note: All dates below are in the format dd/mm/yyyy
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 23/12/2013 6:32:25 AM
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.
Log: 'Application' Date/Time: 23/12/2013 6:32:21 AM
Type: Error Category: 0
Event: 1 Source: NvStreamSvc
The event description cannot be found.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'Application' Date/Time: 23/12/2013 11:38:06 AM
Type: Warning Category: 3
Event: 3036 Source: Microsoft-Windows-Search
The content source <csc://{S-1-5-21-21828565-3005677120-1819634571-1001}/> cannot be accessed.
Context: Application, SystemIndex Catalog
Details:
The object was not found. (HRESULT : 0x80041201) (0x80041201)
Log: 'Application' Date/Time: 23/12/2013 6:17:21 AM
Type: Warning Category: 0
Event: 1530 Source: Microsoft-Windows-User Profiles Service
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 2 user registry handles leaked from \Registry\User\S-1-5-21-21828565-3005677120-1819634571-1001:
Process 3440 (\Device\HarddiskVolume2\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe) has opened key \REGISTRY\USER\S-1-5-21-21828565-3005677120-1819634571-1001\Software\RealNetworks\RealJukebox\1.0\Preferences\WatchFolders
Process 3440 (\Device\HarddiskVolume2\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe) has opened key \REGISTRY\USER\S-1-5-21-21828565-3005677120-1819634571-1001\Software\RealNetworks\RealJukebox\1.0\Preferences\WatchFolders
Process CPU Private Bytes Working Set PID Description Company Name Verified Signer
System Idle Process 72.71 0 K 24 K 0
wmpnetwk.exe 17.18 41,508 K 42,336 K 5732 Windows Media Player Network Sharing Service Microsoft Corporation (Verified) Microsoft Windows
procexp.exe 3.52 33,216 K 43,608 K 25432 Sysinternals Process Explorer Sysinternals - www.sysinternals.com (Verified) Microsoft Corporation
audiodg.exe 1.64 16,388 K 10,744 K 1624 Windows Audio Device Graph Isolation Microsoft Corporation (Verified) Microsoft Windows
Interrupts 1.31 0 K 0 K n/a Hardware Interrupts and DPCs
lsass.exe 1.08 4,332 K 7,764 K 780 Local Security Authority Process Microsoft Corporation (Verified) Microsoft Windows
System 0.56 324 K 1,044 K 4
HD-Service.exe 0.43 14,364 K 7,288 K 3928 BlueStacks Service BlueStack Systems, Inc. (Verified) Bluestack Systems
dwm.exe 0.35 28,540 K 26,732 K 21352 Desktop Window Manager Microsoft Corporation (Verified) Microsoft Windows
Monitor.exe 0.26 11,704 K 3,096 K 21324 Advanced SystemCare Ultimate Monitor IObit (Verified) IObit Information Technology
svchost.exe 0.16 43,532 K 44,256 K 1464 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
vprot.exe 0.15 16,368 K 25,456 K 21112 VProtect Application (Official) (Verified) AVG Technologies
HD-Network.exe 0.12 5,132 K 5,252 K 2632 BlueStacks Network Helper Process BlueStack Systems (Verified) Bluestack Systems
csrss.exe 0.07 1,824 K 13,096 K 680 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
explorer.exe 0.07 70,940 K 89,960 K 21312 Windows Explorer Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.06 16,796 K 13,408 K 1404 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
recordingmanager.exe 0.05 6,932 K 14,604 K 21516 RealDownloader RealNetworks, Inc. (Verified) RealNetworks
svchost.exe 0.04 6,560 K 7,880 K 2336 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
rpdsvc.exe 0.04 35,904 K 16,428 K 3184 RealPlayer Desktop Service RealNetworks, Inc. (Verified) RealNetworks
WifiSvc.exe 0.03 2,024 K 3,468 K 3896 Wifi Service (Verified) NETGEAR
svchost.exe 0.02 3,572 K 4,356 K 1320 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 0.02 29,288 K 30,760 K 1548 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
nvstreamsvc.exe 0.02 3,960 K 9,160 K 22488 NVIDIA Streamer Service NVIDIA Corporation (Verified) NVIDIA Corporation
ASCService.exe 0.01 172,880 K 138,376 K 980 Advanced SystemCare Service IObit (Verified) IObit Information Technology
WNA1100.exe 0.01 12,308 K 29,684 K 22088 Netgear (Verified) NETGEAR
firefox.exe 0.01 227,116 K 239,356 K 25324 Firefox Mozilla Corporation (Verified) Mozilla Corporation
c2c_service.exe 0.01 1,992 K 2,020 K 3316 Skype C2C Service Skype Technologies S.A. (Verified) Skype Technologies SA
avgidsagent.exe 0.01 15,608 K 17,548 K 2148 AVG Identity Protection Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
SearchIndexer.exe < 0.01 36,860 K 21,076 K 4180 Microsoft Windows Search Indexer Microsoft Corporation (Verified) Microsoft Windows
avgwdsvc.exe < 0.01 8,432 K 9,820 K 2172 AVG Watchdog Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
HD-SharedFolder.exe < 0.01 2,612 K 3,644 K 3224 BlueStacks Shared Folder Helper Process BlueStack Systems (Verified) Bluestack Systems
AppleMobileDeviceService.exe < 0.01 2,464 K 4,032 K 2104 MobileDeviceService Apple Inc. (Verified) Apple Inc.
MediaServer.exe < 0.01 18,136 K 4,200 K 3708 (Verified) TVersity Inc.
svchost.exe < 0.01 8,924 K 12,168 K 1512 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe < 0.01 3,084 K 3,560 K 5276 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
daemonu.exe < 0.01 6,008 K 6,660 K 3088 NVIDIA Settings Update Manager NVIDIA Corporation (Verified) NVIDIA Corporation
csrss.exe < 0.01 1,696 K 5,488 K 616 Client Server Runtime Process Microsoft Corporation (Verified) Microsoft Windows
taskhost.exe < 0.01 13,032 K 14,144 K 20748 Host Process for Windows Tasks Microsoft Corporation (Verified) Microsoft Windows
conhost.exe < 0.01 548 K 800 K 3460 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
avgrsx.exe < 0.01 39,208 K 42,316 K 356 AVG Resident Shield Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
svchost.exe < 0.01 14,000 K 9,804 K 1840 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
mbamgui.exe < 0.01 3,096 K 7,868 K 19048 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
svchost.exe < 0.01 3,128 K 4,556 K 924 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
lsm.exe < 0.01 1,808 K 2,868 K 792 Local Session Manager Service Microsoft Corporation (Verified) Microsoft Windows
SearchProtocolHost.exe < 0.01 2,056 K 6,472 K 24704 Microsoft Windows Search Protocol Host Microsoft Corporation (Verified) Microsoft Windows
WLIDSVC.EXE < 0.01 4,972 K 9,480 K 3856 Microsoft® Windows Live ID Service Microsoft Corp. (Verified) Microsoft Corporation
BingDesktopUpdater.exe < 0.01 3,352 K 2,976 K 2192 Bing Desktop updating service Microsoft Corp. (Verified) Microsoft Corporation
conhost.exe < 0.01 548 K 796 K 1708 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe < 0.01 548 K 808 K 2400 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
HD-LogRotatorService.exe < 0.01 11,140 K 3,816 K 2252 BlueStacks Log Rotator Service BlueStack Systems, Inc. (Verified) Bluestack Systems
nvvsvc.exe < 0.01 3,440 K 6,784 K 1920 NVIDIA Driver Helper Service, Version 320.49 NVIDIA Corporation (Verified) NVIDIA Corporation
lxddserv.exe < 0.01 644 K 1,040 K 2516 Lexmark Connect Service Executable Lexmark International, Inc. (Verified) Microsoft Windows Hardware Compatibility Publisher
avgui.exe < 0.01 5,612 K 19,024 K 21556 AVG User Interface AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
WUDFHost.exe 1,404 K 2,840 K 4520 Windows Driver Foundation - User-mode Driver Framework Host Process Microsoft Corporation (Verified) Microsoft Windows
wuauclt.exe 1,716 K 5,756 K 23876 Windows Update Microsoft Corporation (Verified) Microsoft Windows
WmiPrvSE.exe 1,948 K 4,756 K 24936 WMI Provider Host Microsoft Corporation (Verified) Microsoft Windows
WLIDSVCM.EXE 656 K 992 K 4068 Microsoft® Windows Live ID Service Monitor Microsoft Corp. (Verified) Microsoft Corporation
winlogon.exe 1,764 K 3,548 K 768 Windows Logon Application Microsoft Corporation (Verified) Microsoft Windows
wininit.exe 960 K 1,008 K 688 Windows Start-Up Application Microsoft Corporation (Verified) Microsoft Windows
TrustedInstaller.exe 7,664 K 13,132 K 23464 Windows Modules Installer Microsoft Corporation (Verified) Microsoft Windows
taskeng.exe 1,524 K 4,764 K 21044 Task Scheduler Engine Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 9,336 K 8,440 K 108 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 2,032 K 3,472 K 1724 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 1,948 K 1,516 K 6020 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 3,216 K 8,196 K 22756 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 660 K 1,216 K 3128 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
svchost.exe 776 K 948 K 2732 Host Process for Windows Services Microsoft Corporation (Verified) Microsoft Windows
SpotifyWebHelper.exe 1,948 K 5,992 K 21368 SpotifyWebHelper Spotify Ltd (Verified) Spotify AB
spoolsv.exe 7,208 K 8,144 K 2020 Spooler SubSystem App Microsoft Corporation (Verified) Microsoft Windows
smss.exe 260 K 596 K 272 Windows Session Manager Microsoft Corporation (Verified) Microsoft Windows
services.exe 5,300 K 6,564 K 736 Services and Controller app Microsoft Corporation (Verified) Microsoft Windows
SearchFilterHost.exe 1,616 K 4,424 K 25988 Microsoft Windows Search Filter Host Microsoft Corporation (Verified) Microsoft Windows
rpsystray.exe 1,528 K 5,072 K 21844 RealPlayer Cloud Service UI RealNetworks, Inc. (Verified) RealNetworks
rndlresolversvc.exe 740 K 1,256 K 3148 (Verified) RealNetworks
realsched.exe 1,940 K 260 K 20884 RealNetworks Scheduler RealNetworks, Inc. (Verified) RealNetworks
RealPlayerUpdateSvc.exe 1,840 K 2,528 K 3228 (Verified) RealNetworks
nvxdsync.exe 4,832 K 9,820 K 1912 NVIDIA User Experience Driver Component NVIDIA Corporation (Verified) NVIDIA Corporation
nvvsvc.exe 1,772 K 3,512 K 1248 NVIDIA Driver Helper Service, Version 320.49 NVIDIA Corporation (Verified) NVIDIA Corporation
nvtray.exe 4,132 K 10,384 K 22064 NVIDIA Settings NVIDIA Corporation (Verified) NVIDIA Corporation
NvTmru.exe 3,712 K 7,784 K 21544 NVIDIA NvTmru Application NVIDIA Corporation (Verified) NVIDIA Corporation
nvstreamsvc.exe 3,548 K 3,476 K 2820 NVIDIA Streamer Service NVIDIA Corporation (Verified) NVIDIA Corporation
nvSCPAPISvr.exe 2,168 K 2,000 K 1272 Stereo Vision Control Panel API Server NVIDIA Corporation (Verified) NVIDIA Corporation
notepad.exe 2,692 K 7,336 K 25096 Notepad Microsoft Corporation (Verified) Microsoft Windows
NitroPDFReaderDriverService3.exe 736 K 1,372 K 2776 Nitro PDF Spool Service Nitro PDF Software (Verified) Nitro PDF Software
MotoHelperService.exe 2,168 K 4,452 K 2692 MotoHelper Service (Verified) Motorola Mobility Inc.
MotoHelperAgent.exe 3,376 K 8,064 K 22500 MotoHelperAgent (Verified) Motorola Mobility Inc.
mDNSResponder.exe 1,616 K 2,656 K 2228 Bonjour Service Apple Inc. (Verified) Apple Inc.
McciCMService.exe 1,280 K 2,036 K 2664 mcci+McciCMService Alcatel-Lucent (No signature was present in the subject) Alcatel-Lucent
mbamservice.exe 170,024 K 28,980 K 2624 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
mbamscheduler.exe 1,884 K 1,468 K 2576 Malwarebytes Anti-Malware Malwarebytes Corporation (Verified) Malwarebytes Corporation
lxddcoms.exe 1,452 K 1,944 K 2540 Printer Communication System (Verified) Microsoft Windows Hardware Compatibility Publisher
Locator.exe 392 K 832 K 3280 Rpc Locator Microsoft Corporation (Verified) Microsoft Windows
Lightshot.exe 2,212 K 5,920 K 19884 Lightshot Skillbrains (Verified) OOO Kango
jusched.exe 1,232 K 4,164 K 21780 Java Update Scheduler Oracle Corporation (Verified) Oracle America
HD-BlockDevice.exe 3,712 K 3,616 K 1684 BlueStacks Block Device Helper Process BlueStack Systems (Verified) Bluestack Systems
GoogleCrashHandler.exe 1,136 K 532 K 5416 Google Crash Handler Google Inc. (Verified) Google Inc
conhost.exe 876 K 3,620 K 22480 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
conhost.exe 1,312 K 4,528 K 23688 Console Window Host Microsoft Corporation (Verified) Microsoft Windows
avgnsx.exe 5,236 K 6,912 K 3324 AVG Online Shield Service AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgemcx.exe 1,508 K 2,244 K 3440 AVG E-mail Scanner AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
avgcsrvx.exe 9,892 K 45,256 K 416 AVG Scanning Core Module - Server Part AVG Technologies CZ, s.r.o. (Verified) AVG Technologies CZ
ASCTray.exe 17,408 K 22,128 K 22092 Advanced SystemCare Ultimate Tray IObit (Verified) IObit Information Technology
ASCAvSvc.exe 17,824 K 14,452 K 1040 Advanced SystemCare Ultimate Service IOBit (Verified) IObit Information Technology
armsvc.exe 832 K 1,380 K 2076 Adobe Acrobat Update Service Adobe Systems Incorporated (Verified) Adobe Systems
a2service.exe 37,116 K 1,032 K 1132 Emsisoft Anti-Malware Service Emsi Software GmbH (Verified) Emsi Software GmbH
"SPECCY"
Summary
Operating System
Windows 7 Professional 32-bit SP1
CPU
Intel Core 2 Duo E8400 @ 3.00GHz 38 °C
Wolfdale 45nm Technology
RAM
4.00GB Dual-Channel DDR2 @ 399MHz (6-6-6-18)
Motherboard
Foxconn G31MXP (Socket 775) 40 °C
Graphics
SyncMaster (1440x900@75Hz)
256MB NVIDIA GeForce 8600 GTS (MSI) 56 °C
Storage
931GB Hitachi HDT721010SLA360 ATA Device (SATA) 44 °C
14GB Kingston DataTraveler G3 USB Device (USB)
Optical Drives
Optiarc DVD RW AD-7201A ATA Device
Audio
High Definition Audio Device
Operating System
Windows 7 Professional 32-bit SP1
Computer type: Desktop
Installation Date: 3/6/2011 7:47:37 PM
Windows Security Center
User Account Control (UAC) Enabled
Notify level 2 - Default
Firewall Enabled
Windows Update
AutoUpdate Not configured
Windows Defender
Windows Defender Disabled
Antivirus
AVG AntiVirus Free Edition 2014
Antivirus Enabled
Virus Signature Database Up to date
Advanced SystemCare Ultimate
Antivirus Enabled
Virus Signature Database Up to date
.NET Frameworks installed
v4.0 Full
v4.0 Client
v3.5 SP1
v3.0 SP2
v2.0 SP2
Internet Explorer
Version 10.0.9200.16750
PowerShell
Version 2.0
Java
Java Runtime Environment
Path C:\Program Files\Java\jre7\bin\java.exe
Version 7.0
Update 45
Build 18
Environment Variables
USERPROFILE C:\Users\Living Room
SystemRoot C:\Windows
User Variables
TEMP C:\Users\Living Room\AppData\Local\Temp
TMP C:\Users\Living Room\AppData\Local\Temp
Machine Variables
asl.log Destination=file
CLASSPATH .;C:\Program Files\Java\jre7\lib\ext\QTJava.zip
ComSpec C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK NO
NUMBER_OF_PROCESSORS 2
OS Windows_NT
Path C:\Windows\system32
C:\Windows
C:\Windows\system32\wbem
C:\Program Files\NVIDIA Corporation\PhysX\Common
C:\Program Files\Common Files\Microsoft Shared\Windows Live
C:\Windows\System32\WindowsPowerShell\v1.0
C:\Program Files\QuickTime\QTSystem
C:\Program Files\Windows Live\Shared
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PROCESSOR_ARCHITECTURE x86
PROCESSOR_IDENTIFIER x86 Family 6 Model 23 Stepping 6, GenuineIntel
PROCESSOR_LEVEL 6
PROCESSOR_REVISION 1706
PSModulePath C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
QTJAVA C:\Program Files\Java\jre7\lib\ext\QTJava.zip
TEMP C:\Windows\TEMP
TMP C:\Windows\TEMP
USERNAME SYSTEM
windir C:\Windows
Power Profile
Active power scheme High performance
Hibernation Enabled
Turn Off Monitor after: (On AC Power) 15 min
Turn Off Hard Disk after: (On AC Power) 20 min
Suspend after: (On AC Power) Never
Screen saver Disabled
Uptime
Current Session
Current Time 12/23/2013 7:44:02 AM
Current Uptime 22,387 sec (0 d, 06 h, 13 m, 07 s)
Last Boot Time 12/23/2013 1:30:55 AM
Services
Running Adobe Acrobat Update Service
Running Advanced SystemCare Service 7
Running AdvancedSystemCareAntivirus
Running Apple Mobile Device
Running Application Information
Running AVG WatchDog
Running AVGIDSAgent
Running Background Intelligent Transfer Service
Running Base Filtering Engine
Running Bing Desktop Update service
Running BlueStacks Android Service
Running BlueStacks Log Rotator Service
Running Bonjour Service
Running CNG Key Isolation
Running COM+ Event System
Running Computer Browser
Running Cryptographic Services
Running DCOM Server Process Launcher
Running Desktop Window Manager Session Manager
Running DHCP Client
Running Diagnostic Policy Service
Running Diagnostic Service Host
Running Distributed Link Tracking Client
Running DNS Client
Running Emsisoft Anti-Malware 6.0 - Service
Running Encrypting File System (EFS)
Running Extensible Authentication Protocol
Running Function Discovery Provider Host
Running Function Discovery Resource Publication
Running Group Policy Client
Running HomeGroup Listener
Running HomeGroup Provider
Running HP Network Devices Support
Running IKE and AuthIP IPsec Keying Modules
Running Infrared monitor service
Running IPsec Policy Agent
Running lxdd_device
Running lxddCATSCustConnectService
Running MBAMScheduler
Running MBAMService
Running McciCMService
Running Media Center Extender Service
Running Motorola Device Manager Service
Running Multimedia Class Scheduler
Running Net Driver HPZ12
Running Network Connections
Running Network List Service
Running Network Location Awareness
Running Network Store Interface Service
Running NitroPDFReaderDriverCreatorReadSpool3
Running NVIDIA Display Driver Service
Running NVIDIA Stereoscopic 3D Driver Service
Running NVIDIA Streamer Service
Running NVIDIA Update Service Daemon
Running Peer Name Resolution Protocol
Running Peer Networking Grouping
Running Peer Networking Identity Manager
Running Plug and Play
Running Pml Driver HPZ12
Running PnP-X IP Bus Enumerator
Running Portable Device Enumerator Service
Running Power
Running Print Spooler
Running Program Compatibility Assistant Service
Running RealNetworks Downloader Resolver Service
Running RealPlayer Desktop Service
Running RealPlayer Update Service
Running Remote Access Connection Manager
Running Remote Desktop Configuration
Running Remote Desktop Services
Running Remote Desktop Services UserMode Port Redirector
Running Remote Procedure Call (RPC)
Running Remote Procedure Call (RPC) Locator
Running RPC Endpoint Mapper
Running Secondary Logon
Running Secure Socket Tunneling Protocol Service
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running Skype C2C Service
Running SSDP Discovery
Running Superfetch
Running System Event Notification Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Themes
Running TVersity Media Server
Running UPnP Device Host
Running User Profile Service
Running Windows Audio
Running Windows Audio Endpoint Builder
Running Windows Connect Now - Config Registrar
Running Windows Driver Foundation - User-mode Driver Framework
Running Windows Event Log
Running Windows Firewall
Running Windows Font Cache Service
Running Windows Live ID Sign-in Assistant
Running Windows Management Instrumentation
Running Windows Media Player Network Sharing Service
Running Windows Modules Installer
Running Windows Search
Running Windows Update
Running WLAN AutoConfig
Running Workstation
Running WSWNA1100
Stopped ActiveX Installer (AxInstSV)
Stopped Adaptive Brightness
Stopped Adobe Flash Player Update Service
Stopped Application Experience
Stopped Application Identity
Stopped Application Layer Gateway Service
Stopped Application Management
Stopped ASP.NET State Service
Stopped BitLocker Drive Encryption Service
Stopped Block Level Backup Engine Service
Stopped Bluetooth Support Service
Stopped BranchCache
Stopped Certificate Propagation
Stopped COM+ System Application
Stopped Credential Manager
Stopped Diagnostic System Host
Stopped Disk Defragmenter
Stopped Distributed Transaction Coordinator
Stopped Fax
Stopped Google Update Service (gupdate)
Stopped Google Update Service (gupdatem)
Stopped Health Key and Certificate Management
Stopped Human Interface Device Access
Stopped Interactive Services Detection
Stopped Internet Connection Sharing (ICS)
Stopped IP Helper
Stopped iPod Service
Stopped JumpStart Wi-Fi Protected Setup
Stopped KtmRm for Distributed Transaction Coordinator
Stopped Link-Layer Topology Discovery Mapper
Stopped LiveUpdate
Stopped Microsoft .NET Framework NGEN v2.0.50727_X86
Stopped Microsoft .NET Framework NGEN v4.0.30319_X86
Stopped Microsoft iSCSI Initiator Service
Stopped Microsoft Software Shadow Copy Provider
Stopped Mozilla Maintenance Service
Stopped Net.Msmq Listener Adapter
Stopped Net.Pipe Listener Adapter
Stopped Net.Tcp Listener Adapter
Stopped Net.Tcp Port Sharing Service
Stopped NETGEARGenieDaemon
Stopped Netlogon
Stopped Network Access Protection Agent
Stopped Office Source Engine
Stopped Offline Files
Stopped Parental Controls
Stopped Performance Logs & Alerts
Stopped PNRP Machine Name Publication Service
Stopped Problem Reports and Solutions Control Panel Support
Stopped Protected Storage
Stopped Quality Windows Audio Video Experience
Stopped Remote Access Auto Connection Manager
Stopped Remote Registry
Stopped Routing and Remote Access
Stopped Skype Updater
Stopped Smart Card
Stopped Smart Card Removal Policy
Stopped SNMP Trap
Stopped Software Protection
Stopped SPP Notification Service
Stopped Storage Service
Stopped Tablet PC Input Service
Stopped Thread Ordering Server
Stopped TPM Base Services
Stopped Virtual Disk
Stopped Volume Shadow Copy
Stopped WebClient
Stopped Windows Activation Technologies Service
Stopped Windows Backup
Stopped Windows Biometric Service
Stopped Windows CardSpace
Stopped Windows Color System
Stopped Windows Defender
Stopped Windows Error Reporting Service
Stopped Windows Event Collector
Stopped Windows Image Acquisition (WIA)
Stopped Windows Installer
Stopped Windows Media Center Receiver Service
Stopped Windows Media Center Scheduler Service
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Remote Management (WS-Management)
Stopped Windows Time
Stopped WinHTTP Web Proxy Auto-Discovery Service
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
Stopped WWAN AutoConfig
TimeZone
TimeZone GMT -5:00 Hours
Language English (United States)
Location United States
Format English (United States)
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Scheduler
12/23/2013 8:00 AM; Maxthon Update
12/23/2013 8:06 AM; Adobe Flash Player Updater
12/23/2013 8:21 AM; GoogleUpdateTaskMachineUA
12/23/2013 9:37 AM; update-sys
12/23/2013 9:43 AM; update-S-1-5-21-21828565-3005677120-1819634571-1001
12/23/2013 10:00 AM; Adobe online update program
12/23/2013 10:00 AM; Divx online update program
12/23/2013 10:00 AM; Java Update Scheduler
12/23/2013 10:00 AM; Real Player online update program
12/23/2013 7:21 PM; GoogleUpdateTaskMachineCore
12/25/2013 2:21 PM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003
12/25/2013 11:15 PM; RealDownloaderRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/26/2013 11:37 AM; RealDownloaderDownloaderScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/27/2013 12:08 PM; RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
12/28/2013 4:44 PM; RealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1003
12/29/2013 9:52 PM; RealPlayerRealUpgradeScheduledTaskS-1-5-21-21828565-3005677120-1819634571-1001
1/1/2014 5:09 PM; Swiki_Checker
Alarm Clock
ASC7U_SkipUac_Living Room
ASC7_PerformanceMonitor
CCleanerSkipUAC
RealDownloaderRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealPlayerRealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003
RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1001
RealUpgradeLogonTaskS-1-5-21-21828565-3005677120-1819634571-1003
SidebarExecute
Hotfixes
12/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.406.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/22/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.403.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/21/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.360.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/20/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.262.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/19/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
12/19/2013 Security Update for Microsoft Office Excel Viewer 2007 (KB2827328)
A security vulnerability exists in Microsoft Office Excel Viewer
2007 that could allow arbitrary code to run when a maliciously
modified file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Word Viewer (KB2817683)
A security vulnerability exists in Word Viewer that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2597973)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.210.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/19/2013 Security Update for Word Viewer (KB2817683)
A security vulnerability exists in Word Viewer that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2817641)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2836943)
Install this update to resolve issues in Windows. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article for more information.
After you install this item, you may have to restart your computer.
12/19/2013 Security Update for Office 2003 (KB2817474)
A security vulnerability exists in Office 2003 that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760585)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft .NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Windows Server 2008 x86 (KB2487367)
A security issue has been identified that could allow an attacker
to compromise your Windows-based system that is running the Microsoft
.NET Framework and gain access to information. You can help protect
your computer by installing this update from Microsoft. After
you install this item, you may have to restart your computer.
12/19/2013 Update for Microsoft Security Essentials - 4.4.304.0 (KB2902885)
This package will update Microsoft Security Essentials client
on the user's machine.
12/19/2013 Update for Microsoft Office 2007 suites (KB2767849)
Microsoft has released an update for Microsoft Office 2007 suites
. This update provides the latest fixes to Microsoft Office 2007
suites . Additionally, this update contains stability and performance
improvements.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760591)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Security Update for Windows 7 (KB2803821)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
12/19/2013 Security Update for Microsoft .NET Framework 3.5.1 on Windows 7 SP1 x86 (KB2844286)
A security issue has been identified in a Microsoft software
product that could affect your system. You can help protect your
system by installing this update from Microsoft. For a complete
listing of the issues that are included in this update, see the
associated Microsoft Knowledge Base article. After you install
this update, you may have to restart your system.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2597973)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Windows Malicious Software Removal Tool - December 2013 (KB890830)
After the download, this tool runs one time to check your computer
for infection by specific, prevalent malicious software (including
Blaster, Sasser, and Mydoom) and helps remove any infection that
is found. If an infection is found, the tool will display a status
report the next time that you start your computer. A new version
of the tool will be offered every month. If you want to manually
run the tool on your computer, you can download a copy from the
Microsoft Download Center, or you can run an online version from
microsoft.com. This tool is not a replacement for an antivirus
product. To help protect your computer, you should use an antivirus
product.
12/19/2013 Security Update for Office 2003 (KB2850047)
A security vulnerability exists in Office 2003 that could allow
arbitrary code to run when a maliciously modified file is opened.
This update resolves that vulnerability.
12/19/2013 Security Update for Microsoft Office 2007 suites (KB2760411)
A security vulnerability exists in Microsoft Office 2007 suites
that could allow arbitrary code to run when a maliciously modified
file is opened. This update resolves that vulnerability.
12/19/2013 Excel Viewer 2007 Service Pack 3 (SP3)
Service Pack 3 provides the latest updates to Excel Viewer 2007.
12/18/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.116.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/17/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.165.28.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/16/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.2025.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.2005.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/15/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1998.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/14/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1943.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/13/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1864.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/12/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1784.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
12/10/2013 Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.163.1568.0)
Install this update to revise the definition files that are used
to detect viruses, spyware, and other potentially unwanted software.
Once you have installed this item, it cannot be removed.
System Folders
Application Data C:\ProgramData
Cookies C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Cookies
Desktop C:\Users\Living Room\Desktop
Documents C:\Users\Public\Documents
Fonts C:\Windows\Fonts
Global Favorites C:\Users\Living Room\Favorites
Internet History C:\Users\Living Room\AppData\Local\Microsoft\Windows\History
Local Application Data C:\Users\Living Room\AppData\Local
Music C:\Users\Public\Music
Path for burning CD C:\Users\Living Room\AppData\Local\Microsoft\Windows\Burn\Burn1
Physical Desktop C:\Users\Living Room\Desktop
Pictures C:\Users\Public\Pictures
Program Files C:\Program Files
Public Desktop C:\Users\Public\Desktop
Start Menu C:\ProgramData\Microsoft\Windows\Start Menu
Start Menu Programs C:\ProgramData\Microsoft\Windows\Start Menu\Programs
Startup C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Templates C:\ProgramData\Microsoft\Windows\Templates
Temporary Internet Files C:\Users\Living Room\AppData\Local\Microsoft\Windows\Temporary Internet Files
User Favorites C:\Users\Living Room\Favorites
Videos C:\Users\Public\Videos
Windows Directory C:\Windows
Windows/System C:\Windows\system32
Process List
a2service.exe
Process ID 1132
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Emsisoft Anti-Malware\a2service.exe
Memory Usage 1.01 MB
Peak Memory Usage 37 MB
AppleMobileDeviceService.exe
Process ID 2104
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Memory Usage 3.94 MB
Peak Memory Usage 8.18 MB
armsvc.exe
Process ID 2076
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
Memory Usage 1.35 MB
Peak Memory Usage 2.91 MB
ASCAvSvc.exe
Process ID 1040
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ascavsvc.exe
Memory Usage 14 MB
Peak Memory Usage 18 MB
ASCService.exe
Process ID 980
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCService.exe
Memory Usage 135 MB
Peak Memory Usage 135 MB
ASCTray.exe
Process ID 22092
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
Memory Usage 22 MB
Peak Memory Usage 22 MB
audiodg.exe
Process ID 1624
User LOCAL SERVICE
Domain NT AUTHORITY
Memory Usage 11 MB
Peak Memory Usage 15 MB
avgcsrvx.exe
Process ID 416
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgcsrvx.exe
Memory Usage 55 MB
Peak Memory Usage 150 MB
avgemcx.exe
Process ID 3440
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgemcx.exe
Memory Usage 2.19 MB
Peak Memory Usage 12 MB
avgidsagent.exe
Process ID 2148
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgidsagent.exe
Memory Usage 18 MB
Peak Memory Usage 30 MB
avgnsx.exe
Process ID 3324
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgnsx.exe
Memory Usage 6.75 MB
Peak Memory Usage 12 MB
avgrsx.exe
Process ID 356
User SYSTEM
Domain NT AUTHORITY
Path C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
Memory Usage 42 MB
Peak Memory Usage 57 MB
avgui.exe
Process ID 21556
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\AVG\AVG2014\avgui.exe
Memory Usage 19 MB
Peak Memory Usage 20 MB
avgwdsvc.exe
Process ID 2172
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\AVG\AVG2014\avgwdsvc.exe
Memory Usage 9.59 MB
Peak Memory Usage 19 MB
BingDesktopUpdater.exe
Process ID 2192
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
Memory Usage 2.92 MB
Peak Memory Usage 7.16 MB
c2c_service.exe
Process ID 3316
User SYSTEM
Domain NT AUTHORITY
Path C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
Memory Usage 1.97 MB
Peak Memory Usage 5.13 MB
conhost.exe
Process ID 23688
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\conhost.exe
Memory Usage 4.42 MB
Peak Memory Usage 4.42 MB
conhost.exe
Process ID 22480
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 3.54 MB
Peak Memory Usage 3.54 MB
conhost.exe
Process ID 2400
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 808 KB
Peak Memory Usage 2.35 MB
conhost.exe
Process ID 1708
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 796 KB
Peak Memory Usage 2.35 MB
conhost.exe
Process ID 3460
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\conhost.exe
Memory Usage 800 KB
Peak Memory Usage 2.35 MB
csrss.exe
Process ID 616
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 5.37 MB
Peak Memory Usage 10 MB
csrss.exe
Process ID 680
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\csrss.exe
Memory Usage 12 MB
Peak Memory Usage 21 MB
daemonu.exe
Process ID 3088
User UpdatusUser
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
Memory Usage 6.53 MB
Peak Memory Usage 11 MB
dwm.exe
Process ID 21352
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\Dwm.exe
Memory Usage 26 MB
Peak Memory Usage 37 MB
explorer.exe
Process ID 21312
User Living Room
Domain LivingRoom-PC
Path C:\Windows\Explorer.EXE
Memory Usage 90 MB
Peak Memory Usage 105 MB
firefox.exe
Process ID 25324
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Mozilla Firefox\firefox.exe
Memory Usage 233 MB
Peak Memory Usage 270 MB
GoogleCrashHandler.exe
Process ID 5416
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
Memory Usage 532 KB
Peak Memory Usage 3.43 MB
HD-BlockDevice.exe
Process ID 1684
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-BlockDevice.exe
Memory Usage 3.53 MB
Peak Memory Usage 5.57 MB
HD-LogRotatorService.exe
Process ID 2252
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-LogRotatorService.exe
Memory Usage 3.73 MB
Peak Memory Usage 7.13 MB
HD-Network.exe
Process ID 2632
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-Network.exe
Memory Usage 5.11 MB
Peak Memory Usage 7.50 MB
HD-Service.exe
Process ID 3928
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-Service.exe
Memory Usage 7.12 MB
Peak Memory Usage 12 MB
HD-SharedFolder.exe
Process ID 3224
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\BlueStacks\HD-SharedFolder.exe
Memory Usage 3.56 MB
Peak Memory Usage 4.54 MB
jusched.exe
Process ID 21780
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Common Files\Java\Java Update\jusched.exe
Memory Usage 4.07 MB
Peak Memory Usage 4.07 MB
Lightshot.exe
Process ID 19884
User Living Room
Domain LivingRoom-PC
Path C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\LightShot.exe
Memory Usage 5.78 MB
Peak Memory Usage 5.79 MB
Locator.exe
Process ID 3280
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\locator.exe
Memory Usage 832 KB
Peak Memory Usage 1.42 MB
lsass.exe
Process ID 780
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsass.exe
Memory Usage 7.55 MB
Peak Memory Usage 10 MB
lsm.exe
Process ID 792
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lsm.exe
Memory Usage 2.86 MB
Peak Memory Usage 4.34 MB
lxddcoms.exe
Process ID 2540
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\lxddcoms.exe
Memory Usage 1.90 MB
Peak Memory Usage 7.49 MB
lxddserv.exe
Process ID 2516
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\spool\DRIVERS\W32X86\3\lxddserv.exe
Memory Usage 1.02 MB
Peak Memory Usage 2.43 MB
mbamgui.exe
Process ID 19048
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
Memory Usage 7.68 MB
Peak Memory Usage 7.75 MB
mbamscheduler.exe
Process ID 2576
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
Memory Usage 1.43 MB
Peak Memory Usage 5.07 MB
mbamservice.exe
Process ID 2624
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
Memory Usage 28 MB
Peak Memory Usage 245 MB
McciCMService.exe
Process ID 2664
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Motive\McciCMService.exe
Memory Usage 1.99 MB
Peak Memory Usage 5.24 MB
mDNSResponder.exe
Process ID 2228
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Bonjour\mDNSResponder.exe
Memory Usage 2.62 MB
Peak Memory Usage 4.59 MB
MediaServer.exe
Process ID 3708
User SYSTEM
Domain NT AUTHORITY
Path C:\ProgramData\TVersity\Media Server\MediaServer.exe
Memory Usage 4.08 MB
Peak Memory Usage 13 MB
Monitor.exe
Process ID 21324
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\IObit\Advanced SystemCare Ultimate 7\Monitor.exe
Memory Usage 3.47 MB
Peak Memory Usage 11 MB
MotoHelperAgent.exe
Process ID 22500
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
Memory Usage 7.88 MB
Peak Memory Usage 7.88 MB
MotoHelperService.exe
Process ID 2692
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
Memory Usage 4.35 MB
Peak Memory Usage 6.49 MB
NitroPDFReaderDriverService3.exe
Process ID 2776
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
Memory Usage 1.34 MB
Peak Memory Usage 2.68 MB
notepad.exe
Process ID 25096
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\NOTEPAD.EXE
Memory Usage 7.14 MB
Peak Memory Usage 7.32 MB
nvSCPAPISvr.exe
Process ID 1272
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
Memory Usage 1.95 MB
Peak Memory Usage 6.07 MB
nvstreamsvc.exe
Process ID 2820
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 3.39 MB
Peak Memory Usage 14 MB
nvstreamsvc.exe
Process ID 22488
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
Memory Usage 8.95 MB
Peak Memory Usage 9.00 MB
NvTmru.exe
Process ID 21544
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
Memory Usage 7.64 MB
Peak Memory Usage 7.68 MB
nvtray.exe
Process ID 22064
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
Memory Usage 10 MB
Peak Memory Usage 10 MB
nvvsvc.exe
Process ID 1920
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 6.63 MB
Peak Memory Usage 9.09 MB
nvvsvc.exe
Process ID 1248
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\nvvsvc.exe
Memory Usage 3.46 MB
Peak Memory Usage 5.34 MB
nvxdsync.exe
Process ID 1912
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
Memory Usage 9.65 MB
Peak Memory Usage 13 MB
RealPlayerUpdateSvc.exe
Process ID 3228
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
Memory Usage 2.47 MB
Peak Memory Usage 6.26 MB
realsched.exe
Process ID 20884
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Real\RealPlayer\Update\realsched.exe
Memory Usage 568 KB
Peak Memory Usage 5.37 MB
recordingmanager.exe
Process ID 21516
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
rndlresolversvc.exe
Process ID 3148
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
Memory Usage 1.23 MB
Peak Memory Usage 2.88 MB
rpdsvc.exe
Process ID 3184
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
Memory Usage 16 MB
Peak Memory Usage 38 MB
rpsystray.exe
Process ID 21844
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
Memory Usage 4.95 MB
Peak Memory Usage 4.99 MB
SearchFilterHost.exe
Process ID 25540
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchFilterHost.exe
Memory Usage 3.80 MB
Peak Memory Usage 3.86 MB
SearchIndexer.exe
Process ID 4180
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchIndexer.exe
Memory Usage 21 MB
Peak Memory Usage 25 MB
SearchProtocolHost.exe
Process ID 24908
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\SearchProtocolHost.exe
Memory Usage 6.05 MB
Peak Memory Usage 6.05 MB
services.exe
Process ID 736
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\services.exe
Memory Usage 6.44 MB
Peak Memory Usage 14 MB
smss.exe
Process ID 272
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 596 KB
Peak Memory Usage 840 KB
Speccy.exe
Process ID 2616
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 27 MB
Peak Memory Usage 27 MB
spoolsv.exe
Process ID 2020
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\spoolsv.exe
Memory Usage 8.23 MB
Peak Memory Usage 14 MB
SpotifyWebHelper.exe
Process ID 21368
User Living Room
Domain LivingRoom-PC
Path C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
Memory Usage 5.85 MB
Peak Memory Usage 5.90 MB
svchost.exe
Process ID 108
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 8.31 MB
Peak Memory Usage 12 MB
svchost.exe
Process ID 1840
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 9.63 MB
Peak Memory Usage 14 MB
svchost.exe
Process ID 1724
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 3.40 MB
Peak Memory Usage 5.10 MB
svchost.exe
Process ID 1548
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 32 MB
Peak Memory Usage 636 MB
svchost.exe
Process ID 5276
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 3.46 MB
Peak Memory Usage 6.21 MB
svchost.exe
Process ID 1512
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 12 MB
Peak Memory Usage 13 MB
svchost.exe
Process ID 1464
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 44 MB
Peak Memory Usage 66 MB
svchost.exe
Process ID 1404
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 13 MB
Peak Memory Usage 16 MB
svchost.exe
Process ID 924
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 4.50 MB
Peak Memory Usage 7.13 MB
svchost.exe
Process ID 6020
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 1.48 MB
Peak Memory Usage 4.65 MB
svchost.exe
Process ID 1320
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 4.32 MB
Peak Memory Usage 6.24 MB
svchost.exe
Process ID 22756
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 8.04 MB
Peak Memory Usage 8.34 MB
svchost.exe
Process ID 3128
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 1.19 MB
Peak Memory Usage 2.66 MB
svchost.exe
Process ID 2732
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\svchost.exe
Memory Usage 948 KB
Peak Memory Usage 2.77 MB
svchost.exe
Process ID 2336
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\svchost.exe
Memory Usage 7.61 MB
Peak Memory Usage 11 MB
System
Process ID 4
Memory Usage 1.02 MB
Peak Memory Usage 131 MB
System Idle Process
Process ID 0
taskeng.exe
Process ID 21044
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\taskeng.exe
Memory Usage 4.65 MB
Peak Memory Usage 4.69 MB
taskhost.exe
Process ID 20748
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\taskhost.exe
Memory Usage 14 MB
Peak Memory Usage 14 MB
TrustedInstaller.exe
Process ID 23464
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\servicing\TrustedInstaller.exe
Memory Usage 13 MB
Peak Memory Usage 32 MB
vprot.exe
Process ID 21112
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\AVG SafeGuard toolbar\vprot.exe
Memory Usage 25 MB
Peak Memory Usage 31 MB
WifiSvc.exe
Process ID 3896
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
Memory Usage 3.39 MB
Peak Memory Usage 5.88 MB
wininit.exe
Process ID 688
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wininit.exe
Memory Usage KB
Peak Memory Usage 3.40 MB
winlogon.exe
Process ID 768
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\winlogon.exe
Memory Usage 3.49 MB
Peak Memory Usage 6.63 MB
WLIDSVC.EXE
Process ID 3856
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Memory Usage 9.26 MB
Peak Memory Usage 11 MB
WLIDSVCM.EXE
Process ID 4068
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
Memory Usage 992 KB
Peak Memory Usage 2.37 MB
WmiPrvSE.exe
Process ID 24936
User SYSTEM
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
WmiPrvSE.exe
Process ID 22560
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Windows\system32\wbem\wmiprvse.exe
Memory Usage 18 MB
Peak Memory Usage 18 MB
wmpnetwk.exe
Process ID 5732
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\Program Files\Windows Media Player\wmpnetwk.exe
Memory Usage 34 MB
Peak Memory Usage 97 MB
WNA1100.exe
Process ID 22088
User Living Room
Domain LivingRoom-PC
Path C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
Memory Usage 29 MB
Peak Memory Usage 29 MB
wuauclt.exe
Process ID 23876
User Living Room
Domain LivingRoom-PC
Path C:\Windows\system32\wuauclt.exe
Memory Usage 5.62 MB
Peak Memory Usage 6.14 MB
WUDFHost.exe
Process ID 4520
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\Windows\System32\WUDFHost.exe
Memory Usage 2.77 MB
Peak Memory Usage 4.93 MB
Security Options
Accounts: Administrator account status Enabled
Accounts: Guest account status Enabled
Accounts: Limit local account use of blank passwords to console logon only Enabled
Accounts: Rename administrator account Administrator
Accounts: Rename guest account Guest
Audit: Audit the access of global system objects Disabled
Audit: Audit the use of Backup and Restore privilege Disabled
Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings Not Defined
Audit: Shut down system immediately if unable to log security audits Disabled
DCOM: Machine Access Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax Not Defined
Devices: Allow undock without having to log on Enabled
Devices: Allowed to format and eject removable media Not Defined
Devices: Prevent users from installing printer drivers Disabled
Devices: Restrict CD-ROM access to locally logged-on user only Not Defined
Devices: Restrict floppy access to locally logged-on user only Not Defined
Domain controller: Allow server operators to schedule tasks Not Defined
Domain controller: LDAP server signing requirements Not Defined
Domain controller: Refuse machine account password changes Not Defined
Domain member: Digitally encrypt or sign secure channel data (always) Enabled
Domain member: Digitally encrypt secure channel data (when possible) Enabled
Domain member: Digitally sign secure channel data (when possible) Enabled
Domain member: Disable machine account password changes Disabled
Domain member: Maximum machine account password age 30 days
Domain member: Require strong (Windows 2000 or later) session key Enabled
Interactive logon: Display user information when the session is locked Not Defined
Interactive logon: Do not display last user name Disabled
Interactive logon: Do not require CTRL+ALT+DEL Not Defined
Interactive logon: Message text for users attempting to log on
Interactive logon: Message title for users attempting to log on
Interactive logon: Number of previous logons to cache (in case domain controller is not available) 10 logons
Interactive logon: Prompt user to change password before expiration 5 days
Interactive logon: Require Domain Controller authentication to unlock workstation Disabled
Interactive logon: Require smart card Disabled
Interactive logon: Smart card removal behavior No Action
Microsoft network client: Digitally sign communications (always) Disabled
Microsoft network client: Digitally sign communications (if server agrees) Enabled
Microsoft network client: Send unencrypted password to third-party SMB servers Disabled
Microsoft network server: Amount of idle time required before suspending session 15 minutes
Microsoft network server: Digitally sign communications (always) Disabled
Microsoft network server: Digitally sign communications (if client agrees) Disabled
Microsoft network server: Disconnect clients when logon hours expire Enabled
Microsoft network server: Server SPN target name validation level Not Defined
Network access: Allow anonymous SID/Name translation Disabled
Network access: Do not allow anonymous enumeration of SAM accounts Enabled
Network access: Do not allow anonymous enumeration of SAM accounts and shares Disabled
Network access: Do not allow storage of passwords and credentials for network authentication Disabled
Network access: Let Everyone permissions apply to anonymous users Disabled
Network access: Named Pipes that can be accessed anonymously
Network access: Remotely accessible registry paths System\CurrentControlSet\Control\ProductOptions,System\CurrentControlSet\Control\Server Applications,Software\Microsoft\Windows NT\CurrentVersion
Network access: Remotely accessible registry paths and sub-paths System\CurrentControlSet\Control\Print\Printers,System\CurrentControlSet\Services\Eventlog,Software\Microsoft\OLAP Server,Software\Microsoft\Windows NT\CurrentVersion\Print,Software\Microsoft\Windows NT\CurrentVersion\Windows,System\CurrentControlSet\Control\ContentIndex,System\CurrentControlSet\Control\Terminal Server,System\CurrentControlSet\Control\Terminal Server\UserConfig,System\CurrentControlSet\Control\Terminal Server\DefaultUserConfiguration,Software\Microsoft\Windows NT\CurrentVersion\Perflib,System\CurrentControlSet\Services\SysmonLog
Network access: Restrict anonymous access to Named Pipes and Shares Enabled
Network access: Shares that can be accessed anonymously Not Defined
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Network security: Allow Local System to use computer identity for NTLM Not Defined
Network security: Allow LocalSystem NULL session fallback Not Defined
Network Security: Allow PKU2U authentication requests to this computer to use online identities Not Defined
Network security: Configure encryption types allowed for Kerberos Not Defined
Network security: Do not store LAN Manager hash value on next password change Enabled
Network security: Force logoff when logon hours expire Disabled
Network security: LAN Manager authentication level Not Defined
Network security: LDAP client signing requirements Negotiate signing
Network security: Minimum session security for NTLM SSP based (including secure RPC) clients Require 128-bit encryption
Network security: Minimum session security for NTLM SSP based (including secure RPC) servers Require 128-bit encryption
Network security: Restrict NTLM: Add remote server exceptions for NTLM authentication Not Defined
Network security: Restrict NTLM: Add server exceptions in this domain Not Defined
Network security: Restrict NTLM: Audit Incoming NTLM Traffic Not Defined
Network security: Restrict NTLM: Audit NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Incoming NTLM traffic Not Defined
Network security: Restrict NTLM: NTLM authentication in this domain Not Defined
Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers Not Defined
Recovery console: Allow automatic administrative logon Disabled
Recovery console: Allow floppy copy and access to all drives and all folders Disabled
Shutdown: Allow system to be shut down without having to log on Enabled
Shutdown: Clear virtual memory pagefile Disabled
System cryptography: Force strong key protection for user keys stored on the computer Not Defined
System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing Disabled
System objects: Require case insensitivity for non-Windows subsystems Enabled
System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links) Enabled
System settings: Optional subsystems Posix
System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies Disabled
User Account Control: Admin Approval Mode for the Built-in Administrator account Disabled
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop Disabled
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode Prompt for consent for non-Windows binaries
User Account Control: Behavior of the elevation prompt for standard users Prompt for credentials
User Account Control: Detect application installations and prompt for elevation Enabled
User Account Control: Only elevate executables that are signed and validated Disabled
User Account Control: Only elevate UIAccess applications that are installed in secure locations Enabled
User Account Control: Run all administrators in Admin Approval Mode Enabled
User Account Control: Switch to the secure desktop when prompting for elevation Enabled
User Account Control: Virtualize file and registry write failures to per-user locations Enabled
Device Tree
ACPI x86-based PC
Microsoft ACPI-Compliant System
ACPI Fan
ACPI Fixed Feature Button
ACPI Power Button
ACPI Thermal Zone
Intel Core2 Duo CPU E8400 @ 3.00GHz
Intel Core2 Duo CPU E8400 @ 3.00GHz
System board
PCI bus
Intel 82801 PCI Bridge - 244E
Intel 82801G (ICH7 Family) PCI Express Root Port - 27D0
Intel 82801G (ICH7 Family) SMBus Controller - 27DA
Intel G33/G31/P35/P31 Express Chipset Processor to I/O Controller - 29C0
Motherboard resources
Intel® G33/G31/P35/P31 Express Chipset PCI Express Root Port - 29C1
NVIDIA GeForce 8600 GTS
SyncMaster 953BW/953GW,SyncMaster Magic CX953BW/CX953GW(Digital)
High Definition Audio Controller
High Definition Audio Device
Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D2
Realtek PCIe GBE Family Controller
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C8
USB Root Hub
USB Input Device
HID-compliant mouse
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C9
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA
USB Root Hub
Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB
USB Root Hub
Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC
USB Root Hub
NETGEAR WNA1100 N150 Wireless USB Adapter
Microsoft Virtual WiFi Miniport Adapter #5
USB Mass Storage Device
Kingston DataTraveler G3 USB Device
Intel® 82801GB/GR (ICH7 Family) LPC Interface Controller - 27B8
Built-in Infrared Device
Communications Port (COM1)
Direct memory access controller
High precision event timer
Intel 82802 Firmware Hub Device
Motherboard resources
Motherboard resources
Numeric data processor
Programmable interrupt controller
Standard PS/2 Keyboard
System CMOS/real time clock
System speaker
System timer
Standard floppy disk controller
Floppy disk drive
Printer Port (LPT1)
Printer Port Logical Interface
Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF
ATA Channel 0
Optiarc DVD RW AD-7201A ATA Device
Intel® 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0
ATA Channel 1
ATA Channel 0
Hitachi HDT721010SLA360 ATA Device
CPU
Intel Core 2 Duo E8400
Cores 2
Threads 2
Name Intel Core 2 Duo E8400
Code Name Wolfdale
Package Socket 775 LGA
Technology 45nm
Specification Intel Core2 Duo CPU E8400 @ 3.00GHz
Family 6
Extended Family 6
Model 7
Extended Model 17
Stepping 6
Revision C0
Instructions MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, Intel 64, NX, VMX
Virtualization Supported, Enabled
Hyperthreading Not supported
Fan Speed 2755 RPM
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Stock Core Speed 3000 MHz
Stock Bus Speed 333 MHz
Average Temperature 38 °C
Caches
L1 Data Cache Size 2 x 32 KBytes
L1 Instructions Cache Size 2 x 32 KBytes
L2 Unified Cache Size 6144 KBytes
Core 0
Core Speed 2997.1 MHz
Multiplier x 9.0
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Temperature 38 °C
Thread 1
APIC ID 0
Core 1
Core Speed 1998.0 MHz
Multiplier x 6.0
Bus Speed 333.0 MHz
Rated Bus Speed 1332.0 MHz
Temperature 38 °C
Thread 1
APIC ID 1
RAM
Memory slots
Total memory slots 2
Used memory slots 2
Free memory slots 0
Memory
Type DDR2
Size 4096 MBytes
Channels # Dual
DRAM Frequency 399.6 MHz
CAS# Latency (CL) 6 clocks
RAS# to CAS# Delay (tRCD) 6 clocks
RAS# Precharge (tRP) 6 clocks
Cycle Time (tRAS) 18 clocks
Command Rate (CR) 2T
Physical Memory
Memory Usage 69 %
Total Physical 3.25 GB
Available Physical MB
Total Virtual 6.49 GB
Available Virtual 3.76 GB
SPD
Number Of SPD Modules 2
Slot #1
Type DDR2
Size 2048 MBytes
Manufacturer OCZ
Max Bandwidth PC2-6400 (400 MHz)
Part Number OCZ2N800SR2G
SPD Ext. EPP
EPP #0
Frequency 400.0 MHz
CAS# Latency 5.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 15
Voltage 2.000 V
JEDEC #3
Frequency 400.0 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 24
Voltage 1.800 V
JEDEC #2
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
Slot #2
Type DDR2
Size 2048 MBytes
Manufacturer OCZ
Max Bandwidth PC2-6400 (400 MHz)
Part Number OCZ2N800SR2G
SPD Ext. EPP
EPP #0
Frequency 400.0 MHz
CAS# Latency 5.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 15
Voltage 2.000 V
JEDEC #3
Frequency 400.0 MHz
CAS# Latency 6.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 18
tRC 24
Voltage 1.800 V
JEDEC #2
Frequency 333.3 MHz
CAS# Latency 5.0
RAS# To CAS# 6
RAS# Precharge 6
tRAS 16
tRC 21
Voltage 1.800 V
JEDEC #1
Frequency 266.7 MHz
CAS# Latency 4.0
RAS# To CAS# 4
RAS# Precharge 4
tRAS 12
tRC 16
Voltage 1.800 V
Motherboard
Manufacturer Foxconn
Model G31MXP (Socket 775)
Version OEM
Chipset Vendor Intel
Chipset Model P35/G33/G31
Chipset Revision 10
Southbridge Vendor Intel
Southbridge Model 82801GB (ICH7/R)
Southbridge Revision A1
System Temperature 40 °C
BIOS
Brand Phoenix Technologies, LTD
Version 6.00 PG
Date 5/13/2009
Voltage
CPU CORE 1.200 V
MEMORY CONTROLLER 1.808 V
+3.3V 3.280 V
+5V 4.892 V
+12V 11.968 V
+5V HIGH THRESHOLD 4.946 V
CMOS BATTERY 3.264 V
PCI Data
Slot PCI
Slot Type PCI
Slot Usage Available
Data lanes x16
Slot Designation PCI1
Characteristics 5V, PME
Slot Number 0
Slot PCI
Slot Type PCI
Slot Usage Available
Data lanes x1
Slot Designation PCI2
Characteristics 5V, PME
Slot Number 1
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI3
Characteristics 5V, PME
Slot Number 2
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation PCI4
Characteristics 5V, PME
Slot Number 3
Graphics
Monitor
Name SyncMaster on NVIDIA GeForce 8600 GTS
Current Resolution 1440x900 pixels
Work Resolution 1440x860 pixels
State Enabled, Primary, Output devices support
Monitor Width 1440
Monitor Height 900
Monitor BPP 32 bits per pixel
Monitor Frequency 75 Hz
Device \\.\DISPLAY1\Monitor0
NVIDIA GeForce 8600 GTS
Manufacturer NVIDIA
Model GeForce 8600 GTS
GPU G84
Device ID 10DE-0400
Revision A2
Subvendor MSI (1462)
Series GeForce 8
Current Performance Level Level 0
Technology 80 nm
Die Size 169 mm²
Transistors 289 M
Release Date Apr 17, 2007
DirectX Support 10.0
DirectX Shader Model 4.0
OpenGL Support 3.0
Bus Interface PCI Express x16
Temperature 56 °C
Driver version 9.18.13.2049
BIOS Version 60.84.38.00.28
ROPs 8
Shaders 32 unified
Memory Type GDDR3
Memory 256 MB
Bus Width 64x2 (128 bit)
Filtering Modes Bilinear, Trilinear, 2x Anisotropic, 4x Anisotropic, 8x Anisotropic, 16x Anisotropic
Noise Level Moderate
Max Power Draw 71 Watts
Count of performance levels : 1
Level 1
GPU Clock 675 MHz
Memory Clock 1008 MHz
Shader Clock 1450 MHz
Storage
Hard drives
Hitachi HDT721010SLA360 ATA Device
Manufacturer Hitachi
Product Family Deskstar
Series Prefix Differentiator between two models with the same name
Model Capacity For This Specific Drive 100GB
Heads 16
Cylinders 129,201
Tracks 31,008,240
Sectors 1,953,519,120
SATA type SATA-II 3.0Gb/s
Device type Fixed
ATA Standard ATA8-ACS
Serial Number STF605MH1B4UTW
LBA Size 48-bit LBA
Power On Count 1307 times
Power On Time 1326.4 days
Speed 7200 RPM
Features S.M.A.R.T., APM, AAM, NCQ
Transfer Mode SATA II
Interface SATA
Capacity 931 GB
Real size 1,000,204,886,016 bytes
RAID Type None
S.M.A.R.T
Status Warning
Temperature 44 °C
Temperature Range OK (less than 50 °C)
01 Read Error Rate 095 (095) Data 000004000A
02 Throughput Performance 130 (130) Data 0000000078
03 Spin-Up Time 128 (128) Data 0001B901C6
04 Start/Stop Count 100 (100) Data 0000000528
05 Reallocated Sectors Count 100 (100) Data 0000000060
07 Seek Error Rate 100 (100) Data 0000000000
08 Seek Time Performance 125 (125) Data 0000000021
09 Power-On Hours (POH) 096 (096) Data 0000007C59
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 000000051B
C0 Power-off Retract Count 099 (099) Data 0000000569
C1 Load/Unload Cycle Count 099 (099) Data 0000000569
C2 Temperature 136 (136) Data 000016002C
C4 Reallocation Event Count 100 (100) Data 0000000074
C5 Current Pending Sector Count 100 (100) Data 0000000006
C6 Uncorrectable Sector Count 100 (100) Data 0000000003
C7 UltraDMA CRC Error Count 200 (200) Data 0000000013
Partition 0
Partition ID Disk #0, Partition #0
Disk Letter F:
File System NTFS
Volume Serial Number 280A2E07
Size 99 MB
Used Space 63 MB (64%)
Free Space 36.7 MB (36%)
Partition 1
Partition ID Disk #0, Partition #1
Disk Letter C:
File System NTFS
Volume Serial Number BC0CE792
Size 508 GB
Used Space 397 GB (79%)
Free Space 110 GB (21%)
Partition 2
Partition ID Disk #0, Partition #2
Disk Letter Z:
File System NTFS
Volume Serial Number BE3B00FB
Size 217 GB
Used Space 111 GB (52%)
Free Space 105 GB (48%)
Partition 3
Partition ID Disk #0, Partition #3
Disk Letter E:
File System NTFS
Volume Serial Number 849F1E97
Size 205 GB
Used Space 24.2 GB (12%)
Free Space 181 GB (88%)
Flash drives
Kingston DataTraveler G3 USB Device
Interface USB
Capacity 14.4 GB
Real size 15,479,537,664 bytes
RAID Type None
S.M.A.R.T
S.M.A.R.T not supported
Partition 0
Partition ID Disk #1, Partition #0
Disk Letter G:
File System FAT32
Volume Serial Number 7A983873
Size 14.4 GB
Used Space 11.2 GB (78%)
Free Space 3.19 GB (22%)
Optical Drives
Optiarc DVD RW AD-7201A ATA Device
Media Type DVD Writer
Name Optiarc DVD RW AD-7201A ATA Device
Availability Running/Full Power
Capabilities Random Access, Supports Writing, Supports Removable Media
Read capabilities CD-R, CD-RW, CD-ROM, DVD-RAM, DVD-ROM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Write capabilities CD-R, CD-RW, DVD-RAM, DVD-R, DVD-RW, DVD+R, DVD+RW, DVD-R DL, DVD+R DL
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive D:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 0
SCSI Target Id 1
Status OK
Audio
Sound Cards
NVIDIA Virtual Audio Device (Wave Extensible) (WDM)
High Definition Audio Device
Playback Devices
Speakers (High Definition Audio Device) (default)
Digital Audio (S/PDIF) (High Definition Audio Device)
Recording Device
Microphone (High Definition Audio Device)
Peripherals
Standard PS/2 Keyboard
Device Kind Keyboard
Device Name Standard PS/2 Keyboard
Vendor (Standard keyboards)
Location plugged into keyboard port
Driver
Date 6-21-2006
Version 6.1.7601.17514
File C:\Windows\system32\DRIVERS\i8042prt.sys
File C:\Windows\system32\DRIVERS\kbdclass.sys
HID-compliant mouse
Device Kind Mouse
Device Name HID-compliant mouse
Vendor IBM Corp
Location USB Input Device
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\mouhid.sys
File C:\Windows\system32\DRIVERS\mouclass.sys
Photosmart D110 series
Device Kind Camera/scanner
Device Name Photosmart D110 series
Vendor HP
Location ip:192.168.1.75,subnet:192.168.1.0/24
Driver
Date 10-12-2009
Version 8.0.0.0
File C:\Windows\system32\DRIVERS\serscan.sys
DataTraveler G3
Device Kind Portable Device
Device Name DataTraveler G3
Vendor KINGSTON
Comment PENDRIVE
Location UMBus Enumerator
Driver
Date 6-21-2006
Version 6.1.7600.16385
File C:\Windows\system32\DRIVERS\WUDFRd.sys
Printers
\\K12-0E52076E2EA\Canon MP250 series Printer
Share Name CanonMP2
Printer Port USB001
Print Processor Canon MP250 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon MP250 series Printer (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMDR9W.DLL
Canon MP250 series Printer
Printer Port USB002
Print Processor Canon MP250 series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 4294967293 dpi Color
Status Unknown
Driver
Driver Name Canon MP250 series Printer (v12.06)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\CNMDR9W.DLL
Fax
Printer Port SHRFAX:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 200 * 200 dpi Monochrome
Status Unknown
Driver
Driver Name Microsoft Shared Fax Driver (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\FXSDRV.DLL
HP79B168 (HP Photosmart D110 series) (Default Printer)
Share Name HP79B168 (HP Photosmart D110 series)
Printer Port WSD-945d74f6-e466-44e4-80f7-39216817ed7c.006f
Print Processor hpfpp101
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status The printer is offline
Driver
Driver Name HP Photosmart D110 series (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\UNIDRV.DLL
Lexmark 2500 Series
Printer Port USB001
Print Processor Lexmark 2500 Series Print Processor
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name Lexmark 2500 Series (v4.1415)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdddr.dll
Microsoft XPS Document Writer
Printer Port XPSPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name Microsoft XPS Document Writer (v6.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\mxdwdrv.dll
Nitro PDF Creator (Reader 3)
Printer Port Nitro PDF Port:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 4294967292 dpi Color
Status Unknown
Driver
Driver Name Nitro Reader Driver 3 (v5.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\NitroReaderGraphics3.dll
PDF Printer
Printer Port Win7PDFPort
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 dpi Color
Status Unknown
Driver
Driver Name PDF Printer Driver x86 (v4.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\PDFVCDrv.dll
PrimoPDF
Printer Port PrimoPort:
Print Processor winprint
Availability Always
Priority 1
Duplex None
Print Quality 600 * 600 dpi Color
Status Unknown
Driver
Driver Name PrimoPDF (v5.01)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\pscript5.dll
PrinterShare
Printer Port C:\ProgramData\PrinterShare\PORT
Print Processor winprint
Availability Always
Priority 1
Status Unknown
Driver
Driver Name PrinterShare (v2.00)
Driver Path C:\Windows\system32\spool\DRIVERS\W32X86\3\pa_g.dll
Network
You are connected to the internet
Connected through NETGEAR WNA1100 N150 Wireless USB Adapter
IP Address 192.168.1.88
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
Preferred DNS server 192.168.1.254
DHCP Enabled
DHCP server 192.168.1.254
External IP Address 108.244.134.66
Adapter Type IEEE 802.11 wireless
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Broadcast node
Link Speed 0 Bps
Computer Name
NetBIOS Name LIVINGROOM-PC
DNS Name LivingRoom-PC
Membership Part of workgroup
Workgroup WORKGROUP
Remote Desktop
Disabled
Console
State Active
Domain LivingRoom-PC
EH-Tcp
State Listen
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Using native Wi-Fi API version 2
Available access points count 1
Wi-Fi (2WIRE358)
SSID 2WIRE358
Frequency 2432000 kHz
Channel Number 5
Name 2WIRE358
Signal Strength/Quality 100
Security Enabled
State The interface is connected to a network
Dot11 Type Infrastructure BSS network
Network Connectible
Network Flags Currently Connected to this network
Cipher Algorithm to be used when joining this network AES-CCMP algorithm
Default Auth used to join this network for the first time 802.11i RSNA algorithm that uses PSK
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout (ms) 60,000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout (ms) 30,000
IEProxy Auto Detect No
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Sharing and Discovery
Network Discovery Enabled
File and Printer Sharing Enabled
File and printer sharing service Enabled
Simple File Sharing Enabled
Administrative Shares Enabled
Network access: Sharing and security model for local accounts Classic - local users authenticate as themselves
Adapters List
Microsoft Virtual WiFi Miniport Adapter #5
Connection Name Wireless Network Connection 13
DHCP enabled Yes
MAC Address 06-8E-F2-8B-29-2F
NETGEAR WNA1100 N150 Wireless USB Adapter
Connection-specific DNS Suffix gateway.2wire.net
Connection Name Wireless Network Connection 12
NetBIOS over TCPIP Yes
DHCP enabled Yes
MAC Address 00-8E-F2-8B-29-2F
IP Address 192.168.1.88
Subnet mask 255.255.255.0
Gateway server 192.168.1.254
DHCP 192.168.1.254
DNS Server 192.168.1.254
Realtek PCIe GBE Family Controller
Connection Name Local Area Connection
DHCP enabled Yes
MAC Address 00-22-68-60-4C-39
Network Shares
Users C:\Users
E Movies E:\
VPM Trial E:\CADlink\SignLab 9.1 Trial\VPM Trial
HP79B168 (HP Photosmart D110 series) HP79B168 (HP Photosmart D110 series),LocalsplOnly
Current TCP Connections
AppleMobileDeviceService.exe (2104)
Local 127.0.0.1:27015 LISTEN
Local 127.0.0.1:49152 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
C:\Program Files\AVG SafeGuard toolbar\vprot.exe (21112)
Local 192.168.1.88:50027 CLOSE-WAIT Remote 23.32.135.117:80 (Querying... ) (HTTP)
C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (22500)
Local 127.0.0.1:49943 ESTABLISHED Remote 127.0.0.1:4573 (Querying... )
C:\Program Files\Mozilla Firefox\firefox.exe (25324)
Local 127.0.0.1:54008 ESTABLISHED Remote 127.0.0.1:54009 (Querying... )
Local 127.0.0.1:54009 ESTABLISHED Remote 127.0.0.1:54008 (Querying... )
C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (21368)
Local 127.0.0.1:4380 LISTEN
Local 127.0.0.1:4370 LISTEN
daemonu.exe (3088)
Local 127.0.0.1:2559 LISTEN
HD-Network.exe (2632)
Local 192.168.1.88:49196 ESTABLISHED Remote 74.125.137.188:5228 (Querying... )
Local 127.0.0.1:9999 LISTEN
Local 127.0.0.1:6666 LISTEN
Local 127.0.0.1:7777 LISTEN
Local 127.0.0.1:5555 LISTEN
Local 192.168.1.88:54615 CLOSE-WAIT Remote 74.125.229.165:443 (Querying... ) (HTTPS)
lsass.exe (780)
Local 0.0.0.0:5004 LISTEN
lxddcoms.exe (2540)
Local 0.0.0.0:10004 LISTEN
mDNSResponder.exe (2228)
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:49152 (Querying... )
Local 127.0.0.1:5354 ESTABLISHED Remote 127.0.0.1:54888 (Querying... )
Local 127.0.0.1:5354 LISTEN
MediaServer.exe (3708)
Local 0.0.0.0:41952 LISTEN
MotoHelperService.exe (2692)
Local 127.0.0.1:4573 ESTABLISHED Remote 127.0.0.1:49943 (Querying... )
Local 127.0.0.1:4573 LISTEN
nvstreamsvc.exe (22488)
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49935 (Querying... )
Local 127.0.0.1:49935 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49936 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49937 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:49938 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49936 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49938 (Querying... )
Local 127.0.0.1:49939 ESTABLISHED Remote 127.0.0.1:5905 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49939 (Querying... )
Local 127.0.0.1:54928 SYN-SENT Remote 127.0.0.1:47986 (Querying... )
Local 127.0.0.1:5905 ESTABLISHED Remote 127.0.0.1:49937 (Querying... )
Local 0.0.0.0:47985 LISTEN
rpdsvc.exe (3184)
Local 127.0.0.1:49157 ESTABLISHED Remote 127.0.0.1:49158 (Querying... )
Local 0.0.0.0:20121 LISTEN
Local 127.0.0.1:49176 ESTABLISHED Remote 127.0.0.1:49175 (Querying... )
Local 127.0.0.1:49175 ESTABLISHED Remote 127.0.0.1:49176 (Querying... )
Local 127.0.0.1:20121 ESTABLISHED Remote 127.0.0.1:54926 (Querying... )
Local 127.0.0.1:49171 ESTABLISHED Remote 127.0.0.1:49172 (Querying... )
Local 127.0.0.1:49174 ESTABLISHED Remote 127.0.0.1:49173 (Querying... )
Local 127.0.0.1:49153 ESTABLISHED Remote 127.0.0.1:49154 (Querying... )
Local 127.0.0.1:49154 ESTABLISHED Remote 127.0.0.1:49153 (Querying... )
Local 127.0.0.1:49155 ESTABLISHED Remote 127.0.0.1:49156 (Querying... )
Local 127.0.0.1:49156 ESTABLISHED Remote 127.0.0.1:49155 (Querying... )
Local 127.0.0.1:49172 ESTABLISHED Remote 127.0.0.1:49171 (Querying... )
Local 127.0.0.1:49158 ESTABLISHED Remote 127.0.0.1:49157 (Querying... )
Local 127.0.0.1:49160 ESTABLISHED Remote 127.0.0.1:49161 (Querying... )
Local 127.0.0.1:49161 ESTABLISHED Remote 127.0.0.1:49160 (Querying... )
Local 127.0.0.1:49162 ESTABLISHED Remote 127.0.0.1:49163 (Querying... )
Local 127.0.0.1:49163 ESTABLISHED Remote 127.0.0.1:49162 (Querying... )
Local 127.0.0.1:49164 ESTABLISHED Remote 127.0.0.1:49165 (Querying... )
Local 127.0.0.1:49165 ESTABLISHED Remote 127.0.0.1:49164 (Querying... )
Local 127.0.0.1:49167 ESTABLISHED Remote 127.0.0.1:49168 (Querying... )
Local 127.0.0.1:49168 ESTABLISHED Remote 127.0.0.1:49167 (Querying... )
Local 127.0.0.1:49169 ESTABLISHED Remote 127.0.0.1:49170 (Querying... )
Local 127.0.0.1:49170 ESTABLISHED Remote 127.0.0.1:49169 (Querying... )
Local 127.0.0.1:49927 ESTABLISHED Remote 127.0.0.1:49928 (Querying... )
Local 127.0.0.1:49928 ESTABLISHED Remote 127.0.0.1:49927 (Querying... )
Local 127.0.0.1:54888 ESTABLISHED Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:49173 ESTABLISHED Remote 127.0.0.1:49174 (Querying... )
Local 127.0.0.1:54926 ESTABLISHED Remote 127.0.0.1:20121 (Querying... )
services.exe (736)
Local 0.0.0.0:5005 LISTEN
spoolsv.exe (2020)
Local 0.0.0.0:5003 LISTEN
svchost.exe (1320)
Local 0.0.0.0:135 (DCE) LISTEN
svchost.exe (1404)
Local 0.0.0.0:5001 LISTEN
svchost.exe (1548)
Local 0.0.0.0:5002 LISTEN
svchost.exe (1840)
Local 0.0.0.0:3390 LISTEN
System Process
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54875 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54890 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54886 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54881 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54885 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54884 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54883 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54882 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54880 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54877 (Querying... )
Local 127.0.0.1:20121 TIME-WAIT Remote 127.0.0.1:54838 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54876 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54874 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54841 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54872 (Querying... )
Local 127.0.0.1:2559 TIME-WAIT Remote 127.0.0.1:54873 (Querying... )
Local 127.0.0.1:54816 TIME-WAIT Remote 127.0.0.1:5354 (Querying... )
Local 127.0.0.1:54761 TIME-WAIT Remote 127.0.0.1:5354 (Querying... )
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 0.0.0.0:2869 LISTEN
Local 0.0.0.0:5357 LISTEN
Local 0.0.0.0:10243 LISTEN
Local 192.168.1.88:139 (NetBIOS session service) LISTEN
wininit.exe (688)
Local 0.0.0.0:5000 LISTEN
wmpnetwk.exe (5732)
Local 0.0.0.0:554 LISTEN
Generated with Speccy v1.24.632
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 22-12-2013 01
Ran by Living Room at 2013-12-23 08:11:08 Run:1
Running from C:\Users\Living Room\Downloads
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
URLSearchHook: HKCU - Default Value = {CFBFAE00-17A6-11D0-99CB-00C04FD64497}
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {442CF095-5D34-49AC-843F-8C19EA99DAFF} URL =
http://www.mysearchr...q={searchTerms}SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
http://mysearch.avg....fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll (IObit)
Toolbar: HKLM - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG SafeGuard toolbar\17.2.0.38\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
FF Plugin: @nielsen/FirefoxTracker - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll No File
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\
[email protected]FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
FF Extension: AVG SafeGuard toolbar - C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151232 2013-12-02] (IObit)
R2 vToolbarUpdater17.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544
S3 catchme; \??\C:\Users\LIVING~1\AppData\Local\Temp\catchme.sys [x]
S3 motandroidusb; System32\Drivers\motoandroid.sys [x]
S3 MREMP50; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS [x]
S3 MRESP50; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS [x]
S1 myueyqsz; \??\C:\Windows\system32\drivers\myueyqsz.sys [x]
*****************
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\ => Value not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{442CF095-5D34-49AC-843F-8C19EA99DAFF} => Key not found.
HKCR\Wow6432Node\CLSID\{442CF095-5D34-49AC-843F-8C19EA99DAFF} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKCR\Wow6432Node\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Key deleted successfully.
HKCR\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKCR\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} => Key deleted successfully.
HKCR\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{95B7759C-8C7F-4BF1-B163-73684A933233} => Value not found.
HKCR\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} => Key not found.
HKLM\Software\MozillaPlugins\@nielsen/FirefoxTracker => Key not found.
C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll not found.
"C:\Program Files\mozilla firefox\browser\searchplugins\safeguard-secure-search.xml" => not found.
C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => not found.
C:\Program Files\Mozilla Firefox\extensions\
[email protected] => Moved successfully.
C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => not found.
HKLM\Software\Mozilla\Firefox\Extensions\\avg@toolbar => Value not found.
C:\ProgramData\AVG SafeGuard toolbar\FireFoxExt\17.2.0.38 => not found.
LiveUpdateSvc => Service deleted successfully.
vToolbarUpdater17.2.0 => Service not found.
catchme => Service not found.
motandroidusb => Service not found.
MREMP50 => Service not found.
MRESP50 => Service not found.
myueyqsz => Service not found.
==== End of Fixlog ====
Rerunning of FRST after FIX was applied
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-12-2013 01
Ran by Living Room (administrator) on LIVINGROOM-PC on 23-12-2013 08:12:35
Running from C:\Users\Living Room\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(Emsi Software GmbH) C:\Program Files\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corp.) C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(Lexmark International, Inc.) C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
( ) C:\Windows\System32\lxddcoms.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Nitro PDF Software) C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
() C:\ProgramData\TVersity\Media Server\MediaServer.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(BlueStack Systems) C:\Program Files\BlueStacks\HD-Network.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-BlockDevice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(BlueStack Systems) C:\Program Files\BlueStacks\HD-SharedFolder.exe
() C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Spotify Ltd) C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Skillbrains) C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
() C:\Program Files\NETGEAR\WNA1100\WNA1100.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(RealNetworks, Inc.) C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\Update\realsched.exe [295512 2013-10-17] (RealNetworks, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [LightShot] - C:\Users\Living Room\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] ()
HKCU\...\Run: [Spotify] - C:\Users\Living Room\AppData\Roaming\Spotify\spotify.exe [5951488 2013-12-15] (Spotify Ltd)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Living Room\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-15] (Spotify Ltd)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Ad\...\Run: [swg] - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\Ad\...\Policies\system: [LogonHoursAction] 2
HKU\Ad\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Administrator\...\Policies\system: [LogonHoursAction] 2
HKU\Administrator\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\Mcx1-LIVINGROOM-PC.LivingRoom-PC\...\Winlogon: [Shell] C:\Windows\eHome\McrMgr.exe [ 2009-07-13] (Microsoft Corporation) <==== ATTENTION
AppInit_DLLs: C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [ 2013-07-27] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.microsoft...=ie&ar=iesearchHKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x0A32E1B72A7FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.com/igBHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.m...ash/swflash.cabHandler: linkscanner - No CLSID Value -
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357
FF Homepage: hxxp://www.google.com/ig
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1205146.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @MagellanGPS.com/CommunicationPlugin - C:\Program Files\Magellan\Magellan Communicator\npMgnPlg.dll (Magellan Navigation, Inc.)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 - C:\Program Files\Virtual Earth 3D\ ()
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Nitro\Reader 3\npnitromozilla.dll (Nitro PDF)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.6.14 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.5.1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.6.14 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=17.0.1.181 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @nsroblox.roblox.com/launcher - C:\Users\Living Room\AppData\Local\Roblox\Versions\version-28a069d7dccb4f92\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: CouponNetwork.com/CMDUniversalCouponPrintActivator - C:\Users\LIVING~1\AppData\Roaming\CATALI~2\NPBCSK~1.DLL (Catalina Marketing Corporation)
FF Extension: Play Pickle TextLinks - C:\Users\Living Room\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\
[email protected]FF Extension: Geocaching.com GPX Downloader - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\
[email protected]FF Extension: Adblock Plus - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Greasemonkey - C:\Users\Living Room\AppData\Roaming\Mozilla\Firefox\Profiles\3z8ppduy.default-1373299741357\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] - C:\Program Files\AVG\AVG2012\Firefox4\
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF HKLM\...\Firefox\Extensions: [{1EDB985D-7C9F-4b19-9E25-CCA4FDDC987A}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
Chrome:
=======
CHR HomePage: hxxp://mysearch.avg.com?cid={3676D089-D678-4B66-9CA8-EB83DE303D18}&mid=d162516e7ece47d6853fd16b2e84a5ca-9a17500a96d428a5cdb8b2643968b9a928fc107f&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2013-12-21 08:24:58&v=17.2.0.38&pid=safeguard&sg=&sap=hp
CHR RestoreOnStartup: "hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP&dt=070713", "
https://www.google.com/"CHR DefaultSearchKeyword: google.com
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_233.dll No File
CHR Plugin: (AVG Internet Security) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java Platform SE 6 U31) - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (RealPlayer G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll No File
CHR Plugin: (RealPlayer HTML5VideoShim Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (RealNetworks Chrome Background Extension Plug-In (32-bit) ) - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
CHR Plugin: (Unity Player) - C:\Users\Living Room\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Windows Activation Technologies) - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
CHR Extension: (Angry Birds) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0
CHR Extension: (YouTube) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Swiki) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\gikoeigmfnoggdlhnobkbbbkohiahbko\1.4_0
CHR Extension: (RealPlayer Downloader) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.1_0
CHR Extension: (Skype Click to Call) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.13.0.13771_0
CHR Extension: (Fieldrunners) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkpikhjbfbffdblahfidklcohlaeabak\1.0.0.5_0
CHR Extension: (AVG SafeGuard) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\17.2.0.38_1
CHR Extension: ( "name":"Advanced SystemCare Surfing Protection",) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0
CHR Extension: (Google Wallet) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0
CHR Extension: (Gmail) - C:\Users\Living Room\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM\...\Chrome\Extension: [gikoeigmfnoggdlhnobkbbbkohiahbko] - C:\Program Files\Swiki\chrome.crx
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx
CHR HKLM\...\Chrome\Extension: [joflpaafchojilpbjjbebljnikhkdhgf] - C:\ProgramData\wxDfast\joflpaafchojilpbjjbebljnikhkdhgf.crx
CHR HKLM\...\Chrome\Extension: [nfengeggddojhakldhlpjdlddgkkjkdd] - C:\Program Files\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
========================== Services (Whitelisted) =================
R2 a2AntiMalware; C:\Program Files\Emsisoft Anti-Malware\a2service.exe [3046224 2012-02-21] (Emsi Software GmbH)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 BingDesktopUpdate; C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-05-13] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-05-13] (BlueStack Systems, Inc.)
S3 jswpsapi; C:\Program Files\NETGEAR\WNA1100\jswpsapi.exe [960992 2010-03-22] (Atheros Communications, Inc.)
R2 lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [99248 2007-05-25] (Lexmark International, Inc.)
R2 lxdd_device; C:\Windows\system32\lxddcoms.exe [537520 2007-05-25] ( )
S2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-23] ()
S2 NETGEARGenieDaemon; C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [195400 2012-09-25] (NETGEAR)
R2 NitroReaderDriverReadSpool3; C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [196624 2012-10-30] (Nitro PDF Software)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14592288 2013-07-27] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-09-23] ()
R2 RealPlayer Desktop Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1418336 2013-10-17] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [29320 2013-09-25] ()
R2 TVersityMediaServer; C:\ProgramData\TVersity\Media Server\MediaServer.exe [1249064 2011-07-29] ()
R2 WSWNA1100; C:\Program Files\NETGEAR\WNA1100\WifiSvc.exe [297440 2011-07-28] ()
==================== Drivers (Whitelisted) ====================
S3 a2acc; C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys [51632 2011-11-02] (Emsi Software GmbH)
R1 A2DDA; C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [17904 2011-05-19] (Emsi Software GmbH)
R1 a2injectiondriver; C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys [34768 2011-11-02] (Emsi Software GmbH)
R1 a2util; C:\Program Files\Emsisoft Anti-Malware\a2util32.sys [11776 2010-05-05] (Emsi Software GmbH)
R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1564160 2010-10-11] (Atheros Communications, Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-05-13] (BlueStack Systems)
S3 D-Vitec; C:\Windows\System32\DRIVERS\dvitdcnt.sys [281344 2012-07-26] (D-vitec)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34592 2013-05-14] (NVIDIA Corporation)
R0 SCMNdisP; C:\Windows\System32\DRIVERS\scmndisp.sys [21472 2011-07-22] (Windows ® Win 7 DDK provider)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [172416 2010-11-20] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2010-11-20] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [296064 2010-11-20] (Microsoft Corporation)
S3 zghsdiag; C:\Windows\System32\DRIVERS\zghsdiag.sys [106752 2011-01-13] (ZTE Incorporated)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-23 08:12 - 2013-12-23 08:12 - 00026033 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-23 07:44 - 2013-12-23 07:44 - 00081616 _____ C:\Users\Living Room\Desktop\LIVINGROOM-PC.txt
2013-12-23 07:38 - 2013-12-23 07:39 - 00012082 _____ C:\Users\Living Room\Desktop\System Idle Process.txt
2013-12-23 01:05 - 2013-12-23 07:55 - 00216164 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-22 19:12 - 2013-12-23 07:26 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-22 18:48 - 2013-12-23 07:42 - 00000000 ____D C:\Program Files\Speccy
2013-12-22 18:32 - 2013-12-23 07:37 - 00012168 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-22 17:39 - 2013-12-23 07:35 - 00002036 _____ C:\VEW.txt
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:36 - 2013-12-22 12:37 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-21 20:48 - 2013-12-21 20:49 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-23 07:58 - 00000840 _____ C:\Windows\setupact.log
2013-12-21 00:37 - 2013-12-22 13:10 - 00011806 _____ C:\Windows\PFRO.log
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:28 - 2013-12-21 00:32 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-18 23:17 - 2013-12-18 23:43 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:27 - 2013-12-18 22:32 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:25 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 20:54 - 2013-12-18 20:56 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:52 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 14:51 - 2013-12-18 15:03 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:43 - 2013-12-18 14:44 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-15 23:54 - 2013-12-16 02:06 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:53 - 2013-12-23 07:59 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-15 23:51 - 2013-12-15 23:52 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:09 - 2013-12-15 16:14 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:20 - 2013-12-11 17:31 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2011-07-22 10:35 - 00021472 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\SCMNdisP.sys
2013-12-10 19:42 - 2008-05-15 02:28 - 00020384 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\jswpslwf.sys
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:08 - 2013-12-10 08:12 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:13 - 2013-12-18 22:14 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-10 07:12 - 2013-12-22 12:55 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-10 07:11 - 2013-12-22 12:55 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 22:00 - 2013-06-27 18:05 - 00024384 _____ (IObit) C:\Windows\system32\RegistryDefragBootTime.exe
2013-12-09 21:47 - 2013-12-22 12:21 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-09 21:46 - 2013-12-22 12:21 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\ProductData
2013-12-09 21:40 - 2013-12-18 21:05 - 00000000 ____D C:\ProgramData\IObit
2013-12-09 21:40 - 2013-12-18 21:02 - 00000000 ____D C:\Program Files\IObit
2013-12-09 21:40 - 2013-12-09 21:41 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:38 - 2013-12-09 21:39 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:25 - 2013-12-09 17:28 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 10:53 - 2013-12-09 11:09 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-05 23:19 - 2013-12-05 23:24 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url
==================== One Month Modified Files and Folders =======
2013-12-23 08:12 - 2013-12-23 08:12 - 00026033 _____ C:\Users\Living Room\Downloads\FRST.txt
2013-12-23 08:08 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-23 08:08 - 2009-07-13 23:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-23 08:07 - 2011-03-07 07:01 - 00000000 ____D C:\ProgramData\MFAData
2013-12-23 08:06 - 2013-11-01 09:56 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-23 08:06 - 2013-04-20 13:17 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Skype
2013-12-23 08:06 - 2013-04-20 13:16 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 07:59 - 2013-12-15 23:53 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Spotify
2013-12-23 07:59 - 2011-03-22 09:06 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-23 07:58 - 2013-12-21 00:37 - 00000840 _____ C:\Windows\setupact.log
2013-12-23 07:58 - 2011-06-04 21:09 - 00586667 _____ C:\Windows\system32\TVersityMediaServer.log
2013-12-23 07:58 - 2011-03-08 03:19 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-23 07:58 - 2009-07-13 23:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-23 07:56 - 2013-06-06 09:27 - 01331891 _____ C:\Windows\WindowsUpdate.log
2013-12-23 07:55 - 2013-12-23 01:05 - 00216164 _____ C:\Users\Living Room\Desktop\rerun for newer reply on living room pc.txt
2013-12-23 07:55 - 2013-01-08 18:47 - 00000000 ____D C:\Users\Living Room\AppData\Local\CrashDumps
2013-12-23 07:44 - 2013-12-23 07:44 - 00081616 _____ C:\Users\Living Room\Desktop\LIVINGROOM-PC.txt
2013-12-23 07:43 - 2013-08-23 10:58 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Nitro PDF
2013-12-23 07:42 - 2013-12-22 18:48 - 00000000 ____D C:\Program Files\Speccy
2013-12-23 07:39 - 2013-12-23 07:38 - 00012082 _____ C:\Users\Living Room\Desktop\System Idle Process.txt
2013-12-23 07:37 - 2013-12-22 18:32 - 00012168 _____ C:\Users\Living Room\Downloads\System Idle Process.txt
2013-12-23 07:35 - 2013-12-22 17:39 - 00002036 _____ C:\VEW.txt
2013-12-23 07:26 - 2013-12-22 19:12 - 00000000 ____D C:\Users\Living Room\Desktop\living room cleanup
2013-12-23 07:26 - 2013-10-06 17:02 - 00000000 ____D C:\Users\Living Room\Desktop\Cache stuff
2013-12-23 07:24 - 2013-07-07 12:56 - 00000000 ____D C:\Users\Living Room\Desktop\Bobs stuff
2013-12-23 07:21 - 2011-03-22 09:06 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-23 05:43 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-S-1-5-21-21828565-3005677120-1819634571-1001.job
2013-12-23 05:37 - 2012-03-23 08:27 - 00000388 _____ C:\Windows\Tasks\update-sys.job
2013-12-23 01:12 - 2012-01-02 21:18 - 00001945 _____ C:\Windows\epplauncher.mif
2013-12-23 00:39 - 2013-12-23 00:39 - 00000000 ____D C:\_OTL
2013-12-22 16:34 - 2012-01-17 23:35 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\.minecraft
2013-12-22 13:10 - 2013-12-21 00:37 - 00011806 _____ C:\Windows\PFRO.log
2013-12-22 12:55 - 2013-12-22 12:55 - 00000000 _____ C:\asc_rdflag
2013-12-22 12:55 - 2013-12-10 07:12 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00106496 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2013-12-22 12:55 - 2013-12-10 07:11 - 00032768 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2013-12-22 12:55 - 2013-06-06 08:05 - 00000000 ____D C:\Users\Administrator
2013-12-22 12:55 - 2012-05-13 00:21 - 00000000 ____D C:\Users\UpdatusUser.LivingRoom-PC
2013-12-22 12:55 - 2012-02-18 01:19 - 00000000 ____D C:\Users\Mcx1-LIVINGROOM-PC.LivingRoom-PC
2013-12-22 12:55 - 2011-03-18 12:54 - 00000000 ____D C:\Users\Ad
2013-12-22 12:55 - 2011-03-06 19:47 - 00000000 ____D C:\Users\Living Room
2013-12-22 12:37 - 2013-12-22 12:36 - 00033870 _____ C:\Users\Living Room\Downloads\Addition.txt
2013-12-22 12:34 - 2013-12-22 12:34 - 00000000 ____D C:\FRST
2013-12-22 12:26 - 2013-12-22 12:26 - 04779896 _____ (Piriform Ltd) C:\Users\Living Room\Downloads\spsetup124.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 02799296 _____ (Sysinternals - www.sysinternals.com) C:\Users\Living Room\Downloads\procexp.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 01061231 _____ (Farbar) C:\Users\Living Room\Downloads\FRST.exe
2013-12-22 12:25 - 2013-12-22 12:25 - 00061440 _____ ( ) C:\Users\Living Room\Downloads\VEW.exe
2013-12-22 12:21 - 2013-12-09 21:47 - 00106496 _____ C:\Windows\system32\config\SAM.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 58535936 _____ C:\Windows\system32\config\SOFTWARE.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 05206016 _____ C:\Windows\system32\config\DEFAULT.iobit
2013-12-22 12:21 - 2013-12-09 21:46 - 00032768 _____ C:\Windows\system32\config\SECURITY.iobit
2013-12-21 20:51 - 2012-07-18 00:01 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-21 20:49 - 2013-12-21 20:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Living Room\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-12-21 08:25 - 2013-12-21 08:25 - 00000000 ____D C:\ProgramData\AVG Security Toolbar
2013-12-21 08:25 - 2013-11-15 16:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-21 07:45 - 2011-03-06 19:50 - 00779306 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-21 00:51 - 2013-12-21 00:51 - 00174672 _____ C:\Users\Living Room\Downloads\OTL.Txt
2013-12-21 00:37 - 2013-12-21 00:37 - 00000000 _____ C:\Windows\setuperr.log
2013-12-21 00:37 - 2012-08-20 19:42 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-21 00:32 - 2013-12-21 00:28 - 00000000 ____D C:\AdwCleaner
2013-12-21 00:32 - 2013-03-14 16:28 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Uniblue
2013-12-21 00:31 - 2013-03-14 16:28 - 00000000 ____D C:\Program Files\Uniblue
2013-12-21 00:26 - 2013-08-27 20:58 - 05155033 _____ (Swearware) C:\Users\Living Room\Downloads\ComboFix.exe
2013-12-21 00:25 - 2013-12-21 00:25 - 01226750 _____ C:\Users\Living Room\Downloads\AdwCleaner.exe
2013-12-20 14:32 - 2011-03-06 22:00 - 00000000 ____D C:\Windows\Panther
2013-12-20 11:36 - 2013-09-07 13:39 - 00001371 _____ C:\Users\Living Room\Desktop\ROBLOX Studio 2013.lnk
2013-12-20 11:36 - 2013-09-05 16:52 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2013-12-19 01:20 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\rescache
2013-12-19 01:05 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-12-19 00:38 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-12-18 23:43 - 2013-12-18 23:17 - 1459062028 _____ C:\Users\Living Room\Downloads\Don.Jon.2013.HDRip.X264.AC3-PLAYNOW.mkv
2013-12-18 22:32 - 2013-12-18 22:27 - 00000000 ____D C:\Windows\system32\MRT
2013-12-18 22:14 - 2013-12-10 07:13 - 00324112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-18 21:27 - 2011-09-02 08:27 - 00000000 ____D C:\Windows\Minidump
2013-12-18 21:24 - 2013-12-18 21:24 - 14356992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 13761536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02877952 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-18 21:24 - 2013-12-18 21:24 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 01140736 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-18 21:24 - 2013-12-18 21:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-18 21:24 - 2013-12-18 21:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-18 21:23 - 2013-12-18 21:23 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-18 21:23 - 2013-12-18 21:23 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-18 21:22 - 2013-12-18 21:22 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-18 21:22 - 2013-12-18 21:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-18 21:21 - 2013-12-18 21:21 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-18 21:21 - 2013-12-18 21:21 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-18 21:21 - 2013-12-18 21:21 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-18 21:21 - 2013-12-18 21:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\ProductData
2013-12-18 21:05 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\IObit
2013-12-18 21:03 - 2013-12-18 21:03 - 00001155 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
2013-12-18 21:03 - 2013-12-18 21:03 - 00000000 ____D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
2013-12-18 21:02 - 2013-12-09 21:40 - 00000000 ____D C:\Program Files\IObit
2013-12-18 21:01 - 2013-11-22 12:39 - 00000138 _____ C:\Users\Living Room\Desktop\Xmas Turkey Orders.txt
2013-12-18 20:56 - 2013-12-18 20:54 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup(1).exe
2013-12-18 20:54 - 2013-12-18 20:52 - 62687640 _____ (IObit ) C:\Users\Living Room\Downloads\asc-ultimate7-setup.exe
2013-12-18 15:03 - 2013-12-18 14:51 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to(1).mp4
2013-12-18 14:44 - 2013-12-18 14:43 - 00000000 ____D C:\Users\Living Room\Desktop\Scanned DD214
2013-12-18 14:44 - 2013-08-26 15:59 - 00000000 ____D C:\Users\Living Room\Desktop\homework
2013-12-18 14:43 - 2013-10-06 17:13 - 00000000 ____D C:\Users\Living Room\Desktop\Tyler stuff
2013-12-18 14:28 - 2011-05-29 11:46 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\vlc
2013-12-16 02:06 - 2013-12-15 23:54 - 00000000 ____D C:\Users\Living Room\AppData\Local\Spotify
2013-12-15 23:54 - 2013-12-15 23:54 - 00001840 _____ C:\Users\Living Room\Desktop\Spotify.lnk
2013-12-15 23:54 - 2013-12-15 23:54 - 00001826 _____ C:\Users\Living Room\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2013-12-15 23:52 - 2013-12-15 23:51 - 31412160 _____ (Spotify Ltd) C:\Users\Living Room\Downloads\Spotify Installer.exe
2013-12-15 16:14 - 2013-12-15 16:09 - 662799896 _____ C:\Users\Living Room\Documents\clip0051.avi
2013-12-14 16:42 - 2013-12-14 16:42 - 00180081 _____ C:\Users\Living Room\Downloads\raspbmc-win32(1).zip
2013-12-14 02:23 - 2013-12-14 02:23 - 00002130 _____ C:\Users\Public\Desktop\Google Earth.lnk
2013-12-14 02:23 - 2011-03-22 09:06 - 00000000 ____D C:\Program Files\Google
2013-12-13 09:19 - 2013-12-13 09:19 - 00149736 _____ C:\Users\Living Room\Downloads\InstagramSetup.exe
2013-12-11 17:31 - 2013-12-11 17:20 - 519465404 _____ C:\Users\Living Room\Downloads\4SB9-Iwatchonline.to.mp4
2013-12-10 23:21 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\system32\NDF
2013-12-10 22:06 - 2013-11-01 09:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-12-10 22:06 - 2013-11-01 09:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-12-10 19:42 - 2013-12-10 19:42 - 00000000 ____D C:\Program Files\NETGEAR
2013-12-10 19:42 - 2012-01-16 19:47 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-12-10 19:36 - 2013-12-10 19:36 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2013-12-10 08:21 - 2013-12-10 08:21 - 00000000 ____D C:\Users\Living Room\Downloads\NETGEAR
2013-12-10 08:12 - 2013-12-10 08:08 - 66112265 _____ C:\Users\Living Room\Downloads\WNA1100_Setup_v2.1.0.2.zip
2013-12-10 07:28 - 2011-05-14 12:59 - 00007607 _____ C:\Users\Living Room\AppData\Local\resmon.resmoncfg
2013-12-10 07:19 - 2013-12-10 07:19 - 00073216 _____ C:\Users\Living Room\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-10 07:19 - 2011-05-15 20:54 - 00000000 ___RD C:\Users\Living Room\Virtual Machines
2013-12-09 22:47 - 2013-12-09 22:47 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-12-09 22:47 - 2013-12-09 22:47 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-12-09 22:47 - 2013-12-09 22:47 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-12-09 22:41 - 2013-12-09 22:41 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-12-09 22:41 - 2013-12-09 22:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-12-09 22:14 - 2013-12-09 22:14 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-12-09 22:12 - 2013-12-09 22:12 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-12-09 22:11 - 2013-12-09 22:11 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-12-09 22:11 - 2013-12-09 22:11 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-12-09 22:11 - 2013-12-09 22:11 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-12-09 22:10 - 2013-12-09 22:10 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-12-09 22:10 - 2013-12-09 22:10 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-12-09 22:09 - 2013-12-09 22:09 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-12-09 22:09 - 2013-12-09 22:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-12-09 22:08 - 2013-12-09 22:08 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-12-09 22:08 - 2013-12-09 22:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-12-09 22:06 - 2013-12-09 22:06 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-09 22:05 - 2011-10-02 08:16 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-12-09 22:04 - 2013-12-09 22:04 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-12-09 22:04 - 2013-12-09 22:04 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-12-09 22:04 - 2013-12-09 22:04 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-12-09 22:03 - 2013-12-09 22:03 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-12-09 22:02 - 2013-12-09 22:02 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-12-09 22:02 - 2013-12-09 22:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-12-09 21:47 - 2013-12-09 21:47 - 32690176 _____ C:\Windows\system32\config\components.iobit
2013-12-09 21:41 - 2013-12-09 21:40 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\IObit
2013-12-09 21:41 - 2011-06-03 13:10 - 00000000 ____D C:\Users\Living Room\AppData\Roaming\Apple Computer
2013-12-09 21:40 - 2013-12-09 21:40 - 00000000 ____D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-12-09 21:39 - 2013-12-09 21:38 - 32182752 _____ (IObit ) C:\Users\Living Room\Downloads\asc7setup.exe
2013-12-09 21:36 - 2013-12-09 21:36 - 00524320 _____ C:\Users\Living Room\Downloads\advanced systemcare setup.exe
2013-12-09 17:28 - 2013-12-09 17:25 - 192944719 _____ C:\Users\Living Room\Downloads\Santa Claus coming to Town.avi.flv
2013-12-09 11:59 - 2013-12-09 11:59 - 41172090 _____ C:\Users\Living Room\Documents\clip0050.avi
2013-12-09 11:09 - 2013-12-09 10:53 - 1286963157 _____ C:\Users\Living Room\Downloads\Gravity 2013 DVDSCR x264 AC3 TiTAN.mkv
2013-12-08 20:52 - 2013-09-12 14:49 - 00003728 _____ C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2013-12-05 23:24 - 2013-12-05 23:19 - 00009728 _____ C:\Users\Living Room\Downloads\420 hitlist.xls
2013-12-01 17:53 - 2013-12-01 17:53 - 00602112 _____ (OldTimer Tools) C:\Users\Living Room\Downloads\OTL.exe
2013-12-01 14:42 - 2011-03-07 23:25 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-30 20:59 - 2012-05-01 12:46 - 00000000 ____D C:\Program Files\CCleaner
2013-11-30 20:29 - 2013-11-30 20:29 - 00208496 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\DCOM-KB827363-X86-ENU.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00166512 _____ (Microsoft Corporation) C:\Users\Living Room\Downloads\KB824146Scan.exe
2013-11-30 20:29 - 2013-11-30 20:29 - 00000000 ____D C:\Program Files\KB824146Scan
2013-11-26 16:50 - 2013-11-26 16:50 - 00001100 _____ C:\Users\Living Room\Desktop\Mozilla Firefox.lnk
2013-11-25 11:03 - 2013-11-25 11:03 - 00000188 _____ C:\Users\Living Room\Desktop\turkey smoker.url
Files to move or delete:
====================
C:\Users\Ad\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_loginapplet_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE.dat
C:\Users\Living Room\jagex_cl_runescape_LIVE1.dat
C:\Users\Living Room\random.dat
Some content of TEMP:
====================
C:\Users\Living Room\AppData\Local\temp\Quarantine.exe
C:\Users\Living Room\AppData\Local\temp\UNINSTALL.EXE
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-20 02:16
==================== End Of Log ============================