Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

.NET 4.5.2 and Visual C++ 2010 install failure

Started by Reascr , Aug 17 2014 02:09 AM

  • Please log in to reply

#1
Reascr
Posted 17 August 2014 - 02:09 AM

Reascr

    Member

  • Member
  • PipPip
  • 46 posts

I was trying to get Nosgoth to work, so I contacted Square Enix support.

 

I was told to uninstall and reinstall Visual C++, but when that didn't reinstall I was told to uninstall and reinstall my .NET framework. I was told it might be from malware, but I've run scans with Bitdefender (Which found 17 things and removed them) and Spybot S&D which found some adware and removed it.

 

Really appreciate help, as I need to get this working again! (Tons of stuff doesn't work anymore because of it)

 

They keep on insisting that there's malware too, yet when I tell them I can't easily uninstall it they keep telling me to run Bitdefender, despite the fact that I can't run any anti-virus on top of this not working (Bitdefender doesn't work due to there being no .NET framework, Malwarebytes because of malware, most likely. Only Spybot S&D still works, which doesn't find anything)


  • 0

Advertisements

#2
SleepyDude
Posted 17 August 2014 - 12:40 PM

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,975 posts

Hello Reascr :welcome:

My name around here is SleepyDude and I will be helping you with your Computer problem. I know that having a computer with problems can be very frustrating but I will do my best to help you fixing the issue.

Sometimes this can be a long process, it's very important that you stay with me and follow all my instructions to the letter until I declare your machine is clean.

I have compiled a list of guidelines you must take in consideration so that the helping process goes smooth for you and for me:

  • Please perform all steps in the order they are listed in each set of instructions
  • Don't install/uninstall any software or run any other cleaning tools besides the ones I ask you to use
    • Running other programs can interfere with the tools we use and have unpredicted results. Also I need to know what is going on with your machine at any time
  • If possible avoid using the computer for other tasks until we finish the cleaning process
    • The reason for this is because it can make the malware infection worst and more difficult to clean. Some malware can download updates from the internet when you use the computer
  • Please don't attach your logs instead Copy & Paste the information to your post unless specifically instructed to do so
  • Please read every post completely before doing anything if you have some doubts or questions please ask before continuing

IMPORTANT: At GeeksToGo we do our best to help you solving the problem but sometimes things don't go as planned. To be safe than sorry you should Backup your important data to a safe place, anywhere except on the computer with problems.

The all fixing process need to be executed from a user account with Administrator privileges also some of the tasks need to be executed in Safe Mode, you should save or print the instructions for use when you don't have access to the forum.

 

«»«»«»

 

Sounds like you have a challenging problem, let's see... can you execute the following?

 

Step 1 - Farbar Recovery Scan Tool (FRST)

  • Download FRST or FRST x64 and save it to the Desktop.
  • (Please pick the version that matches your operating system's bit type. If you don't know which version matches your system, try FRST if it say that is not compatible with your OS you have to use FRST64
  • Execute FRST/FRST64 right click on the icon FRST.gif and choose Run as Administrator. Make sure all other windows are closed.
    (When the Tool opens for the first time you must click Yes on the disclaimer.)
    FRST.png
  • Press Scan button.
  • It will produce a log called (FRST.txt) in the same directory the Tool is run from.
  • The first time the Tool is run, it makes also another log (Addition.txt).
  • Please copy and paste the logs to your post.

.
Things I would like to see in your next reply:

  • The FRST.txt log and Addition.txt

 


  • 0

#3
Reascr
Posted 17 August 2014 - 12:52 PM

Reascr

    Member

  • Topic Starter
  • Member
  • PipPip
  • 46 posts

Here's my FRST Log

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-08-2014 04
Ran by Owner (administrator) on OWNER-PC on 17-08-2014 11:50:50
Running from C:\Users\Owner\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\AMD\amdacpusrsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) F:\Malwarebytes Anti-Malware\mbamscheduler.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe
(Malwarebytes Corporation) F:\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Program Files\pcmax\pcmax.exe
() C:\Program Files (x86)\SVP\SVPMgr.exe
(Skillbrains) C:\Users\Owner\AppData\Local\Skillbrains\lightshot\5.1.4.6\Lightshot.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
() C:\Windows\runSW.exe
() C:\Program Files (x86)\Belkin\F9L1101\V1\PBN.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Realtek) C:\Windows\SwUSB.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwtxapps.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(TorchMedia Inc.) C:\Users\Owner\AppData\Local\Torch\Update\TorchCrashHandler.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
() C:\Program Files (x86)\Belkin\F9L1101\V1\wlansrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Linksys WUSB6300\WifiSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Waterfox Ltd) C:\Program Files\Waterfox\waterfox.exe
(Mozilla Corporation) C:\Program Files\Waterfox\plugin-container.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-23] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [GamecomSound] => C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe [817440 2014-01-21] ()
HKLM\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79864 2014-05-25] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1569536 2014-08-13] (Bitdefender)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79864 2014-05-25] ()
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-07-15] (LogMeIn Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\.DEFAULT\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1937600 2014-08-13] (Valve Corporation)
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [EvolveClient] => C:\Program Files\Echobit\Evolve\EvolveClient.exe [3325344 2014-07-30] (Echobit LLC)
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [LightShot] => C:\Users\Owner\AppData\Local\Skillbrains\lightshot\Lightshot.exe [226560 2014-07-01] ()
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79864 2014-05-25] ()
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [SVPMgr] => C:\Program Files (x86)\SVP\SVPMgr.exe [962048 2014-04-10] ()
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [814064 2014-08-13] (Bitdefender)
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [Lantern] => C:\Users\Owner\AppData\Roaming\Lantern\Lantern.exe [236568 2014-08-12] ()
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\system32\Macromed\Flash\FlashUtil64_14_0_0_145_Plugin.exe [538288 2014-07-11] (Adobe Systems Incorporated)
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\MountPoints2: {8c68cb64-0bc8-11e4-afd3-b4750e6e655e} - E:\LaunchEAWG.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Belkin USB Wireless Adaptor Utility.lnk
ShortcutTarget: Belkin USB Wireless Adaptor Utility.lnk -> C:\Program Files (x86)\Belkin\F9L1101\V1\PBN.exe ()
ShellIconOverlayIdentifiers: __SafeBox1 -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
ShellIconOverlayIdentifiers: __SafeBox2 -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
ShellIconOverlayIdentifiers: __SafeBox3 -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
ShellIconOverlayIdentifiers: __SafeBox4 -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll (Bitdefender)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x61A158B1C34ACF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft....Box&FORM=IE11SR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

FireFox:
========
FF ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF Homepage: about:home
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: TorchVLC -> C:\Users\Owner\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @nsroblox.roblox.com/launcher -> C:\Program Files (x86)\Roblox\Versions\version-b3ae331dfaef4117\\NPRobloxProxy.dll ( ROBLOX Corporation)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Owner\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF Extension: Lantern Proxy Configurator - C:\Users\Owner\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\[email protected] [2014-08-13]
FF Extension: WOT - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-03-28]
FF Extension: Firefox Old Version Update Hotfix - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\Extensions\[email protected] [2014-07-16]
FF Extension: MEGA - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\Extensions\[email protected] [2014-06-16]
FF Extension: Enhanced Steam - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\Extensions\[email protected] [2014-06-12]
FF Extension: Reddit Enhancement Suite - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\Extensions\[email protected] [2014-04-03]
FF Extension: NASA Night Launch - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\Extensions\[email protected] [2014-05-29]
FF Extension: Adblock Plus - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-28]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-08-13]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-08-13]
FF HKLM-x32\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKCU\...\Firefox\Extensions: [{250B358A-73F5-566C-D1F8-F9288F1A6EA6}] - C:\Program Files (x86)\ViewPassword-soft\171.xpi

Chrome:
=======
CHR HomePage:
CHR DefaultSearchProvider: name
CHR Extension: (Google Docs) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-28]
CHR Extension: (Google Drive) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-28]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-24]
CHR Extension: (YouTube) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-28]
CHR Extension: (Adblock Plus) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-03-30]
CHR Extension: (Google Search) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-28]
CHR Extension: (CostMin) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekcbeedokankiabmldepolnjhffnbmno [2014-05-30]
CHR Extension: (Bitdefender Wallet) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabcmochhfpldjekobfaaggijgohadih [2014-08-13]
CHR Extension: (Heroes & Generals) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbophcdhblbipoaacgchllkobdaolpge [2014-05-11]
CHR Extension: (Word Filter) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhcjejiphdooogohnbfompmnglmgeiol [2014-06-18]
CHR Extension: (Google Wallet) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-28]
CHR Extension: (Bitdefender QuickScan) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2014-07-13]
CHR Extension: (Gmail) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-28]
CHR Extension: (Canvas Rider) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk [2014-03-30]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpusrsvc; C:\AMD\amdacpusrsvc.exe [82432 2014-04-17] () [File not signed]
S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [77632 2014-06-06] (Bitdefender)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-08-09] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1579936 2014-07-30] (Echobit LLC)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MBAMScheduler; F:\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; F:\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 pcmaxservice; C:\Program Files\pcmax\pcmax.exe [249024 2014-05-25] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-06-28] ()
R2 RunSwUSB; C:\Windows\runSW.exe [44104 2013-05-23] ()
R2 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2014-05-29] (Microsoft Corporation) [File not signed]
R2 TorchCrashHandler; C:\Users\Owner\AppData\Local\Torch\Update\TorchCrashHandler.exe [1216520 2014-07-09] (TorchMedia Inc.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-06-12] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1513952 2014-08-13] (Bitdefender)
R2 WLANBelkinService; C:\Program Files (x86)\Belkin\F9L1101\V1\wlansrv.exe [86016 2012-10-05] () [File not signed]
R2 WSWUSB6300; C:\Program Files (x86)\Linksys WUSB6300\WifiSvc.exe [312144 2013-07-22] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [274656 2014-04-17] (Advanced Micro Devices)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2013-12-02] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2013-12-02] (BitDefender)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2013-11-13] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [494864 2013-08-29] (Intel Corporation)
R3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2014-03-28] (Echobit, LLC)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-07-13] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
S3 Linksys_adapter_H; C:\Windows\System32\DRIVERS\AE2500w764.sys [1254464 2011-03-30] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-17] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
R3 PlantronicsGC; C:\Windows\System32\drivers\PLTGC.sys [1328128 2013-02-07] (C-Media Electronics Inc)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13480 2014-06-09] ()
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1041000 2012-02-22] (Realtek Semiconductor Corporation                           )
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-07-14] (Duplex Secure Ltd.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-08-07] (BitDefender S.R.L.)
U3 aph9pnrl; C:\Windows\System32\Drivers\aph9pnrl.sys [0 ] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 11:50 - 2014-08-17 11:50 - 00027771 _____ () C:\Users\Owner\Downloads\FRST.txt
2014-08-17 11:49 - 2014-08-17 11:50 - 00000000 ____D () C:\FRST
2014-08-17 11:49 - 2014-08-17 11:49 - 02101760 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe
2014-08-17 11:49 - 2014-08-17 11:49 - 01093632 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe
2014-08-17 00:59 - 2014-08-17 01:00 - 69999448 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP452-KB2901907-x86-x64-AllOS-ENU.exe
2014-08-17 00:57 - 2014-08-17 00:57 - 01145272 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\winexpress_full.exe
2014-08-16 23:55 - 2014-08-16 23:56 - 43000680 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx40_Client_x86_x64.exe
2014-08-16 23:50 - 2014-08-16 23:50 - 01118920 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP452-KB2901954-Web(1).exe
2014-08-16 23:45 - 2014-08-16 23:45 - 01118920 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP452-KB2901954-Web.exe
2014-08-16 23:28 - 2014-08-16 23:28 - 50449456 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx40_Full_x86_x64(1).exe
2014-08-16 23:25 - 2014-08-16 23:25 - 50449456 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx40_Full_x86_x64.exe
2014-08-16 23:22 - 2014-08-16 23:22 - 70087104 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP451-KB2858728-x86-x64-AllOS-ENU.exe
2014-08-16 23:20 - 2014-08-16 23:20 - 00000000 ____D () C:\Users\Owner\Documents\dotnetfx_cleanup_tool
2014-08-16 23:16 - 2014-08-16 23:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-08-16 23:16 - 2014-08-16 23:16 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-08-16 23:15 - 2014-08-17 03:30 - 00000280 _____ () C:\Windows\setupact.log
2014-08-16 23:15 - 2014-08-16 23:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-16 23:14 - 2014-08-17 11:47 - 00001528 _____ () C:\Windows\runSW.log
2014-08-16 23:07 - 2014-08-16 23:07 - 00207842 _____ () C:\Users\Owner\Documents\cc_20140816_230700.reg
2014-08-16 23:06 - 2014-08-16 23:06 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-08-16 23:06 - 2014-08-16 23:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-16 23:05 - 2014-08-16 23:05 - 04814696 _____ (Piriform Ltd) C:\Users\Owner\Downloads\ccsetup416pro.exe
2014-08-16 23:03 - 2014-08-16 23:03 - 01431545 _____ () C:\Users\Owner\Desktop\FixDotNet20140817060254851.cab
2014-08-16 23:02 - 2014-08-16 23:02 - 00879096 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NetFxRepairTool.exe
2014-08-16 23:00 - 2014-08-16 23:00 - 00000522 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-16 22:59 - 2014-08-16 22:59 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Owner\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-16 22:50 - 2014-08-16 22:50 - 00985600 _____ () C:\Users\Owner\Downloads\MicrosoftFixit50123.msi
2014-08-15 19:55 - 2014-08-15 19:55 - 00000098 _____ () C:\Users\Owner\AppData\Roaming\LauncherSettings_live.cfg
2014-08-15 19:50 - 2014-08-15 19:50 - 00000040 _____ () C:\Users\Owner\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-08-15 19:50 - 2014-08-15 19:50 - 00000000 ____D () C:\Users\Owner\Documents\theHunter
2014-08-15 19:50 - 2014-08-15 19:50 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\theHunter
2014-08-15 19:50 - 2014-08-15 19:50 - 00000000 ____D () C:\Users\Owner\AppData\Local\theHunter
2014-08-15 19:46 - 2014-08-15 19:46 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\theHunterSteam
2014-08-15 19:46 - 2014-08-15 19:46 - 00000000 ____D () C:\ProgramData\Hunter
2014-08-15 19:21 - 2014-08-15 19:21 - 00270848 _____ (Secure By Design Inc.) C:\Users\Owner\Downloads\Ninite NET Installer.exe
2014-08-15 14:39 - 2014-08-15 14:38 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140815-143955.backup
2014-08-15 14:38 - 2014-07-13 17:45 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140815-143817.backup
2014-08-15 13:39 - 2014-08-15 13:39 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-08-15 13:38 - 2014-08-15 14:33 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-15 13:38 - 2014-08-15 13:40 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-15 13:38 - 2014-08-15 13:38 - 00001395 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-08-15 13:38 - 2014-08-15 13:38 - 00001383 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-08-15 13:38 - 2014-08-15 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-08-15 13:38 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-08-15 13:37 - 2014-08-15 13:37 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Owner\Downloads\spybot-2.4.exe
2014-08-15 13:34 - 2014-08-15 13:34 - 00204738 _____ () C:\Users\Owner\Downloads\Extras.Txt
2014-08-15 13:34 - 2014-08-15 13:34 - 00161964 _____ () C:\Users\Owner\Downloads\OTL.Txt
2014-08-15 13:29 - 2014-08-15 13:29 - 00602112 _____ (OldTimer Tools) C:\Users\Owner\Downloads\OTL.exe
2014-08-15 13:25 - 2014-08-15 13:25 - 01005568 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx45_Full_setup(1).exe
2014-08-15 13:22 - 2014-08-15 14:23 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-15 13:22 - 2014-08-15 13:22 - 04755832 _____ (AVG Technologies) C:\Users\Owner\Downloads\avg_free_stb_all_2014_4744_cnet.exe
2014-08-15 13:22 - 2014-08-15 13:22 - 00000000 ____D () C:\Users\Owner\AppData\Local\MFAData
2014-08-15 13:22 - 2014-08-15 13:22 - 00000000 ____D () C:\Users\Owner\AppData\Local\Avg2014
2014-08-15 13:14 - 2014-08-15 13:14 - 01005568 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx45_Full_setup.exe
2014-08-14 14:27 - 2014-08-14 14:27 - 00003308 _____ () C:\Windows\System32\Tasks\{2232128A-558E-460C-AFE3-A44578D8108A}
2014-08-14 11:05 - 2014-08-14 11:05 - 05718872 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\vcredist_x64.exe
2014-08-14 10:55 - 2014-08-14 10:56 - 05073240 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\vcredist_x86.exe
2014-08-14 10:55 - 2014-08-14 10:55 - 00003308 _____ () C:\Windows\System32\Tasks\{0AA996B7-6FE7-4126-8414-AA1FF9CF404B}
2014-08-14 10:48 - 2014-08-14 10:48 - 00000000 ____D () C:\Users\Owner\AppData\Local\bdch
2014-08-14 10:48 - 2014-08-14 10:48 - 00000000 ____D () C:\ProgramData\bdch
2014-08-13 14:56 - 2014-08-17 00:25 - 00000000 ____D () C:\Users\Owner\.lantern
2014-08-13 14:56 - 2014-08-13 14:56 - 00001891 _____ () C:\Users\Public\Desktop\Lantern.lnk
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\.littleshoot
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\.jnaerator
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lantern
2014-08-13 14:55 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Lantern
2014-08-13 14:55 - 2014-08-13 14:55 - 14854168 _____ (Team Lantern) C:\Users\Owner\Downloads\lantern-installer.exe
2014-08-13 12:27 - 2014-08-13 12:27 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2014-08-13 12:12 - 2014-08-16 23:30 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml
2014-08-13 11:59 - 2014-08-13 11:59 - 00581204 _____ () C:\ProgramData\1407956016.bdinstall.bin
2014-08-13 11:57 - 2014-08-13 11:57 - 00002126 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk
2014-08-13 11:57 - 2014-08-13 11:57 - 00000684 ____H () C:\bdr-cf01
2014-08-13 11:57 - 2014-08-13 11:57 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-08-13 11:57 - 2014-08-13 11:57 - 00000385 _____ () C:\Users\Owner\AppData\Roaminguser_gensett.xml
2014-08-13 11:57 - 2014-08-13 11:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-08-13 11:57 - 2014-08-13 11:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-08-13 11:57 - 2014-08-13 11:57 - 00000000 ____D () C:\ProgramData\BDLogging
2014-08-13 11:57 - 2013-12-02 12:58 - 00635392 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2014-08-13 11:57 - 2013-12-02 12:56 - 00893440 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2014-08-13 11:57 - 2013-11-13 16:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys
2014-08-13 11:57 - 2013-11-04 16:47 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys
2014-08-13 11:57 - 2013-11-04 16:47 - 00074512 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2014-08-13 11:57 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2014-08-13 11:57 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2014-08-13 11:57 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2014-08-13 11:54 - 2014-08-13 12:02 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Bitdefender
2014-08-13 11:54 - 2014-08-13 11:57 - 00253404 ____H () C:\bdr-ld01
2014-08-13 11:54 - 2014-08-13 11:57 - 00009216 ____H () C:\bdr-ld01.mbr
2014-08-13 11:54 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz
2014-08-13 11:54 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01
2014-08-13 11:53 - 2014-08-13 11:57 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-08-13 11:53 - 2014-08-13 11:54 - 00000000 ____D () C:\Program Files\Bitdefender
2014-08-13 11:53 - 2013-11-04 16:47 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll
2014-08-13 11:53 - 2013-11-04 16:46 - 00034384 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll
2014-08-13 11:53 - 2013-08-23 13:48 - 00150256 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2014-08-13 11:53 - 2013-08-07 13:46 - 00389240 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-08-13 11:50 - 2014-08-13 11:50 - 06770080 _____ () C:\Users\Owner\Downloads\bitdefender_tsecurity.exe
2014-08-13 11:47 - 2014-08-13 11:53 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-13 03:00 - 2014-06-30 15:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-13 03:00 - 2014-06-30 15:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-13 03:00 - 2014-06-05 23:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-13 03:00 - 2014-06-05 23:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-13 03:00 - 2014-03-09 14:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 03:00 - 2014-03-09 14:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-13 03:00 - 2014-03-09 14:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-13 03:00 - 2014-03-09 14:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-12 19:29 - 2014-07-15 20:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-12 19:29 - 2014-07-15 19:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-12 19:29 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-12 19:29 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-12 19:29 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-12 19:29 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-12 19:29 - 2014-07-08 19:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-12 19:29 - 2014-07-08 18:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-12 19:29 - 2014-07-08 18:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-12 19:29 - 2014-07-08 18:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-12 19:29 - 2014-07-08 18:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-12 19:29 - 2014-07-08 18:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-12 19:29 - 2014-07-08 15:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-12 19:29 - 2014-07-08 15:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-12 19:29 - 2014-06-03 03:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-12 19:29 - 2014-06-03 03:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-12 19:29 - 2014-06-03 03:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 19:29 - 2014-06-03 03:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-12 19:29 - 2014-06-03 02:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-12 19:29 - 2014-06-03 02:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-12 19:29 - 2014-06-03 02:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-12 19:28 - 2014-07-31 16:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-12 19:28 - 2014-07-31 16:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-12 19:28 - 2014-07-25 07:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-12 19:28 - 2014-07-25 07:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-12 19:28 - 2014-07-25 07:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-12 19:28 - 2014-07-25 06:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-12 19:28 - 2014-07-25 06:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-12 19:28 - 2014-07-25 06:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-12 19:28 - 2014-07-25 06:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-12 19:28 - 2014-07-25 06:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-12 19:28 - 2014-07-25 06:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-12 19:28 - 2014-07-25 06:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-12 19:28 - 2014-07-25 06:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-12 19:28 - 2014-07-25 06:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-12 19:28 - 2014-07-25 06:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-12 19:28 - 2014-07-25 06:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-12 19:28 - 2014-07-25 06:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-12 19:28 - 2014-07-25 05:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-12 19:28 - 2014-07-25 05:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-12 19:28 - 2014-07-25 05:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-12 19:28 - 2014-07-25 05:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-12 19:28 - 2014-07-25 05:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-12 19:28 - 2014-07-25 05:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-12 19:28 - 2014-07-25 05:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-12 19:28 - 2014-07-25 05:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-12 19:28 - 2014-07-25 05:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-12 19:28 - 2014-07-25 05:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-12 19:28 - 2014-07-25 05:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-12 19:28 - 2014-07-25 05:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-12 19:28 - 2014-07-25 05:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-12 19:28 - 2014-07-25 05:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-12 19:28 - 2014-07-25 05:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-12 19:28 - 2014-07-25 05:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-12 19:28 - 2014-07-25 05:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-12 19:28 - 2014-07-25 05:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-12 19:28 - 2014-07-25 05:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-12 19:28 - 2014-07-25 04:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-12 19:28 - 2014-07-25 04:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-12 19:28 - 2014-07-25 04:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-12 19:28 - 2014-07-25 04:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-12 19:28 - 2014-07-25 04:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-12 19:28 - 2014-07-25 04:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-12 19:28 - 2014-07-25 04:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-12 19:28 - 2014-07-25 04:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-12 19:28 - 2014-07-25 04:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-12 19:28 - 2014-07-25 04:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-12 19:28 - 2014-07-25 04:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-12 19:28 - 2014-07-25 04:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-12 19:28 - 2014-07-25 04:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-12 19:28 - 2014-07-25 04:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-12 19:28 - 2014-07-25 03:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-12 19:28 - 2014-07-25 03:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-12 19:28 - 2014-07-25 03:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-12 19:28 - 2014-07-25 03:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-12 19:28 - 2014-07-25 03:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-12 19:28 - 2014-07-25 03:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-12 19:28 - 2014-07-15 20:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-12 19:28 - 2014-07-15 19:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-12 19:28 - 2014-07-15 19:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-12 19:28 - 2014-06-24 19:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-12 19:28 - 2014-06-24 18:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-12 19:28 - 2014-06-15 19:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-12 19:27 - 2014-08-06 19:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-12 19:27 - 2014-08-06 19:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-12 19:27 - 2014-07-13 19:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-12 19:27 - 2014-07-13 18:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-12 16:53 - 2014-08-12 17:08 - 366754031 _____ () C:\Users\Owner\Downloads\gamertalk.mp4
2014-08-11 23:13 - 2014-08-11 23:13 - 00000000 ____D () C:\ProgramData\ATI
2014-08-11 23:12 - 2014-08-11 23:12 - 00061828 _____ () C:\Windows\SysWOW64\CCCInstall_201408112312509193.log
2014-08-11 23:12 - 2014-08-11 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-11 23:12 - 2014-08-11 23:12 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-11 23:11 - 2014-08-11 23:12 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-11 23:09 - 2014-08-11 23:09 - 00054551 _____ () C:\Windows\SysWOW64\CCCInstall_201408112309046682.log
2014-08-11 23:06 - 2014-08-11 23:08 - 269338400 _____ (AMD Inc.) C:\Users\Owner\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-08-11 00:58 - 2014-08-12 18:51 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server
2014-08-11 00:58 - 2014-08-11 00:58 - 00001090 _____ () C:\Users\Owner\Desktop\MSI Afterburner.lnk
2014-08-11 00:58 - 2014-08-11 00:58 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2014-08-09 12:00 - 2014-08-09 12:00 - 00000000 ____D () C:\Users\Owner\AppData\Local\Reflections
2014-08-09 01:42 - 2014-08-09 03:09 - 960888413 _____ () C:\Users\Owner\Downloads\UE4_Demos.rar
2014-08-09 01:38 - 2014-08-09 01:39 - 26537168 _____ () C:\Users\Owner\Desktop\RollercoasterPlugin_4_1_0.zip
2014-08-08 18:30 - 2014-08-08 18:31 - 00000000 ____D () C:\Users\Owner\Documents\CoC
2014-08-08 15:06 - 2014-08-08 15:06 - 00000000 ____D () C:\Users\Owner\Documents\TATS_win
2014-08-07 15:58 - 2014-08-07 15:58 - 00000939 _____ () C:\Users\Owner\Desktop\Open Broadcaster Software.lnk
2014-08-07 15:57 - 2014-08-07 15:57 - 08351107 _____ () C:\Users\Owner\Downloads\OBS_0_625b_Installer.exe
2014-08-06 16:14 - 2014-08-06 16:14 - 00895120 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleEarthSetup.exe
2014-08-06 16:14 - 2014-08-06 16:14 - 00002212 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-08-06 16:14 - 2014-08-06 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2014-08-05 21:44 - 2014-08-05 21:55 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Natural Selection 2
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\Users\Owner\Documents\Firefall
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\Users\Owner\AppData\Local\Red 5 Studios
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\Program Files (x86)\Xiph.Org
2014-08-02 17:23 - 2014-05-14 09:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-02 17:23 - 2014-05-14 09:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-02 17:23 - 2014-05-14 09:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-02 17:23 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-02 17:23 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-02 17:23 - 2014-05-14 09:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-02 17:23 - 2014-05-14 09:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-02 17:23 - 2014-05-14 09:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-02 17:23 - 2014-05-14 09:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-02 17:23 - 2014-05-14 09:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-02 17:23 - 2014-05-14 09:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-02 17:23 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-02 17:23 - 2014-05-14 09:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-02 17:23 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-07-31 15:25 - 2008-07-12 08:18 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-07-31 15:25 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-07-31 15:25 - 2008-07-12 08:18 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-07-31 15:25 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-07-31 15:25 - 2008-07-12 08:18 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-07-31 15:25 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-07-30 22:16 - 2014-07-30 22:16 - 00055391 _____ () C:\Windows\SysWOW64\CCCInstall_201407302216541013.log
2014-07-30 22:16 - 2014-07-30 22:16 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-07-30 22:12 - 2014-07-30 22:12 - 00060968 _____ () C:\Windows\SysWOW64\CCCInstall_201407302212075639.log
2014-07-30 22:09 - 2014-07-30 22:09 - 00000000 ____D () C:\Users\Owner\Downloads\New folder
2014-07-30 22:06 - 2014-07-30 22:09 - 255214148 _____ (Igor Pavlov) C:\Users\Owner\Downloads\vga_driver_amd_win7(win8)_13.11(1).exe
2014-07-30 21:58 - 2014-07-30 21:58 - 01653147 _____ () C:\Users\Owner\Downloads\DDUv12940-[Guru3D.com].exe
2014-07-29 15:22 - 2014-07-29 15:24 - 00000000 ____D () C:\Program Files\Waterfox
2014-07-29 11:54 - 2014-07-29 11:54 - 00236183 _____ () C:\Users\Owner\Downloads\CBA_A3_RC3_Hotfix.7z
2014-07-29 11:47 - 2014-07-29 11:47 - 01632218 _____ () C:\Users\Owner\Desktop\@RAV_Lifter_A3_1_07.rar
2014-07-29 11:31 - 2014-07-29 11:31 - 07578525 _____ () C:\Users\Owner\Downloads\@mcc_sandbox.rar
2014-07-28 16:44 - 2014-07-28 16:49 - 26396321 _____ () C:\Users\Owner\Downloads\Polandballs Adventure.rar
2014-07-27 21:05 - 2014-07-27 23:20 - 00000000 ____D () C:\Users\Owner\AppData\Local\SecondLife
2014-07-27 21:05 - 2014-07-27 21:05 - 00000793 _____ () C:\Users\Public\Desktop\Second Life Viewer.lnk
2014-07-27 21:05 - 2014-07-27 21:05 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\SecondLife
2014-07-27 21:05 - 2014-07-27 21:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Second Life Viewer
2014-07-27 21:04 - 2014-07-27 21:05 - 31759440 _____ () C:\Users\Owner\Downloads\Second_Life_3_7_12_291824_i686_Setup.exe
2014-07-27 20:07 - 2014-07-27 20:07 - 01068176 _____ () C:\Users\Owner\Downloads\CellEditor.rar
2014-07-27 16:33 - 2014-07-27 16:33 - 00000000 ____D () C:\Crash
2014-07-26 20:34 - 2014-07-26 20:34 - 00016442 _____ () C:\Users\Owner\Downloads\BlackMesaTorrent.rar
2014-07-25 11:47 - 2014-07-25 11:49 - 255214148 _____ (Igor Pavlov) C:\Users\Owner\Downloads\vga_driver_amd_win7(win8)_13.11.exe
2014-07-24 23:49 - 2014-07-24 23:49 - 00000000 ____D () C:\Users\Owner\AppData\Local\SCE
2014-07-24 23:48 - 2014-07-24 23:49 - 00009104 _____ () C:\Users\Owner\Downloads\intro.mp3.sfk
2014-07-24 16:42 - 2014-07-24 16:42 - 00000000 ____D () C:\Users\Owner\AppData\Local\Activision
2014-07-24 16:27 - 2014-07-24 16:27 - 00000461 _____ () C:\Storage (D) - Shortcut.lnk
2014-07-24 16:24 - 2014-07-24 16:28 - 00000000 ____D () C:\Users\Owner\codadewdie
2014-07-23 17:07 - 2014-07-23 17:08 - 01057523 _____ () C:\Users\Owner\Documents\3296-stardust.zip
2014-07-22 20:09 - 2014-07-22 20:09 - 00000132 _____ () C:\Users\Owner\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-07-22 00:51 - 2014-08-07 12:47 - 00001456 _____ () C:\Users\Owner\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-07-22 00:32 - 2014-07-22 00:32 - 00003502 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Owner-PC-Owner
2014-07-22 00:31 - 2014-07-22 00:31 - 00000772 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
2014-07-22 00:31 - 2014-07-22 00:31 - 00000727 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk
2014-07-22 00:20 - 2014-07-22 00:30 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2014-07-22 00:20 - 2014-07-22 00:30 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk
2014-07-21 23:42 - 2014-07-21 23:42 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Sony Creative Software Inc
2014-07-21 22:04 - 2014-07-21 22:04 - 00000021 _____ () C:\Windows\SurCode.INI
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Users\Owner\Documents\Adobe
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\PACE Anti-Piracy
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Users\Owner\AppData\Local\PACE Anti-Piracy
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\ProgramData\PACE Anti-Piracy
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Program Files\Common Files\PACE Anti-Piracy
2014-07-21 21:59 - 2014-07-22 00:30 - 00000722 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
2014-07-21 21:59 - 2014-07-22 00:20 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-21 21:59 - 2014-07-21 21:59 - 00000853 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS6.lnk
2014-07-21 21:58 - 2014-07-22 00:31 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-07-21 21:58 - 2014-07-22 00:30 - 00001523 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2014-07-21 21:58 - 2014-07-21 21:58 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2014-07-21 21:58 - 2014-07-21 21:58 - 00000753 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS6.lnk
2014-07-21 20:23 - 2014-07-21 20:23 - 00715038 _____ () C:\Windows\unins000.exe
2014-07-21 20:23 - 2014-07-21 20:23 - 00001990 _____ () C:\Windows\unins000.dat
2014-07-21 20:23 - 2011-12-07 19:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2014-07-21 20:23 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2014-07-21 19:45 - 2014-07-21 20:22 - 00000000 ____D () C:\Users\Owner\AppData\Local\Dxtory Software
2014-07-21 19:45 - 2014-07-21 19:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
2014-07-21 19:45 - 2014-07-21 19:45 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-07-21 19:45 - 2013-02-15 22:44 - 08300544 _____ (Dxtory Software) C:\Windows\SysWOW64\DxtoryCodec.dll
2014-07-21 19:45 - 2013-02-15 22:44 - 08043008 _____ (Dxtory Software) C:\Windows\system32\DxtoryCodec.dll
2014-07-20 14:03 - 2014-07-21 18:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 Multiplayer
2014-07-20 14:03 - 2014-07-20 18:15 - 00000000 ____D () C:\Users\Owner\Documents\ETS2MP
2014-07-18 14:12 - 2014-08-16 23:16 - 00000000 ____D () C:\Users\Owner\AppData\Local\LogMeIn Hamachi
2014-07-18 14:12 - 2014-07-18 14:12 - 00000000 ____D () C:\Users\Owner\AppData\Local\LogMeIn
2014-07-18 14:12 - 2014-07-18 14:12 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-07-18 13:35 - 2014-07-18 13:45 - 00000000 __SHD () C:\Users\Owner\AppData\Roaming\wyUpdate AU
2014-07-18 13:35 - 2014-07-18 13:45 - 00000000 ____D () C:\Users\Owner\Documents\Universe Sandbox
2014-07-18 13:35 - 2014-07-18 13:35 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\System
2014-07-18 13:35 - 2014-07-18 13:35 - 00000000 ____D () C:\Users\Owner\AppData\Local\Universe Sandbox

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-17 11:50 - 2014-08-17 11:50 - 00027771 _____ () C:\Users\Owner\Downloads\FRST.txt
2014-08-17 11:50 - 2014-08-17 11:49 - 00000000 ____D () C:\FRST
2014-08-17 11:49 - 2014-08-17 11:49 - 02101760 _____ (Farbar) C:\Users\Owner\Downloads\FRST64.exe
2014-08-17 11:49 - 2014-08-17 11:49 - 01093632 _____ (Farbar) C:\Users\Owner\Downloads\FRST.exe
2014-08-17 11:47 - 2014-08-16 23:14 - 00001528 _____ () C:\Windows\runSW.log
2014-08-17 11:47 - 2014-07-15 12:01 - 00000388 _____ () C:\Windows\Tasks\update-sys.job
2014-08-17 11:47 - 2014-03-31 21:57 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-17 11:47 - 2014-03-28 20:05 - 00000388 _____ () C:\Windows\Tasks\update-S-1-5-21-3941167080-2693931430-3347659922-1000.job
2014-08-17 11:47 - 2014-03-28 20:00 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-17 11:47 - 2014-03-28 14:43 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-17 11:47 - 2014-03-28 11:51 - 01949963 _____ () C:\Windows\WindowsUpdate.log
2014-08-17 03:30 - 2014-08-16 23:15 - 00000280 _____ () C:\Windows\setupact.log
2014-08-17 02:00 - 2014-05-29 17:25 - 00000000 ____D () C:\Users\Owner\AppData\Local\Adobe
2014-08-17 01:00 - 2014-08-17 00:59 - 69999448 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP452-KB2901907-x86-x64-AllOS-ENU.exe
2014-08-17 00:57 - 2014-08-17 00:57 - 01145272 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\winexpress_full.exe
2014-08-17 00:54 - 2009-07-13 21:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-17 00:54 - 2009-07-13 21:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-17 00:27 - 2014-03-28 16:44 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-08-17 00:25 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\.lantern
2014-08-16 23:56 - 2014-08-16 23:55 - 43000680 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx40_Client_x86_x64.exe
2014-08-16 23:50 - 2014-08-16 23:50 - 01118920 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP452-KB2901954-Web(1).exe
2014-08-16 23:45 - 2014-08-16 23:45 - 01118920 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP452-KB2901954-Web.exe
2014-08-16 23:30 - 2014-08-13 12:12 - 00000409 _____ () C:\Windows\system32\checkdnsid.xml
2014-08-16 23:28 - 2014-08-16 23:28 - 50449456 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx40_Full_x86_x64(1).exe
2014-08-16 23:25 - 2014-08-16 23:25 - 50449456 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx40_Full_x86_x64.exe
2014-08-16 23:22 - 2014-08-16 23:22 - 70087104 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NDP451-KB2858728-x86-x64-AllOS-ENU.exe
2014-08-16 23:21 - 2009-07-13 22:13 - 00718414 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-16 23:20 - 2014-08-16 23:20 - 00000000 ____D () C:\Users\Owner\Documents\dotnetfx_cleanup_tool
2014-08-16 23:16 - 2014-08-16 23:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-08-16 23:16 - 2014-08-16 23:16 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-08-16 23:16 - 2014-07-18 14:12 - 00000000 ____D () C:\Users\Owner\AppData\Local\LogMeIn Hamachi
2014-08-16 23:16 - 2014-07-14 18:02 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
2014-08-16 23:16 - 2014-03-28 19:39 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Skype
2014-08-16 23:15 - 2014-08-16 23:15 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-16 23:15 - 2009-07-13 22:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-16 23:14 - 2014-06-30 21:35 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-08-16 23:08 - 2014-07-14 19:33 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\DAEMON Tools Lite
2014-08-16 23:07 - 2014-08-16 23:07 - 00207842 _____ () C:\Users\Owner\Documents\cc_20140816_230700.reg
2014-08-16 23:07 - 2014-06-12 13:57 - 00000000 ____D () C:\Windows\Minidump
2014-08-16 23:07 - 2014-03-28 12:47 - 00000000 ____D () C:\Windows\Panther
2014-08-16 23:06 - 2014-08-16 23:06 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-08-16 23:06 - 2014-08-16 23:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-08-16 23:05 - 2014-08-16 23:05 - 04814696 _____ (Piriform Ltd) C:\Users\Owner\Downloads\ccsetup416pro.exe
2014-08-16 23:03 - 2014-08-16 23:03 - 01431545 _____ () C:\Users\Owner\Desktop\FixDotNet20140817060254851.cab
2014-08-16 23:02 - 2014-08-16 23:02 - 00879096 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\NetFxRepairTool.exe
2014-08-16 23:00 - 2014-08-16 23:00 - 00000522 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-16 23:00 - 2014-03-28 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-16 22:59 - 2014-08-16 22:59 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Owner\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-16 22:50 - 2014-08-16 22:50 - 00985600 _____ () C:\Users\Owner\Downloads\MicrosoftFixit50123.msi
2014-08-16 18:31 - 2014-06-18 09:35 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\.minecraft
2014-08-16 00:32 - 2009-07-13 19:34 - 00000505 _____ () C:\Windows\win.ini
2014-08-15 21:12 - 2009-07-13 21:45 - 04897616 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-15 19:55 - 2014-08-15 19:55 - 00000098 _____ () C:\Users\Owner\AppData\Roaming\LauncherSettings_live.cfg
2014-08-15 19:50 - 2014-08-15 19:50 - 00000040 _____ () C:\Users\Owner\AppData\Roaming\TheHunterSettings_steam_live.cfg
2014-08-15 19:50 - 2014-08-15 19:50 - 00000000 ____D () C:\Users\Owner\Documents\theHunter
2014-08-15 19:50 - 2014-08-15 19:50 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\theHunter
2014-08-15 19:50 - 2014-08-15 19:50 - 00000000 ____D () C:\Users\Owner\AppData\Local\theHunter
2014-08-15 19:46 - 2014-08-15 19:46 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\theHunterSteam
2014-08-15 19:46 - 2014-08-15 19:46 - 00000000 ____D () C:\ProgramData\Hunter
2014-08-15 19:21 - 2014-08-15 19:21 - 00270848 _____ (Secure By Design Inc.) C:\Users\Owner\Downloads\Ninite NET Installer.exe
2014-08-15 14:38 - 2014-08-15 14:39 - 00450709 ____R () C:\Windows\system32\Drivers\etc\hosts.20140815-143955.backup
2014-08-15 14:33 - 2014-08-15 13:38 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-15 14:23 - 2014-08-15 13:22 - 00000000 ____D () C:\ProgramData\MFAData
2014-08-15 13:40 - 2014-08-15 13:38 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-15 13:39 - 2014-08-15 13:39 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-08-15 13:38 - 2014-08-15 13:38 - 00001395 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-08-15 13:38 - 2014-08-15 13:38 - 00001383 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-08-15 13:38 - 2014-08-15 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-08-15 13:37 - 2014-08-15 13:37 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Owner\Downloads\spybot-2.4.exe
2014-08-15 13:34 - 2014-08-15 13:34 - 00204738 _____ () C:\Users\Owner\Downloads\Extras.Txt
2014-08-15 13:34 - 2014-08-15 13:34 - 00161964 _____ () C:\Users\Owner\Downloads\OTL.Txt
2014-08-15 13:29 - 2014-08-15 13:29 - 00602112 _____ (OldTimer Tools) C:\Users\Owner\Downloads\OTL.exe
2014-08-15 13:25 - 2014-08-15 13:25 - 01005568 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx45_Full_setup(1).exe
2014-08-15 13:22 - 2014-08-15 13:22 - 04755832 _____ (AVG Technologies) C:\Users\Owner\Downloads\avg_free_stb_all_2014_4744_cnet.exe
2014-08-15 13:22 - 2014-08-15 13:22 - 00000000 ____D () C:\Users\Owner\AppData\Local\MFAData
2014-08-15 13:22 - 2014-08-15 13:22 - 00000000 ____D () C:\Users\Owner\AppData\Local\Avg2014
2014-08-15 13:14 - 2014-08-15 13:14 - 01005568 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\dotNetFx45_Full_setup.exe
2014-08-14 21:15 - 2014-05-28 21:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roblox
2014-08-14 16:54 - 2014-05-31 15:47 - 00000000 ____D () C:\Users\Owner\Documents\ManiaPlanet
2014-08-14 16:07 - 2014-05-31 15:46 - 00000000 ____D () C:\ProgramData\ManiaPlanet
2014-08-14 16:06 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-14 14:27 - 2014-08-14 14:27 - 00003308 _____ () C:\Windows\System32\Tasks\{2232128A-558E-460C-AFE3-A44578D8108A}
2014-08-14 11:05 - 2014-08-14 11:05 - 05718872 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\vcredist_x64.exe
2014-08-14 10:56 - 2014-08-14 10:55 - 05073240 _____ (Microsoft Corporation) C:\Users\Owner\Downloads\vcredist_x86.exe
2014-08-14 10:55 - 2014-08-14 10:55 - 00003308 _____ () C:\Windows\System32\Tasks\{0AA996B7-6FE7-4126-8414-AA1FF9CF404B}
2014-08-14 10:48 - 2014-08-14 10:48 - 00000000 ____D () C:\Users\Owner\AppData\Local\bdch
2014-08-14 10:48 - 2014-08-14 10:48 - 00000000 ____D () C:\ProgramData\bdch
2014-08-13 20:09 - 2014-03-30 23:17 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\vlc
2014-08-13 14:56 - 2014-08-13 14:56 - 00001891 _____ () C:\Users\Public\Desktop\Lantern.lnk
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\.littleshoot
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\Users\Owner\.jnaerator
2014-08-13 14:56 - 2014-08-13 14:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lantern
2014-08-13 14:56 - 2014-08-13 14:55 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Lantern
2014-08-13 14:56 - 2014-03-28 12:47 - 00000000 ____D () C:\Users\Owner
2014-08-13 14:55 - 2014-08-13 14:55 - 14854168 _____ (Team Lantern) C:\Users\Owner\Downloads\lantern-installer.exe
2014-08-13 12:27 - 2014-08-13 12:27 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll
2014-08-13 12:02 - 2014-08-13 11:54 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Bitdefender
2014-08-13 11:59 - 2014-08-13 11:59 - 00581204 _____ () C:\ProgramData\1407956016.bdinstall.bin
2014-08-13 11:57 - 2014-08-13 11:57 - 00002126 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk
2014-08-13 11:57 - 2014-08-13 11:57 - 00000684 ____H () C:\bdr-cf01
2014-08-13 11:57 - 2014-08-13 11:57 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-08-13 11:57 - 2014-08-13 11:57 - 00000385 _____ () C:\Users\Owner\AppData\Roaminguser_gensett.xml
2014-08-13 11:57 - 2014-08-13 11:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-08-13 11:57 - 2014-08-13 11:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-08-13 11:57 - 2014-08-13 11:57 - 00000000 ____D () C:\ProgramData\BDLogging
2014-08-13 11:57 - 2014-08-13 11:54 - 00253404 ____H () C:\bdr-ld01
2014-08-13 11:57 - 2014-08-13 11:54 - 00009216 ____H () C:\bdr-ld01.mbr
2014-08-13 11:57 - 2014-08-13 11:53 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-08-13 11:54 - 2014-08-13 11:53 - 00000000 ____D () C:\Program Files\Bitdefender
2014-08-13 11:53 - 2014-08-13 11:47 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-08-13 11:51 - 2014-03-28 14:44 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-13 11:50 - 2014-08-13 11:50 - 06770080 _____ () C:\Users\Owner\Downloads\bitdefender_tsecurity.exe
2014-08-13 11:47 - 2014-07-13 17:41 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\QuickScan
2014-08-13 03:58 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\rescache
2014-08-13 03:21 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-13 03:04 - 2014-03-28 15:07 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-13 03:02 - 2014-03-28 15:07 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-13 03:02 - 2009-07-13 20:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-13 03:00 - 2014-05-06 03:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-12 18:51 - 2014-08-11 00:58 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server
2014-08-12 17:08 - 2014-08-12 16:53 - 366754031 _____ () C:\Users\Owner\Downloads\gamertalk.mp4
2014-08-11 23:13 - 2014-08-11 23:13 - 00000000 ____D () C:\ProgramData\ATI
2014-08-11 23:12 - 2014-08-11 23:12 - 00061828 _____ () C:\Windows\SysWOW64\CCCInstall_201408112312509193.log
2014-08-11 23:12 - 2014-08-11 23:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-11 23:12 - 2014-08-11 23:12 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-11 23:12 - 2014-08-11 23:11 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-11 23:12 - 2014-06-30 21:19 - 00000000 ____D () C:\ProgramData\AMD
2014-08-11 23:12 - 2014-06-30 21:18 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-08-11 23:12 - 2014-06-30 21:17 - 00000000 ____D () C:\AMD
2014-08-11 23:09 - 2014-08-11 23:09 - 00054551 _____ () C:\Windows\SysWOW64\CCCInstall_201408112309046682.log
2014-08-11 23:08 - 2014-08-11 23:06 - 269338400 _____ (AMD Inc.) C:\Users\Owner\Downloads\14-4-win7-win8-win8.1-64-dd-ccc-whql.exe
2014-08-11 19:30 - 2014-03-29 11:15 - 00000000 ____D () C:\Users\Owner\AppData\Local\Arma 3
2014-08-11 00:58 - 2014-08-11 00:58 - 00001090 _____ () C:\Users\Owner\Desktop\MSI Afterburner.lnk
2014-08-11 00:58 - 2014-08-11 00:58 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2014-08-11 00:58 - 2014-03-31 20:23 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-08-11 00:58 - 2014-03-31 20:23 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2014-08-09 19:00 - 2014-06-06 17:28 - 00000000 ____D () C:\Users\Owner\Zomboid
2014-08-09 17:36 - 2014-03-29 00:25 - 00000000 ____D () C:\Users\Owner\Documents\My Games
2014-08-09 12:00 - 2014-08-09 12:00 - 00000000 ____D () C:\Users\Owner\AppData\Local\Reflections
2014-08-09 11:53 - 2014-04-07 20:04 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-09 03:09 - 2014-08-09 01:42 - 960888413 _____ () C:\Users\Owner\Downloads\UE4_Demos.rar
2014-08-09 01:39 - 2014-08-09 01:38 - 26537168 _____ () C:\Users\Owner\Desktop\RollercoasterPlugin_4_1_0.zip
2014-08-08 23:58 - 2014-04-12 19:08 - 00000000 ____D () C:\Users\Owner\AppData\Local\ArmA 2 OA
2014-08-08 18:31 - 2014-08-08 18:30 - 00000000 ____D () C:\Users\Owner\Documents\CoC
2014-08-08 15:06 - 2014-08-08 15:06 - 00000000 ____D () C:\Users\Owner\Documents\TATS_win
2014-08-07 16:50 - 2014-06-29 13:52 - 00000000 ____D () C:\Users\Owner\Documents\Euro Truck Simulator 2
2014-08-07 15:58 - 2014-08-07 15:58 - 00000939 _____ () C:\Users\Owner\Desktop\Open Broadcaster Software.lnk
2014-08-07 15:58 - 2014-07-16 22:18 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\OBS
2014-08-07 15:57 - 2014-08-07 15:57 - 08351107 _____ () C:\Users\Owner\Downloads\OBS_0_625b_Installer.exe
2014-08-07 12:47 - 2014-07-22 00:51 - 00001456 _____ () C:\Users\Owner\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-08-06 19:06 - 2014-08-12 19:27 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-06 19:01 - 2014-08-12 19:27 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 16:14 - 2014-08-06 16:14 - 00895120 _____ (Google Inc.) C:\Users\Owner\Downloads\GoogleEarthSetup.exe
2014-08-06 16:14 - 2014-08-06 16:14 - 00002212 _____ () C:\Users\Public\Desktop\Google Earth.lnk
2014-08-06 16:14 - 2014-08-06 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2014-08-06 16:14 - 2014-03-28 14:43 - 00000000 ____D () C:\Users\Owner\AppData\Local\Google
2014-08-06 16:14 - 2014-03-28 14:43 - 00000000 ____D () C:\Program Files (x86)\Google
2014-08-05 21:55 - 2014-08-05 21:44 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Natural Selection 2
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\Users\Owner\Documents\Firefall
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\Users\Owner\AppData\Local\Red 5 Studios
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xiph.Org
2014-08-05 21:22 - 2014-08-05 21:22 - 00000000 ____D () C:\Program Files (x86)\Xiph.Org
2014-08-05 14:18 - 2014-03-28 19:39 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-08-02 13:27 - 2014-03-29 09:41 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2014-08-02 13:27 - 2014-03-29 09:40 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-07-31 16:41 - 2014-08-12 19:28 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-31 16:16 - 2014-08-12 19:28 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-30 22:16 - 2014-07-30 22:16 - 00055391 _____ () C:\Windows\SysWOW64\CCCInstall_201407302216541013.log
2014-07-30 22:16 - 2014-07-30 22:16 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-07-30 22:12 - 2014-07-30 22:12 - 00060968 _____ () C:\Windows\SysWOW64\CCCInstall_201407302212075639.log
2014-07-30 22:09 - 2014-07-30 22:09 - 00000000 ____D () C:\Users\Owner\Downloads\New folder
2014-07-30 22:09 - 2014-07-30 22:06 - 255214148 _____ (Igor Pavlov) C:\Users\Owner\Downloads\vga_driver_amd_win7(win8)_13.11(1).exe
2014-07-30 22:04 - 2009-07-13 22:08 - 00032570 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-30 22:00 - 2014-06-30 17:59 - 00000000 ____D () C:\Users\Owner\AppData\Local\WindowsApplication1
2014-07-30 21:58 - 2014-07-30 21:58 - 01653147 _____ () C:\Users\Owner\Downloads\DDUv12940-[Guru3D.com].exe
2014-07-30 20:30 - 2014-07-14 21:11 - 00000000 ____D () C:\Users\Owner\AppData\Local\Arma 3 Launcher
2014-07-29 15:24 - 2014-07-29 15:22 - 00000000 ____D () C:\Program Files\Waterfox
2014-07-29 15:24 - 2014-03-28 19:32 - 00000000 ____D () C:\Program Files\Waterfox.bak
2014-07-29 11:54 - 2014-07-29 11:54 - 00236183 _____ () C:\Users\Owner\Downloads\CBA_A3_RC3_Hotfix.7z
2014-07-29 11:47 - 2014-07-29 11:47 - 01632218 _____ () C:\Users\Owner\Desktop\@RAV_Lifter_A3_1_07.rar
2014-07-29 11:31 - 2014-07-29 11:31 - 07578525 _____ () C:\Users\Owner\Downloads\@mcc_sandbox.rar
2014-07-28 19:17 - 2014-03-29 09:40 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2014-07-28 16:49 - 2014-07-28 16:44 - 26396321 _____ () C:\Users\Owner\Downloads\Polandballs Adventure.rar
2014-07-27 23:20 - 2014-07-27 21:05 - 00000000 ____D () C:\Users\Owner\AppData\Local\SecondLife
2014-07-27 21:05 - 2014-07-27 21:05 - 00000793 _____ () C:\Users\Public\Desktop\Second Life Viewer.lnk
2014-07-27 21:05 - 2014-07-27 21:05 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\SecondLife
2014-07-27 21:05 - 2014-07-27 21:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Second Life Viewer
2014-07-27 21:05 - 2014-07-27 21:04 - 31759440 _____ () C:\Users\Owner\Downloads\Second_Life_3_7_12_291824_i686_Setup.exe
2014-07-27 20:07 - 2014-07-27 20:07 - 01068176 _____ () C:\Users\Owner\Downloads\CellEditor.rar
2014-07-27 16:33 - 2014-07-27 16:33 - 00000000 ____D () C:\Crash
2014-07-26 20:34 - 2014-07-26 20:34 - 00016442 _____ () C:\Users\Owner\Downloads\BlackMesaTorrent.rar
2014-07-25 11:49 - 2014-07-25 11:47 - 255214148 _____ (Igor Pavlov) C:\Users\Owner\Downloads\vga_driver_amd_win7(win8)_13.11.exe
2014-07-25 07:52 - 2014-08-12 19:28 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 07:02 - 2014-08-12 19:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 07:01 - 2014-08-12 19:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 06:51 - 2014-08-12 19:28 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 06:30 - 2014-08-12 19:28 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 06:28 - 2014-08-12 19:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 06:28 - 2014-08-12 19:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 06:25 - 2014-08-12 19:28 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 06:25 - 2014-08-12 19:28 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 06:11 - 2014-08-12 19:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 06:10 - 2014-08-12 19:28 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 06:04 - 2014-08-12 19:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 06:03 - 2014-08-12 19:28 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 06:00 - 2014-08-12 19:28 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 06:00 - 2014-08-12 19:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 05:59 - 2014-08-12 19:28 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 05:47 - 2014-08-12 19:28 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 05:40 - 2014-08-12 19:28 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 05:34 - 2014-08-12 19:28 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 05:34 - 2014-08-12 19:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 05:33 - 2014-08-12 19:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 05:30 - 2014-08-12 19:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 05:28 - 2014-08-12 19:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 05:28 - 2014-08-12 19:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 05:21 - 2014-08-12 19:28 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 05:19 - 2014-08-12 19:28 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 05:18 - 2014-08-12 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 05:17 - 2014-08-12 19:28 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 05:17 - 2014-08-12 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 05:12 - 2014-08-12 19:28 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 05:10 - 2014-08-12 19:28 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 05:10 - 2014-08-12 19:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 05:08 - 2014-08-12 19:28 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 05:06 - 2014-08-12 19:28 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 04:52 - 2014-08-12 19:28 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 04:47 - 2014-08-12 19:28 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 04:43 - 2014-08-12 19:28 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 04:42 - 2014-08-12 19:28 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 04:39 - 2014-08-12 19:28 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 04:39 - 2014-08-12 19:28 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 04:36 - 2014-08-12 19:28 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 04:34 - 2014-08-12 19:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 04:29 - 2014-08-12 19:28 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 04:23 - 2014-08-12 19:28 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 04:13 - 2014-08-12 19:28 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 04:07 - 2014-08-12 19:28 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 04:07 - 2014-08-12 19:28 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 04:03 - 2014-08-12 19:28 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 03:52 - 2014-08-12 19:28 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 03:26 - 2014-08-12 19:28 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 03:17 - 2014-08-12 19:28 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 03:09 - 2014-08-12 19:28 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 03:05 - 2014-08-12 19:28 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 03:00 - 2014-08-12 19:28 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-24 23:49 - 2014-07-24 23:49 - 00000000 ____D () C:\Users\Owner\AppData\Local\SCE
2014-07-24 23:49 - 2014-07-24 23:48 - 00009104 _____ () C:\Users\Owner\Downloads\intro.mp3.sfk
2014-07-24 21:31 - 2014-03-28 14:43 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-24 21:31 - 2014-03-28 14:43 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 21:03 - 2014-03-30 21:08 - 00000000 ____D () C:\ProgramData\Origin
2014-07-24 16:42 - 2014-07-24 16:42 - 00000000 ____D () C:\Users\Owner\AppData\Local\Activision
2014-07-24 16:28 - 2014-07-24 16:24 - 00000000 ____D () C:\Users\Owner\codadewdie
2014-07-24 16:27 - 2014-07-24 16:27 - 00000461 _____ () C:\Storage (D) - Shortcut.lnk
2014-07-24 14:47 - 2014-03-30 21:08 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-07-24 03:00 - 2014-03-28 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-23 17:08 - 2014-07-23 17:07 - 01057523 _____ () C:\Users\Owner\Documents\3296-stardust.zip
2014-07-22 20:09 - 2014-07-22 20:09 - 00000132 _____ () C:\Users\Owner\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-07-22 02:00 - 2014-03-28 14:43 - 00000000 ____D () C:\ProgramData\Adobe
2014-07-22 01:00 - 2014-06-05 23:04 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Sony
2014-07-22 00:35 - 2014-03-28 14:43 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Adobe
2014-07-22 00:32 - 2014-07-22 00:32 - 00003502 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Owner-PC-Owner
2014-07-22 00:32 - 2014-03-28 13:10 - 00058808 _____ () C:\Users\Owner\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-22 00:31 - 2014-07-22 00:31 - 00000772 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
2014-07-22 00:31 - 2014-07-22 00:31 - 00000727 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk
2014-07-22 00:31 - 2014-07-21 21:58 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-07-22 00:30 - 2014-07-22 00:20 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2014-07-22 00:30 - 2014-07-22 00:20 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk
2014-07-22 00:30 - 2014-07-21 21:59 - 00000722 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
2014-07-22 00:30 - 2014-07-21 21:58 - 00001523 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2014-07-22 00:20 - 2014-07-21 21:59 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-07-22 00:20 - 2014-03-28 14:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-07-21 23:42 - 2014-07-21 23:42 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Sony Creative Software Inc
2014-07-21 22:04 - 2014-07-21 22:04 - 00000021 _____ () C:\Windows\SurCode.INI
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Users\Owner\Documents\Adobe
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\PACE Anti-Piracy
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Users\Owner\AppData\Local\PACE Anti-Piracy
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\ProgramData\PACE Anti-Piracy
2014-07-21 22:04 - 2014-07-21 22:04 - 00000000 ____D () C:\Program Files\Common Files\PACE Anti-Piracy
2014-07-21 22:04 - 2014-02-02 12:24 - 00000000 ___HD () C:\Users\Owner\AppData\Local\HglFJUI1YlMA
2014-07-21 22:04 - 2013-06-30 15:34 - 00000000 ___HD () C:\Users\Owner\AppData\Local\lMDhC2Hh
2014-07-21 22:04 - 2012-08-15 03:39 - 00000000 ___HD () C:\Users\Owner\AppData\Local\rDWcRUlP8q
2014-07-21 21:59 - 2014-07-21 21:59 - 00000853 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS6.lnk
2014-07-21 21:58 - 2014-07-21 21:58 - 00000997 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2014-07-21 21:58 - 2014-07-21 21:58 - 00000753 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS6.lnk
2014-07-21 20:23 - 2014-07-21 20:23 - 00715038 _____ () C:\Windows\unins000.exe
2014-07-21 20:23 - 2014-07-21 20:23 - 00001990 _____ () C:\Windows\unins000.dat
2014-07-21 20:22 - 2014-07-21 19:45 - 00000000 ____D () C:\Users\Owner\AppData\Local\Dxtory Software
2014-07-21 19:45 - 2014-07-21 19:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
2014-07-21 19:45 - 2014-07-21 19:45 - 00000000 ____D () C:\Program Files (x86)\Dxtory Software
2014-07-21 18:54 - 2014-07-20 14:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2 Multiplayer
2014-07-20 18:15 - 2014-07-20 14:03 - 00000000 ____D () C:\Users\Owner\Documents\ETS2MP
2014-07-18 14:12 - 2014-07-18 14:12 - 00000000 ____D () C:\Users\Owner\AppData\Local\LogMeIn
2014-07-18 14:12 - 2014-07-18 14:12 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-07-18 13:45 - 2014-07-18 13:35 - 00000000 __SHD () C:\Users\Owner\AppData\Roaming\wyUpdate AU
2014-07-18 13:45 - 2014-07-18 13:35 - 00000000 ____D () C:\Users\Owner\Documents\Universe Sandbox
2014-07-18 13:35 - 2014-07-18 13:35 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\System
2014-07-18 13:35 - 2014-07-18 13:35 - 00000000 ____D () C:\Users\Owner\AppData\Local\Universe Sandbox

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-07 18:05

==================== End Of Log ============================

 

And my Addition.txt

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-08-2014 04
Ran by Owner at 2014-08-17 11:51:10
Running from C:\Users\Owner\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ACP Application (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.08) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Alpha Prime (HKLM-x32\...\Steam App 2590) (Version:  - Black Element)
Alpha Protocol (HKLM-x32\...\Steam App 34010) (Version:  - Obsidian Entertainment)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33900) (Version:  - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Arma Tactics (HKLM-x32\...\Steam App 224860) (Version:  - Bohemia Interactive)
Arma: Cold War Assault (HKLM-x32\...\Steam App 65790) (Version:  - Bohemia Interactive)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version:  - )
Awesomenauts (HKLM-x32\...\Steam App 204300) (Version:  - Ronimo Games)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.4.505 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version:  - The Behemoth)
Battlefield 2142 Deluxe Edition (HKLM-x32\...\{ED50ECE9-EC54-4C05-B5ED-EE4741A9F2EC}) (Version: 1.5.1.0 - Electronic Arts)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.3.2.3825 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
Belkin N600 DB USB Wireless Adapter (HKLM-x32\...\{B20F9D1C-A0A5-4CD8-8306-DA03872311B1}) (Version: 1.00.0184.2 - Belkin International, Inc.)
Belkin USB Wireless Adaptor (HKLM-x32\...\InstallShield_{6E016C56-820F-4B2D-A36F-34CCADF90C16}) (Version: 1.0.0.09 - Belkin)
Belkin USB Wireless Adaptor (x32 Version: 1.0.0.09 - Belkin) Hidden
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.12.0.958 - Bitdefender)
Blacklight: Retribution (HKLM-x32\...\Steam App 209870) (Version:  - Zombie, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Build and Shoot Launcher 1.2 (HKLM-x32\...\Build and Shoot Launcher) (Version: 1.2 - Buld Then Snip, LLC)
Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts)
Carrier Command: Gaea Mission (HKLM-x32\...\Steam App 65740) (Version:  - Bohemia Interactive)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Chroma Closed Alpha (HKLM-x32\...\Steam App 241850) (Version:  - Harmonix Music Systems, Inc)
Company of Heroes (New Steam Version) (HKLM-x32\...\Steam App 228200) (Version:  - Relic)
Counter-Strike: Condition Zero Deleted Scenes (HKLM-x32\...\Steam App 100) (Version:  - Valve)
Counter-Strike: Global Offensive - SDK (HKLM-x32\...\Steam App 745) (Version:  - )
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Darkout (HKLM-x32\...\Steam App 257050) (Version:  - Allgraf)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{B3653588-3AC0-4A1D-950F-D96531E84374}) (Version: 0.92.91 - Dotjosh Studios)
Desura (HKLM-x32\...\Desura) (Version: 100.53 - Desura)
Dino D-Day (HKLM-x32\...\Steam App 70000) (Version:  - 800 North and Digital Ranch)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
Dxtory version 2.0.122 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.122 - Dxtory Software)
Edge of Space (HKLM-x32\...\Steam App 238240) (Version:  - Handyman Studios)
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version:  - SCS Software)
Euro Truck Simulator 2 Multiplayer 0.1.0.8.1 Alpha (HKLM-x32\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 0.1.0.8.1 Alpha - ETS2MP Team)
EVGA Precision X 4.2.1 (HKLM-x32\...\PrecisionX) (Version: 4.2.1 - EVGA Corporation)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.7 - Echobit, LLC)
F.E.A.R. 3 (HKLM-x32\...\Steam App 21100) (Version:  - Day 1 Studios)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
ffdshow v1.3.4530 [2014-02-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4530.0 - )
FileZilla Client 3.8.0 (HKLM-x32\...\FileZilla Client) (Version: 3.8.0 - Tim Kosse)
Fistful of Frags (HKLM-x32\...\Steam App 265630) (Version:  - Fistful of Frags Team)
Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 0.5.0 - Hotger)
FTL: Faster Than Light (HKLM-x32\...\Steam App 212680) (Version:  - Subset Games)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Gettysburg: Armored Warfare (HKLM-x32\...\Steam App 200630) (Version:  - Radioactive Software)
Gobby 0.4.94 (HKLM-x32\...\Gobby_is1) (Version: 0.4.94 - 0x539 dev group)
Google Chrome (HKLM-x32\...\{FBD50733-2ABE-3D23-88B4-7B0C0A0ADDA0}) (Version: 65.181.32922 - Google, Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar North)
Gratuitous Space Battles (HKLM-x32\...\Steam App 41800) (Version:  - Positech Games)
Gun Monkeys (HKLM-x32\...\Steam App 239450) (Version:  - Size Five Games)
Gunpoint (HKLM-x32\...\Steam App 206190) (Version:  - Suspicious Developments)
Guns of Icarus Online (HKLM-x32\...\Steam App 209080) (Version:  - Muse Games)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version:  - Valve)
Half-Life 2: Episode One (HKLM-x32\...\Steam App 380) (Version:  - Valve)
Half-Life 2: Episode Two (HKLM-x32\...\Steam App 420) (Version:  - Valve)
Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version:  - Reto-Moto)
Hotline Miami (HKLM-x32\...\Steam App 219150) (Version:  - Dennaton Games)
Insurgency (HKLM-x32\...\Steam App 222880) (Version:  - New World Interactive)
Insurgency Dedicated Server (HKLM-x32\...\Steam App 237410) (Version:  - )
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel® Network Connections 18.8.136.0 (HKLM\...\PROSetDX) (Version: 18.8.136.0 - Intel)
Intel® Network Connections 18.8.136.0 (Version: 18.8.136.0 - Intel) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3355 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
Interstellar Marines (HKLM-x32\...\Steam App 236370) (Version:  - Zero Point Software)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version:  - Avalanche)
Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version:  - JC2-MP Team)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Killing Floor (HKLM-x32\...\Steam App 1250) (Version:  - Tripwire Interactive)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
Lantern 1.4.6 (HKLM-x32\...\3831-6452-7413-7646) (Version: 1.4.6 - Team Lantern)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Lifeless Planet (HKLM-x32\...\Steam App 261530) (Version:  - Stage 2 Studios)
Lightshot-5.1.4.6 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.1.4.6 - Skillbrains)
Linksys Dual Band Wireless-AC USB Adapter (HKLM-x32\...\{C094F1A2-5EDF-4550-AE67-5FC1F4D2186F}) (Version: 1.0.0.17 - Linksys LLC)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.222 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.222 - LogMeIn, Inc.) Hidden
Magicka (HKLM-x32\...\Steam App 42910) (Version:  - Arrowhead Game Studios)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Medieval II: Total War (HKLM-x32\...\Steam App 4700) (Version:  - The Creative Assembly)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50701 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50706 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version:  - DICE)
Mount & Blade (HKLM-x32\...\Steam App 22100) (Version:  - TaleWorlds Entertainment)
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version:  - TaleWorlds Entertainment)
Mount & Blade: With Fire and Sword (HKLM-x32\...\Steam App 48720) (Version:  - TaleWorlds Entertainment)
Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 en-US)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSI Afterburner 3.0.1 (HKLM-x32\...\Afterburner) (Version: 3.0.1 - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Mumble 1.2.5 (HKLM-x32\...\{C7BC557D-8C8B-4F5F-83AB-D20C58CF4575}) (Version: 1.2.5 - Thorvald Natvig)
Napoleon: Total War (HKLM-x32\...\Steam App 34030) (Version:  - The Creative Assembly)
Natural Selection 2 (HKLM-x32\...\Steam App 4920) (Version:  - Unknown Worlds Entertainment)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.50.3 - Black Tree Gaming)
NoLimits 2 Demo (remove only) (HKLM\...\NoLimits 2 Demo) (Version:  - )
Nosgoth (HKLM-x32\...\Steam App 200110) (Version: 140812.90586 - Square Enix Ltd)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
Nuclear Dawn (HKLM-x32\...\Steam App 17710) (Version:  - InterWave Studios)
NVIDIA PhysX v8.10.17 (HKLM-x32\...\{E4D15328-8C89-484B-B9AA-F5BE9EA6D01C}) (Version: 8.10.17 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Orcs Must Die! 2 (HKLM-x32\...\Steam App 201790) (Version:  - Robot Entertainment)
Orcs Must Die! Unchained (HKLM-x32\...\OMDU) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC)
Papers, Please (HKLM-x32\...\Steam App 239030) (Version:  - 3909)
Paranautical Activity (HKLM-x32\...\Steam App 250580) (Version:  - Code Avarice)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Peggle (HKLM-x32\...\{715AD72D-887A-459E-988B-D4F3E87FA24B}) (Version: 1.04.0.0 - PopCap Games)
Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Planetary Annihilation (HKLM-x32\...\Steam App 233250) (Version:  - Uber Entertainment)
PlanetSide 2 (HKCU\...\SOE-PlanetSide 2) (Version:  - Sony Online Entertainment)
PlanetSide 2 (HKLM-x32\...\Steam App 218230) (Version:  - Sony Online Entertainment)
Plantronics® GameCom 780/788 Software for Dolby® Headphone (HKLM-x32\...\{EB3C9064-9140-4279-9E51-965119402151}) (Version: 3.20.0001 - Plantronics)
Portal (HKLM-x32\...\Steam App 400) (Version:  - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Project Zomboid (HKLM-x32\...\Steam App 108600) (Version:  - The Indie Stone)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7076 - Realtek Semiconductor Corp.)
Red Faction: Guerrilla  (HKLM-x32\...\Steam App 20500) (Version:  - Volition)
Renegade Ops (HKLM-x32\...\Steam App 99300) (Version:  - Avalanche Studios)
Renegade X (HKLM-x32\...\UDK-4fc3a6b6-3d0e-4dce-b127-8e60191e2b1e) (Version: Open Beta 2 - Totem Arts)
Rising Storm/Red Orchestra 2 Multiplayer (HKLM-x32\...\Steam App 35450) (Version:  - Tripwire Interactive)
RivaTuner Statistics Server 6.1.2 (HKLM-x32\...\RTSS) (Version: 6.1.2 - Unwinder)
ROBLOX Player (HKLM-x32\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
ROBLOX Studio 2013 (HKLM-x32\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version:  - ROBLOX Corporation)
Robocraft (HKLM-x32\...\Steam App 301520) (Version:  - Freejam)
Rome: Total War (HKLM-x32\...\Steam App 4760) (Version:  - The Creative Assembly)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
S.T.A.L.K.E.R.: Call of Pripyat (HKLM-x32\...\Steam App 41700) (Version:  - GSC Game World)
Saints Row 2 (HKLM-x32\...\Steam App 9480) (Version:  - Volition)
Saints Row: The Third (HKLM-x32\...\Steam App 55230) (Version:  - Volition)
SecondLifeViewer (remove only) (HKLM-x32\...\SecondLifeViewer) (Version:  - )
Signs of Life (HKLM-x32\...\Steam App 263200) (Version:  - Sweet Dog Studios)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
SmoothVideo Project version 3.1.6 (HKLM-x32\...\SmoothVideo Project_is1) (Version: 3.1.6 - SVP)
Sniper Elite V2 (HKLM-x32\...\Steam App 63380) (Version:  - Rebellion)
Source 2007 Dedicated Server (HKLM-x32\...\Steam App 310) (Version:  - Valve)
Source SDK (HKLM-x32\...\Steam App 211) (Version:  - Valve)
Source SDK Base 2006 (HKLM-x32\...\Steam App 215) (Version:  - Valve)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version:  - Valve)
Source SDK Base 2013 Dedicated Server (HKLM-x32\...\Steam App 244310) (Version:  - )
Space Engineers (HKLM-x32\...\Steam App 244850) (Version:  - )
Speccy (HKLM\...\Speccy) (Version: 1.25 - Piriform)
Spore: Galactic Adventures (HKLM-x32\...\Steam App 24720) (Version:  - EA - Maxis)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Star Wars - Battlefront II (HKLM-x32\...\Steam App 6060) (Version:  - Pandemic Studios)
Star Wars Empire at War (HKLM-x32\...\{99AE7207-8612-4DBA-A8F8-BAE5C633390D}) (Version: 1.0 - LucasArts)
Star Wars Empire at War Forces of Corruption (HKLM-x32\...\{6592FDEC-2C1A-413A-9985-25FEC2F0848D}) (Version: 1.0 - LucasArts)
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
StarForge Alpha (HKLM-x32\...\Steam App 227680) (Version:  - CodeHatch)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Super Amazing Wagon Adventure (HKLM-x32\...\Steam App 250500) (Version:  - sparsevector)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
Supreme Commander (HKLM-x32\...\Steam App 9350) (Version:  - Gas Powered Games)
Supreme Commander: Forged Alliance (HKLM-x32\...\Steam App 9420) (Version:  - Gas Powered Games)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
Tactical Intervention (HKLM-x32\...\Steam App 51100) (Version:  - FIX Korea, Co.LTD)
Take On Helicopters (HKLM-x32\...\Steam App 65730) (Version:  - Bohemia Interactive)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
TerraTech Demo (HKLM-x32\...\Steam App 313990) (Version:  - Payload Studios)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
The Sims™ 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
The Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
The Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
theHunter (HKLM-x32\...\Steam App 253710) (Version:  - Expansive Worlds)
Thinking with Time Machine (HKLM-x32\...\Steam App 286080) (Version:  - Stridemann)
Tiny and Big: Grandpa's Leftovers (HKLM-x32\...\Steam App 205910) (Version:  - Black Pants Game Studio)
Tobias and the Dark Sceptres (HKCU\...\Tobias and the Dark Sceptres) (Version:  - )
Torch (HKCU\...\Torch) (Version: 33.0.0.7326 - Torch Media, Inc) <==== ATTENTION
Total War: ROME II (HKLM-x32\...\Steam App 214950) (Version:  - Creative Assembly)
Total War: SHOGUN 2 (HKLM-x32\...\Steam App 34330) (Version:  - The Creative Assembly)
TrackMania² Canyon (HKLM-x32\...\Steam App 228760) (Version:  - Nadeo)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Universe Sandbox (HKLM-x32\...\Steam App 72200) (Version:  - Giant Army)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
War Thunder Launcher 1.0.1.336 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8b72e9}}_is1) (Version:  - Gaijin Entertainment)
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Wargame: European Escalation (HKLM-x32\...\Steam App 58610) (Version:  - Eugen Systems)
Waterfox 31.0 (x64 en-US) (HKLM\...\Waterfox 31.0 (x64 en-US)) (Version: 31.0 - Mozilla)
Windforge (HKLM-x32\...\Steam App 266170) (Version:  - Snowed In Studios)
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

17-08-2014 06:57:27 Removed Microsoft Chart Controls for Microsoft .NET Framework 3.5

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 - 2014-08-15 14:39 - 00450709 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    1000gratisproben.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    10sek.com
127.0.0.1    www.10sek.com
127.0.0.1    www.1-2005-search.com
127.0.0.1    1-2005-search.com
127.0.0.1    123fporn.info
127.0.0.1    www.123fporn.info
127.0.0.1    123haustiereundmehr.com
127.0.0.1    www.123haustiereundmehr.com
127.0.0.1    123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {072629F3-75AB-4DBF-9605-006FAF8563A3} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {0CC13C3F-48DD-40C4-803F-54C7186F2B26} - System32\Tasks\update-S-1-5-21-3941167080-2693931430-3347659922-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-03-25] ()
Task: {1A0BB5D5-DE3C-4904-94E2-F8ED13A80F71} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-11] (Adobe Systems Incorporated)
Task: {1DDC8B20-00BB-4EE5-8362-307E76422E57} - \Mext Guard FBE8818C-5B13-48C2-A93E-AD731167DBF2 No Task File <==== ATTENTION
Task: {1F8949DC-55A8-4335-AE48-ACEF782A1F89} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
Task: {23A9DCF4-1CEE-4785-86D8-82F0A4D082FD} - System32\Tasks\AdobeAAMUpdater-1.0-Owner-PC-Owner => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {2506364E-C169-4EBF-ABE9-FEDDE7D93B19} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-28] (Google Inc.)
Task: {270C77D5-57A8-4818-B858-3D12FA21829E} - \GPUpdate No Task File <==== ATTENTION
Task: {2EB2FEC4-1113-4705-BBE8-64CBF906E865} - System32\Tasks\pcreg => C:\Program Files\pcmax\service.exe [2014-05-25] ()
Task: {471FFEED-7C2C-4761-BFDD-044F242CF80C} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {49E5C21F-30EC-49BF-B06C-2740BB5C482A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {69C9A5C7-9D90-4C9F-A60D-17EAE45CD61F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {7CD7A3F8-D3A8-4FD8-87D1-0D4C49235B07} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {7E86D7EF-9017-4969-88AB-5D4C529E85DA} - \update-sys No Task File <==== ATTENTION
Task: {8DE7C6A9-A518-4F52-8BAC-69DAC89597E5} - \PC Speed Maximizer Schedule No Task File <==== ATTENTION
Task: {AB462491-F23A-4DFE-97F8-E71C34D16A4C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B7F3C64A-1568-49B1-8193-391E18291B2B} - \MySearchDial No Task File <==== ATTENTION
Task: {CF58792B-7736-4D63-A44D-2D9B2D9DE770} - System32\Tasks\GPUpdateCheck => C:\Program Files (x86)\GetPrivate\gpup.exe
Task: {FA4473A7-7B07-42BA-83CB-1E799054C10A} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf9f79eaa6835b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-3941167080-2693931430-3347659922-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Loaded Modules (whitelisted) =============

2014-08-13 11:57 - 2014-06-06 15:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2014-08-13 11:57 - 2014-07-11 17:30 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2014-08-13 11:57 - 2012-10-29 15:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2014-08-13 12:02 - 2014-08-13 12:02 - 00780592 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttpbr.mdl
2014-08-13 12:02 - 2014-08-13 12:02 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttpdsp.mdl
2014-08-13 12:02 - 2014-08-13 12:02 - 02602680 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttpph.mdl
2014-08-13 12:02 - 2014-08-13 12:02 - 01323408 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00047_002\ashttprbl.mdl
2014-04-17 21:55 - 2014-04-17 21:55 - 00082432 _____ () C:\AMD\amdacpusrsvc.exe
2010-01-02 07:42 - 2010-01-02 07:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-03-28 19:34 - 2014-01-21 16:40 - 00817440 ____N () C:\Program Files\Plantronics\GameCom 780 & 788\GameCom780.exe
2014-05-25 03:34 - 2014-05-25 03:34 - 00249024 _____ () C:\Program Files\pcmax\pcmax.exe
2014-06-01 21:52 - 2014-04-10 20:52 - 00962048 _____ () C:\Program Files (x86)\SVP\SVPMgr.exe
2014-03-29 09:40 - 2014-06-28 22:38 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-03-28 19:11 - 2013-05-23 15:33 - 00044104 _____ () C:\Windows\runSW.exe
2012-10-05 11:11 - 2012-10-05 11:11 - 00110592 ____N () C:\Program Files (x86)\Belkin\F9L1101\V1\PBN.exe
2012-10-05 11:11 - 2012-10-05 11:11 - 00086016 ____N () C:\Program Files (x86)\Belkin\F9L1101\V1\wlansrv.exe
2014-03-28 19:11 - 2013-07-22 18:53 - 00312144 _____ () C:\Program Files (x86)\Linksys WUSB6300\WifiSvc.exe
2014-08-13 11:57 - 2013-03-25 16:16 - 01117920 _____ () C:\Program Files\Bitdefender\Bitdefender SafeBox\System.Data.SQLite.dll
2014-07-29 15:22 - 2014-07-29 15:22 - 05319272 _____ () C:\Program Files\Waterfox\mozjs.dll
2014-07-11 14:43 - 2014-07-11 14:43 - 23204528 _____ () C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-28 19:34 - 2014-01-21 16:40 - 00149792 ____N () C:\Program Files\Plantronics\GameCom 780 & 788\VmixPLGC.dll
2009-05-16 22:00 - 2009-05-16 22:00 - 00200704 ____N () C:\Program Files (x86)\Belkin\F9L1101\V1\BelkinwcuiDLL.dll
2014-08-15 13:38 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-08-15 13:38 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-08-15 13:38 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-08-15 13:38 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-08-15 13:38 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-28 19:11 - 2013-07-19 17:01 - 00446464 _____ () C:\Program Files (x86)\Linksys WUSB6300\WifiLib.dll
2014-03-28 13:23 - 2013-09-16 12:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-05-21 16:11 - 2014-08-04 12:15 - 01171456 _____ () C:\Program Files (x86)\Steam\libavcodec-55.dll
2014-04-22 23:44 - 2014-08-04 12:15 - 00441856 _____ () C:\Program Files (x86)\Steam\libavutil-53.dll
2014-03-28 19:31 - 2014-08-04 12:15 - 00332288 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-03-28 19:31 - 2014-08-04 12:15 - 00769024 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-05-21 16:11 - 2014-08-13 15:31 - 02144448 _____ () C:\Program Files (x86)\Steam\video.dll
2014-05-21 16:11 - 2014-08-04 12:15 - 00403968 _____ () C:\Program Files (x86)\Steam\libavformat-55.dll
2014-05-21 16:11 - 2014-07-30 20:47 - 00519168 _____ () C:\Program Files (x86)\Steam\libswscale-2.dll
2014-03-28 19:31 - 2014-08-13 15:30 - 00677056 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-03-28 19:31 - 2014-08-12 23:27 - 34587328 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-08-14 14:25 - 2014-08-12 23:27 - 00837824 _____ () C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
2014-03-28 02:35 - 2014-03-28 02:35 - 00093696 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Program Files\Common Files\Microsoft Shared:dsCbOLddyVQsNqS525ByL0tby
AlternateDataStreams: C:\ProgramData\Microsoft:5HJMbaq77OVK1agmVZ6qWj1
AlternateDataStreams: C:\ProgramData\Microsoft:ZVYDqEnSzLTA1X10fwMp8xwupb

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


==================== Faulty Device Manager Devices =============

Name: Intel® HD Graphics 4600
Description: Intel® HD Graphics 4600
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: IGFX
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/17/2014 11:47:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532
Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1e
Exception code: 0x40000015
Fault offset: 0x0008d6fd
Faulting process id: 0x19ac
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3

Error: (08/17/2014 04:27:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12028

Error: (08/17/2014 04:27:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12028

Error: (08/17/2014 04:27:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/17/2014 04:27:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11029

Error: (08/17/2014 04:27:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11029

Error: (08/17/2014 04:27:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/17/2014 04:27:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10031

Error: (08/17/2014 04:27:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10031

Error: (08/17/2014 04:27:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (08/17/2014 11:47:43 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147467259

Error: (08/17/2014 11:47:43 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147467259

Error: (08/17/2014 11:47:36 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147467259

Error: (08/17/2014 11:47:36 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147467259

Error: (08/17/2014 11:47:35 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147467259

Error: (08/17/2014 11:47:35 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147467259

Error: (08/16/2014 11:16:16 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: The LogMeIn Hamachi Tunneling Engine service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (08/16/2014 11:16:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147467259

Error: (08/16/2014 11:16:01 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147467259

Error: (08/16/2014 11:16:01 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147467259


Microsoft Office Sessions:
=========================
Error: (08/17/2014 11:47:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd19ac01cfba4bb550e5f5F:\Malwarebytes Anti-Malware\mbam.exeF:\Malwarebytes Anti-Malware\MSVCR100.dllfe53e3bd-263e-11e4-95c3-74d435137134

Error: (08/17/2014 04:27:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12028

Error: (08/17/2014 04:27:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12028

Error: (08/17/2014 04:27:17 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/17/2014 04:27:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11029

Error: (08/17/2014 04:27:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11029

Error: (08/17/2014 04:27:16 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/17/2014 04:27:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10031

Error: (08/17/2014 04:27:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10031

Error: (08/17/2014 04:27:15 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


==================== Memory info ===========================

Processor: Intel® Core™ i5-4670K CPU @ 3.40GHz
Percentage of memory in use: 26%
Total physical RAM: 8081.17 MB
Available physical RAM: 5919.41 MB
Total Pagefile: 16160.52 MB
Available Pagefile: 12259.8 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:8.38 GB) NTFS
Drive d: (Storage) (Fixed) (Total:1862.92 GB) (Free:1083.81 GB) NTFS
Drive e: (EAWG_1EF) (CDROM) (Total:2.86 GB) (Free:0 GB) UDF
Drive f: (Lexar) (Removable) (Total:14.61 GB) (Free:14.55 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 9BD0D74A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 9BD0D732)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 14.6 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=14.6 GB) - (Type=0C)

==================== End Of Log ============================


  • 0

#4
SleepyDude
Posted 17 August 2014 - 04:25 PM

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,975 posts

Hi,

 

We have same work to do lets start...

 

 

Step 1 - Uninstall Programs

You have some programs installed that are dubious or Adware related that I would like you to uninstall...

Please open Start > Control Panel > Uninstall a program or Programs and Features if in Classic View, locate these programs on the list and uninstall them:

  • Torch

Notes:

  • If you can't uninstall any of the programs on the list don't worry we will remove it latter just move to the next item;
  • If during the uninstall the setup ask you to restart the computer please do it;

I would like you to uninstall Spybot - Search and Destroy because you have also Malwarebytes installed and Spybot could interfere with the fixs we need to run.

ATTENTION: Before running the steps bellow please disable Bitdefender the programs have some protection modules that prevents many changes to the system and will attempt to undo any fixes we run.
In order to safeguard your system from problems that can be brought on by a half finished fix, we need to disable all the Security Programs by following the directions on this link.
.
Step 2 - FRST Fix

!!! WARNING !!! The following fix is only relevant for this system and no other, running the script on another computer will not work and may cause problems...

  • Attached File  fixlist.txt   2.42KB   183 downloads
  • Download the file above and save it to the Desktop as fixlist.txt
    (It's important that both files, FRST or FRST64 and fixlist.txt are in the same location or the fix will not work!)
  • Execute FRST by double clicking on the icon FRST.gif. Make sure all the other programs are close.
    FRST_Fix.png
  • Press the Fix button just once and Wait. After the fix the system needs to restart if the tool does not request it please Restart the computer.
  • The tool will make a log (Fixlog.txt) on the same location as FRST/FRST64 please post it in your next reply.

.
Step 3 - AdwCleaner Scan and Remove
Download AdwCleaner from here to the Desktop

  • Close all open windows and browsers
  • Right click on the AdwCleaner_Icon.gif icon and choose Run as Administrator to execute the program
    (When the Tool opens for the first time you have to accept the Terms of use - click J'accepte/I Agree)
    AdwCleaner_Clean.png
  • Click the Scan button and wait for the scan to finish, only then the Clean button becomes active
  • Click the Clean button and wait, once done it may ask to reboot, allow it.
  • On reboot a log will be presented please copy/paste that in your next reply. The report is saved to C:\AdwCleaner\AdwCleaner[S0].txt

.
Step 4 - Scan with aswMBR

  • Download aswMBR from here or here and save the file to the Desktop.
  • Double click the aswMBR.exe file to run it.
    (On Windows Vista and above right click the icon and choose Run as Administrator, accept the security warning)
  • If you see the following prompt, click Yes:
    msgbox.png
    aswMBR_Start.png
  • If it asks you if you want to download the latest virus definitions, click Yes
  • Click the "Scan" button to start the scan
    aswMBR_QuickScan.png
  • On completion of the scan click Save log and save the file aswMBR.txt to your Desktop.
    WARNING: Don't click on the buttons FixMBR and Fix unless instructed to do so.
  • Open the log aswMBR.txt and post the full contents of the file in your next reply.

 

Things I would like to see in your next reply:

  • The Fixlog.txt log
  • AdwCleaner log AdwCleaner[S0].txt
  • The aswMBR.txt log

  • 0

#5
Reascr
Posted 17 August 2014 - 06:00 PM

Reascr

    Member

  • Topic Starter
  • Member
  • PipPip
  • 46 posts

Fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 16-08-2014 04
Ran by Owner at 2014-08-17 16:41:54 Run:1
Running from C:\Users\Owner\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
() C:\Program Files\pcmax\pcmax.exe
(TorchMedia Inc.) C:\Users\Owner\AppData\Local\Torch\Update\TorchCrashHandler.exe
HKLM\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79864 2014-05-25] ()
HKLM-x32\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79864 2014-05-25] ()
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\...\Run: [pcreg] => C:\Program Files\pcmax\service.exe [79864 2014-05-25] ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
FF Plugin-x32: TorchVLC -> C:\Users\Owner\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll (VideoLAN)
FF HKCU\...\Firefox\Extensions: [{250B358A-73F5-566C-D1F8-F9288F1A6EA6}] - C:\Program Files (x86)\ViewPassword-soft\171.xpi
CHR Extension: (CostMin) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekcbeedokankiabmldepolnjhffnbmno [2014-05-30]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
R2 pcmaxservice; C:\Program Files\pcmax\pcmax.exe [249024 2014-05-25] ()
R2 TorchCrashHandler; C:\Users\Owner\AppData\Local\Torch\Update\TorchCrashHandler.exe [1216520 2014-07-09] (TorchMedia Inc.)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-07-13] ()
U3 aph9pnrl; C:\Windows\System32\Drivers\aph9pnrl.sys [0 ] (Microsoft Corporation)
2014-08-16 23:16 - 2014-07-14 18:02 - 00000000 ____D () C:\ProgramData\TorchCrashHandler
Task: {1DDC8B20-00BB-4EE5-8362-307E76422E57} - \Mext Guard FBE8818C-5B13-48C2-A93E-AD731167DBF2 No Task File <==== ATTENTION
Task: {270C77D5-57A8-4818-B858-3D12FA21829E} - \GPUpdate No Task File <==== ATTENTION
Task: {2EB2FEC4-1113-4705-BBE8-64CBF906E865} - System32\Tasks\pcreg => C:\Program Files\pcmax\service.exe [2014-05-25] ()
Task: {471FFEED-7C2C-4761-BFDD-044F242CF80C} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION
Task: {7E86D7EF-9017-4969-88AB-5D4C529E85DA} - \update-sys No Task File <==== ATTENTION
Task: {8DE7C6A9-A518-4F52-8BAC-69DAC89597E5} - \PC Speed Maximizer Schedule No Task File <==== ATTENTION
Task: {B7F3C64A-1568-49B1-8193-391E18291B2B} - \MySearchDial No Task File <==== ATTENTION
Task: {FA4473A7-7B07-42BA-83CB-1E799054C10A} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION
Task: {CF58792B-7736-4D63-A44D-2D9B2D9DE770} - System32\Tasks\GPUpdateCheck => C:\Program Files (x86)\GetPrivate\gpup.exe
C:\Program Files\pcmax
C:\Users\Owner\AppData\Local\Torch
C:\Program Files (x86)\ViewPassword-soft
Hosts:
EmptyTemp:
*****************

[2824] C:\Program Files\pcmax\pcmax.exe => Process closed successfully.
C:\Users\Owner\AppData\Local\Torch\Update\TorchCrashHandler.exe => No running process found
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\pcreg => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\pcreg => value deleted successfully.
HKU\S-1-5-21-3941167080-2693931430-3347659922-1000\Software\Microsoft\Windows\CurrentVersion\Run\\pcreg => value deleted successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\TorchVLC" => Key not found.
C:\Users\Owner\AppData\Local\Torch\Plugins\Video\VLC\npvlc.dll not found.
HKCU\Software\Mozilla\Firefox\Extensions\\{250B358A-73F5-566C-D1F8-F9288F1A6EA6} => value deleted successfully.
C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekcbeedokankiabmldepolnjhffnbmno => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
pcmaxservice => Service deleted successfully.
TorchCrashHandler => Service not found.
hitmanpro37 => Service deleted successfully.
aph9pnrl => Service not found.
"C:\ProgramData\TorchCrashHandler" => File/Directory not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1DDC8B20-00BB-4EE5-8362-307E76422E57}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1DDC8B20-00BB-4EE5-8362-307E76422E57}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Mext Guard FBE8818C-5B13-48C2-A93E-AD731167DBF2" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{270C77D5-57A8-4818-B858-3D12FA21829E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{270C77D5-57A8-4818-B858-3D12FA21829E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GPUpdate" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2EB2FEC4-1113-4705-BBE8-64CBF906E865}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2EB2FEC4-1113-4705-BBE8-64CBF906E865}" => Key deleted successfully.
C:\Windows\System32\Tasks\pcreg => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\pcreg" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{471FFEED-7C2C-4761-BFDD-044F242CF80C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{471FFEED-7C2C-4761-BFDD-044F242CF80C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7E86D7EF-9017-4969-88AB-5D4C529E85DA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E86D7EF-9017-4969-88AB-5D4C529E85DA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\update-sys" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8DE7C6A9-A518-4F52-8BAC-69DAC89597E5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8DE7C6A9-A518-4F52-8BAC-69DAC89597E5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PC Speed Maximizer Schedule" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B7F3C64A-1568-49B1-8193-391E18291B2B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7F3C64A-1568-49B1-8193-391E18291B2B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MySearchDial" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FA4473A7-7B07-42BA-83CB-1E799054C10A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA4473A7-7B07-42BA-83CB-1E799054C10A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF58792B-7736-4D63-A44D-2D9B2D9DE770}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF58792B-7736-4D63-A44D-2D9B2D9DE770}" => Key deleted successfully.
C:\Windows\System32\Tasks\GPUpdateCheck => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GPUpdateCheck" => Key deleted successfully.

"C:\Program Files\pcmax" directory move:

C:\Program Files\pcmax\msvcr100.dll => Moved successfully.
C:\Program Files\pcmax\nodown.txt => Moved successfully.
C:\Program Files\pcmax\pcmax.exe => Moved successfully.
Could not move "C:\Program Files\pcmax\service.exe" => Scheduled to move on reboot.
Could not move "C:\Program Files\pcmax" directory. => Scheduled to move on reboot.

"C:\Users\Owner\AppData\Local\Torch" => File/Directory not found.
"C:\Program Files (x86)\ViewPassword-soft" => File/Directory not found.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
 

AdwCleaner log:

# AdwCleaner v3.215 - Report created 13/07/2014 at 18:03:07
# Updated 09/07/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Owner - OWNER-PC
# Running from : C:\Users\Owner\Downloads\adwcleaner_3.215.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : be0fb33b
[#] Service Deleted : globalUpdate
[#] Service Deleted : globalUpdatem
Service Deleted : torchcrashhandler

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\IePluginServices
Folder Deleted : C:\ProgramData\torchcrashhandler
Folder Deleted : C:\ProgramData\VisualBee
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Media Converter
Folder Deleted : C:\Program Files (x86)\globalUpdate
Folder Deleted : C:\Program Files (x86)\Skillbrains
Folder Deleted : C:\Program Files (x86)\supporter
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\HomeGroupUser$\AppData\Local\torch
Folder Deleted : C:\Users\Owner\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Owner\AppData\Local\emaze
Folder Deleted : C:\Users\Owner\AppData\Local\globalUpdate
Folder Deleted : C:\Users\Owner\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Owner\AppData\Local\Skillbrains
Folder Deleted : C:\Users\Owner\AppData\Local\torch
Folder Deleted : C:\Users\Owner\AppData\Roaming\GetPrivate
Folder Deleted : C:\Users\Owner\AppData\Roaming\PC Speed Maximizer
Folder Deleted : C:\Users\Owner\AppData\Roaming\SmartMediaConverter
Folder Deleted : C:\Users\Owner\AppData\Roaming\SupTab
Folder Deleted : C:\Users\Owner\Documents\PC Speed Maximizer
File Deleted : C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
File Deleted : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\user.js
File Deleted : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
File Deleted : C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
File Deleted : C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
File Deleted : C:\Windows\System32\Tasks\GPUpdate
File Deleted : C:\Windows\System32\Tasks\Mext Guard FBE8818C-5B13-48C2-A93E-AD731167DBF2
File Deleted : C:\Windows\Tasks\MySearchDial.job
File Deleted : C:\Windows\System32\Tasks\MySearchDial
File Deleted : C:\Windows\System32\Tasks\PC Speed Maximizer Schedule
File Deleted : C:\Windows\Tasks\update-sys.job
File Deleted : C:\Windows\System32\Tasks\update-sys

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Applications\Torch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\torch.exe
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\TorchVLC
Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{be0fb33b}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : HKCU\Software\FreeSoftToday
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\pc speed maximizer
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKCU\Software\SkillBrains
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\Tutorials
Key Deleted : HKCU\Software\TutoTag
Key Deleted : HKCU\Software\visualbee
Key Deleted : HKCU\Software\AppDataLow\Software\ViewPassword
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Key Deleted : HKLM\Software\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\installedbrowserextensions
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\SkillBrains
Key Deleted : HKLM\Software\SupDp
Key Deleted : HKLM\Software\SupTab
Key Deleted : HKLM\Software\torch
Key Deleted : HKLM\Software\Tutorials
Key Deleted : HKLM\Software\V9Software
Key Deleted : HKLM\Software\visualbee
Key Deleted : HKLM\Software\Wpm
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\torch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysearchdial
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PC Speed Maximizer_is1
Key Deleted : [x64] HKLM\SOFTWARE\installedbrowserextensions
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~1.DLL
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SupTab\SEARCH~2.DLL

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17207

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v29.0.1 (en-US)

[ File : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\p33i0byu.default\prefs.js ]

Line Deleted : user_pref("{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}.ScriptData_whiteListSearch", "{\"isearch.babylon.com\":\"q\",\"search.imesh.net\":\"q\",\"www.search-results.com\":\"q\",\"home.mywebsearch.com\":\"se[...]

-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://search.v9.com/web/?type=ds&ts=1401510654&from=irs&uid=ST2000DM001-1CH164_W1E1MPTEXXXXW1E1MPTE&i=psd&t=3435d8df3&q={searchTerms}
Deleted [Search Provider] : hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tuto_14_18&cd=2XzuyEtN2Y1L1Qzu0Czz0DyBtCzytDyBtAyCyDyBtA0DyByDtN0D0Tzu0SzzzztCtN1L2XzutBtFtBtDtFtCzytFtCtN1L1Czu2Z2Y2Z1F1VtCyE1VtCzztN1L1G1B1V1N2Y1L1Qzu2StA0A0CtBtCyB0DzytGzytC0C0DtGtD0ByCzytG0BzyyD0DtGtB0DtDyDzzyBzzyByC0EyB0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyD0FyCtA0B0EyE0AtGtB0A0DtBtGtAyEtBzztGzz0D0F0DtGtD0ByDzy0BtCyCzzzyyBtDyE2Q&cr=1492712856&ir=
Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb
Deleted [Extension] : iagcajndpnfncplednpbnkahadegklfa

*************************

AdwCleaner[R0].txt - [9297 octets] - [13/07/2014 18:02:43]
AdwCleaner[S0].txt - [8437 octets] - [13/07/2014 18:03:07]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8497 octets] ##########

aswMBR log:

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-08-17 16:49:10
-----------------------------
16:49:10.910    OS Version: Windows x64 6.1.7601 Service Pack 1
16:49:10.910    Number of processors: 4 586 0x3C03
16:49:10.911    ComputerName: OWNER-PC  UserName: Owner
16:49:11.086    Initialize success
16:49:11.114    VM: initialized successfully
16:49:11.119    VM: Intel CPU supported
16:49:13.754    VM: disk I/O iaStorA.sys
16:50:44.035    AVAST engine defs: 14081701
16:51:18.334    Disk 0  \Device\Harddisk0\DR0 -> \Device\00000073
16:51:18.339    Disk 0 Vendor: ST2000DM CC43 Size: 1907729MB BusType: 11
16:51:18.344    Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\00000074
16:51:18.350    Disk 1 Vendor: Samsung_ EXT0 Size: 114473MB BusType: 11
16:51:18.360    Disk 1 MBR read successfully
16:51:18.363    Disk 1 MBR scan
16:51:18.417    Disk 1 Windows 7 default MBR code
16:51:18.420    Disk 1 Partition 1 00     07    HPFS/NTFS NTFS       114471 MB offset 2048
16:51:18.427    Disk 1 scanning C:\Windows\system32\drivers
16:51:21.085    Service scanning
16:51:22.787    Service BdfNdisf c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys **LOCKED** 5
16:51:22.804    Service bdfwfpf C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys **LOCKED** 5
16:51:22.820    Service bdfwfpf_pc C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys **LOCKED** 5
16:51:28.150    Modules scanning
16:51:28.162    Disk 1 trace - called modules:
16:51:28.177    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStorF.sys >>UNKNOWN [0xfffffa80071252c0]<<sptd.sys storport.sys hal.dll iaStorA.sys
16:51:28.186    1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa8009b5a060]
16:51:28.195    3 CLASSPNP.SYS[fffff880019cc43f] -> nt!IofCallDriver -> [0xfffffa8007413860]
16:51:28.201    5 iaStorF.sys[fffff88001de3a84] -> nt!IofCallDriver -> \Device\00000074[0xfffffa80072b79c0]
16:51:28.204    \Driver\iaStorA[0xfffffa80072a83c0] -> IRP_MJ_CREATE -> 0xfffffa80071252c0
16:51:28.333    AVAST engine scan C:\Windows
16:51:28.845    AVAST engine scan C:\Windows\system32
16:52:17.587    AVAST engine scan C:\Windows\system32\drivers
16:52:20.660    AVAST engine scan C:\Users\Owner
16:54:20.362    File: C:\Users\Owner\Documents\Star Wars Empire at War Gold Pack\daemon4123-lite.exe  **INFECTED** Win32:Adware-gen [Adw]
16:54:48.052    AVAST engine scan C:\ProgramData
16:54:58.004    Scan finished successfully
16:55:35.809    Disk 1 MBR has been saved successfully to "C:\Users\Owner\Downloads\MBR.dat"
16:55:35.845    The log file has been saved successfully to "C:\Users\Owner\Downloads\aswMBR.txt"

 


  • 0

#6
SleepyDude
Posted 18 August 2014 - 12:38 PM

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,975 posts

Hi,

 

Can you run Malwarebytes now?

 

Malwarebytes

  • close all the other running programs, specially the Web browser
  • execute Malwarebytes MBAM.gif you have installed
    MBAM2_Updating.png
  • let's make sure the program is updated, click on Update Now
  • Click the Settings tab, and check the box next to Scan for rootkits:
    MBAM2_Settings.png
  • Go back to the Dashboard tab, and click the Scan Now button:
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, it will show you the results:
    MBAM2_threat-detected.jpg
  • Click on Quarantine All, then click on Apply Actions.
  • To complete any actions taken you will be prompted to restart your computer...click on Yes. Failure to reboot normally will prevent Malwarebytes from removing all the malware.
    mbam4_zps490948cc.png
  • After rebooting the computer, copy and past the mbam.log in your next reply.

To retrieve the Malwarebytes Anti-Malware 2.0 scan log information


  • The log is automatically saved by MBAM and can be viewed by going to the History tab, clicking on Application Logs:
    MBAM2_Log.png
  • Select (check) the box next to Scan Log. Choose the most current scan, and click on the View button:
  • In the bottom of the Scanning History Log window that opens, click on Export > Save to Text file (*.txt) button. Save the report to your Desktop.
  • Copy & Paste the entire contents of the report log in your next reply.

 

Things I would like to see in your next reply:

  • The mbam-log-yyyy-mm-dd

 


  • 0

#7
Reascr
Posted 18 August 2014 - 02:00 PM

Reascr

    Member

  • Topic Starter
  • Member
  • PipPip
  • 46 posts

Malwarebytes still crashes. I'm going to uninstall it and get the latest version to see if it works. Then I'll post the log

 

After installing the latest version, it still doesn't work


Edited by Reascr, 18 August 2014 - 02:02 PM.

  • 0

#8
SleepyDude
Posted 18 August 2014 - 03:43 PM

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,975 posts

Hi,

 

Please don't edit your posts to add new information, put the info into a new post because I will not get a notification when you edit.

 

Ok, we need to do some more checks before trying to work on the Malwarebytes problem.

 

Uninstall DAEMON Tools Lite please because this type of program interferes with the scans we need to do, you can reinstall the program latter when the computer is considered clean.

 

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application
    (Accept the UAC prompt to allow changes to the computer).
  • Click Accept on the windows End User License Agreement and KSN Statement, then on the following window click on Change parameters
    TDSSKiller_Changep.png
  • Put a checkmark beside loaded modules.
    TDSSKiller-2.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click again on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    TDSSKiller-3.png
  • Click the Start Scan button.
    TDSSKiller_Scan.png
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    TDSSKiller_Skip.png
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    TDSSKiller_Cure.png
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file on your next post.

Things I would like to see in your next reply:

  • The TDSSKiller log

 

 


  • 0

#9
Reascr
Posted 18 August 2014 - 04:58 PM

Reascr

    Member

  • Topic Starter
  • Member
  • PipPip
  • 46 posts

I didn't get a log for both times I did it. However, it did say that C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe was infected.


  • 0

#10
SleepyDude
Posted 18 August 2014 - 05:02 PM

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,975 posts

I didn't get a log for both times I did it. However, it did say that C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe was infected.

 

Please check the root of the C:\ drive it should have some log there named TDSSKiller.3.0.0.40_dd.mm.yyyy_hh.mm.ss_log.txt


  • 0

Advertisements

#11
Reascr
Posted 18 August 2014 - 05:09 PM

Reascr

    Member

  • Topic Starter
  • Member
  • PipPip
  • 46 posts

The post is too long, should I just attach it?


  • 0

#12
Reascr
Posted 18 August 2014 - 06:23 PM

Reascr

    Member

  • Topic Starter
  • Member
  • PipPip
  • 46 posts

Here, I put it on Pastebin: http://pastebin.com/fBJKRvL3


  • 0

#13
SleepyDude
Posted 19 August 2014 - 02:05 PM

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,975 posts

The post is too long, should I just attach it?

 

Yes or split the file in more than one post.


  • 0

#14
Reascr
Posted 19 August 2014 - 02:08 PM

Reascr

    Member

  • Topic Starter
  • Member
  • PipPip
  • 46 posts

 

The post is too long, should I just attach it?

 

Yes or split the file in more than one post.

 

http://pastebin.com/fBJKRvL3 Here's it on Pastebin


  • 0

#15
SleepyDude
Posted 19 August 2014 - 02:33 PM

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,975 posts
Hi,
 
It's ok thanks I checked the log and TDSSKiller removed a good file we need to restore.
  • Download TDDSQlook.zip and save it to the Desktop
  • Extract the ZIP file to obtain TDSSQlook.exe
  • Right click TDSSQlook.exe and click Run as Administrator
  • The tool will present a menu with some options...
  • Select option A Scan by typing A and press Enter
  • The tool will open Notepad with a log please copy its contents to your post

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP