Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Explorer.exe multiple instances, hogs CPU usage -> BSOD


  • This topic is locked This topic is locked
3 replies to this topic

#1 daphoenix7207

daphoenix7207

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:28 AM

Posted 03 March 2014 - 03:24 PM

Hello,

 

Recently my computer kept crashing. I investigated and found that explorer.exe in the task manager multiplied over time and exponentially took up CPU resources until the computer BSOD. I have to manually kill explorer.exe processes else it would crash my computer. I've tried using AVG, Malwarebytes, Microsoft Security Essentials, SFC /ScanNow, regedit fixes to no avail. 

 

I could not produce a DDS.txt log file some reason through the recommended DDS.com tool download (any help on this would be appreciated)

 

Attached is the attach.txt file that came with the dds tool. 

 

 

Attached Files



BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:28 PM

Posted 03 March 2014 - 03:53 PM

Hi there,
 
please run a FRST scan:


Please download Farbar Recovery Scan Tool and save it to your Desktop.
(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)
  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.


#3 daphoenix7207

daphoenix7207
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:28 AM

Posted 03 March 2014 - 04:34 PM

Thanks for the response aharonov

 

Here's the attached .txt files

 

FRST.txt

----------

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-03-2014 01
Ran by MATTHEW (administrator) on MATTHEW-HP on 03-03-2014 16:24:43
Running from C:\Users\MATTHEW\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\loggingserver.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(PC Drivers Headquarters) C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe
(PFU LIMITED) C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardLauncher.exe
(PFU LIMITED) C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsMon.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
() C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
(Microsoft Corporation) C:\Windows\System32\wiawow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [FUFAXSTM] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-08] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXRCV] - C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-08] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe [2539544 2014-03-03] ()
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-01-28] (Hewlett-Packard)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1448478992-1725895823-1014337574-1000\...\Run: [Driver Support] - C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [4680568 2014-02-20] (PC Drivers Headquarters)
HKU\S-1-5-21-1448478992-1725895823-1014337574-1000\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563608 2014-01-06] (SUPERAntiSpyware)
HKU\S-1-5-21-1448478992-1725895823-1014337574-1000\...\Policies\Explorer: [] 
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK/1
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchterms}&l=dis&o=HPDTDF
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-30572-11896-1/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchterms}&l=dis&o=HPDTDF
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKLM-x32 - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-30572-11896-1/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://search.ask.com/web?q={searchterms}&l=dis&o=HPDTDF
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={E0DA849F-8856-4F65-A7CF-72F39C5F8CF0}&mid=95e2081bb28d41b38ca04f69f0d30fcf-3da99cdd5d30e7d5e9fecad1efac4fcea83315c9&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-02-06 08:55:45&v=17.3.1.204&pid=safeguard&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = http://search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPDTDF
SearchScopes: HKCU - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/711-30572-11896-1/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: NJStarBHO Class - {E74F179F-F6CC-4BE0-9638-DEA49583953F} - C:\Program Files (x86)\NJStar Communicator\x64\NJStarBHO64.dll No File
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - AVG SafeGuard toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG SafeGuard toolbar\18.0.0.248\AVG SafeGuard toolbar_toolbar.dll (AVG Secure Search)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
DPF: HKLM-x32 {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} file:///C:/Program%20Files%20(x86)/AutoCAD%202002/AcDcToday.ocx
DPF: HKLM-x32 {82E5DF24-51E8-47CD-864A-F4BD5005AA73} https://www.icloud.com/system/iCloud.cab
DPF: HKLM-x32 {AE563720-B4F5-11D4-A415-00108302FDFD} file:///C:/Program%20Files%20(x86)/AutoCAD%202002/InstBanr.ocx
DPF: HKLM-x32 {C6637286-300D-11D4-AE0A-0010830243BD} file:///C:/Program%20Files%20(x86)/AutoCAD%202002/InstFred.ocx
DPF: HKLM-x32 {F281A59C-7B65-11D3-8617-0010830243BD} file:///C:/Program%20Files%20(x86)/AutoCAD%202002/AcPreview.ocx
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.0\ViProtocol.dll (AVG Secure Search)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
Chrome: 
=======
CHR HomePage: hxxp://google.com/
CHR Extension: (AdBlock) - C:\Users\MATTHEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-03-01]
CHR Extension: (AVG SafeGuard) - C:\Users\MATTHEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof [2013-11-20]
CHR Extension: (Google Wallet) - C:\Users\MATTHEW\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\urladvisor.crx [2013-10-11]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-11]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\ChromeExt\virtkbd.crx [2013-10-11]
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG SafeGuard toolbar\ChromeExt\17.3.1.204\avg.crx [2014-02-06]
 
==================== Services (Whitelisted) =================
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe [214512 2013-10-11] (Kaspersky Lab ZAO)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-27] (Microsoft Corp.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 vToolbarUpdater18.0.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\ToolbarUpdater.exe [1759768 2014-03-03] (AVG Secure Search)
 
==================== Drivers (Whitelisted) ====================
 
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-03-03] (AVG Technologies)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2014-03-03] (Kaspersky Lab ZAO)
U4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-03-03] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [624224 2014-03-03] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-11] (Kaspersky Lab ZAO)
S3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2014-03-03] (Kaspersky Lab ZAO)
S3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-11] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178272 2014-03-03] (Kaspersky Lab ZAO)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-03-03 16:24 - 2014-03-03 16:25 - 00020993 _____ () C:\Users\MATTHEW\Desktop\FRST.txt
2014-03-03 16:24 - 2014-03-03 16:24 - 00000000 ____D () C:\FRST
2014-03-03 16:23 - 2014-03-03 16:23 - 02156544 _____ (Farbar) C:\Users\MATTHEW\Desktop\FRST64.exe
2014-03-03 16:22 - 2014-03-03 16:23 - 02156544 _____ (Farbar) C:\Users\MATTHEW\Downloads\FRST64.exe
2014-03-03 16:19 - 2014-03-03 16:19 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\MATTHEW\Downloads\tdsskiller (1).exe
2014-03-03 16:16 - 2013-05-06 09:13 - 00110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2014-03-03 16:15 - 2014-03-03 16:15 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-03-03 16:14 - 2014-03-03 16:22 - 00624224 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-03-03 16:14 - 2014-03-03 16:22 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-03-03 16:14 - 2014-03-03 16:18 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-03 16:14 - 2014-03-03 16:14 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-03-03 16:08 - 2014-03-03 16:08 - 00000000 ___SD () C:\ComboFix
2014-03-03 16:07 - 2014-03-03 16:07 - 00001810 _____ () C:\Users\MATTHEW\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-03-03 16:07 - 2014-03-03 16:07 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\SUPERAntiSpyware.com
2014-03-03 16:07 - 2014-03-03 16:07 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-03-03 16:06 - 2014-03-03 16:08 - 00000000 ____D () C:\Qoobox
2014-03-03 16:06 - 2014-03-03 16:07 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-03-03 16:06 - 2014-03-03 16:06 - 00000000 ____D () C:\Windows\erdnt
2014-03-03 16:06 - 2014-03-03 16:06 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-03-03 16:05 - 2014-03-03 16:06 - 00001420 _____ () C:\Users\MATTHEW\Desktop\Rkill.txt
2014-03-03 16:05 - 2014-03-03 16:05 - 01057016 _____ (Bleeping Computer, LLC) C:\Users\MATTHEW\Desktop\rkill64.exe
2014-03-03 16:04 - 2014-03-03 16:04 - 00001345 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-03-03 16:04 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-03-03 16:03 - 2014-03-03 16:09 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-03 16:03 - 2014-03-03 16:06 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-03-03 16:02 - 2014-03-03 16:01 - 246010176 _____ (Kaspersky Lab) C:\Users\MATTHEW\Desktop\kav14.0.0.4651aEN_4872.exe
2014-03-03 16:02 - 2014-03-03 15:58 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\MATTHEW\Desktop\tdsskiller.exe
2014-03-03 16:02 - 2014-03-03 15:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\MATTHEW\Desktop\spybot-2.2.exe
2014-03-03 16:02 - 2014-03-03 15:50 - 05186474 ____R (Swearware) C:\Users\MATTHEW\Desktop\ComboFix.exe
2014-03-03 16:02 - 2014-03-03 15:50 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\MATTHEW\Desktop\rkill.exe
2014-03-03 16:02 - 2014-03-03 15:49 - 18146232 _____ (SUPERAntiSpyware) C:\Users\MATTHEW\Desktop\SUPERAntiSpyware.exe
2014-03-03 15:58 - 2014-03-03 16:01 - 246010176 _____ (Kaspersky Lab) C:\Users\MATTHEW\Downloads\kav14.0.0.4651aEN_4872.exe
2014-03-03 15:56 - 2014-03-03 15:58 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\MATTHEW\Downloads\tdsskiller.exe
2014-03-03 15:52 - 2014-03-03 15:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\MATTHEW\Downloads\spybot-2.2.exe
2014-03-03 15:51 - 2014-03-03 15:51 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForMATTHEW
2014-03-03 15:51 - 2014-03-03 15:51 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForMATTHEW.job
2014-03-03 15:49 - 2014-03-03 15:50 - 05186474 _____ (Swearware) C:\Users\MATTHEW\Downloads\ComboFix.exe
2014-03-03 15:49 - 2014-03-03 15:50 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\MATTHEW\Downloads\rkill.exe
2014-03-03 15:48 - 2014-03-03 15:49 - 18146232 _____ (SUPERAntiSpyware) C:\Users\MATTHEW\Downloads\SUPERAntiSpyware.exe
2014-03-03 15:33 - 2014-03-03 15:33 - 00000000 _____ () C:\Users\MATTHEW\Downloads\CE9D.tmp
2014-03-03 15:26 - 2014-03-03 15:26 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds (7).com
2014-03-03 15:25 - 2014-03-03 15:26 - 00000000 ____D () C:\AdwCleaner
2014-03-03 15:25 - 2014-03-03 15:25 - 01244192 _____ () C:\Users\MATTHEW\Downloads\AdwCleaner.exe
2014-03-03 15:16 - 2014-03-03 15:16 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (6).com
2014-03-03 14:11 - 2014-03-03 14:11 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (5).com
2014-03-03 14:11 - 2014-03-03 14:11 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds (1).scr
2014-03-03 14:08 - 2014-03-03 14:09 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds.scr
2014-03-03 14:01 - 2014-03-03 14:02 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (4).com
2014-03-03 13:53 - 2014-03-03 13:53 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (3).com
2014-03-03 13:52 - 2014-03-03 13:53 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds (2).com
2014-03-03 13:50 - 2014-03-03 13:50 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (1).com
2014-03-03 13:48 - 2014-03-03 15:17 - 00001934 _____ () C:\Users\MATTHEW\Desktop\attach.txt
2014-03-03 13:45 - 2014-03-03 13:45 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds.com
2014-03-03 13:38 - 2014-03-03 13:38 - 00180000 _____ (Kaspersky Lab) C:\Users\MATTHEW\Downloads\kss12.0.1.117EN_RU_DE_FR_2926.exe
2014-03-03 12:02 - 2014-03-03 12:02 - 00509440 _____ (Tech Support Guy System) C:\Users\MATTHEW\Downloads\SysInfo.exe
2014-03-03 09:59 - 2014-03-03 09:59 - 00000000 ____D () C:\Users\MATTHEW\Downloads\ProcessExplorer (1)
2014-03-03 09:56 - 2013-12-28 11:10 - 00001333 _____ () C:\Users\MATTHEW\Desktop\Copy of FW WS-2014-JAN ANALYSIS -2-1.xlsx - Shortcut.lnk
2014-03-03 09:56 - 2013-12-26 16:10 - 00281258 _____ () C:\Users\MATTHEW\Desktop\ScanSnap_FW WS-2014 ANALYSIS -2.xlsx
2014-03-03 09:56 - 2013-03-19 16:41 - 00272381 _____ () C:\Users\MATTHEW\Desktop\FW WS-2013 ANALYSIS .xlsx
2014-03-03 09:55 - 2014-03-03 09:55 - 01243588 _____ () C:\Users\MATTHEW\Downloads\ProcessExplorer.zip
2014-03-03 09:55 - 2014-03-03 09:55 - 01243588 _____ () C:\Users\MATTHEW\Downloads\ProcessExplorer (1).zip
2014-03-03 09:54 - 2014-03-03 09:57 - 00000000 ____D () C:\Users\MATTHEW\Desktop\MatthewDesktop Items
2014-03-03 09:50 - 2014-03-03 14:44 - 00000000 ____D () C:\Windows\Minidump
2014-03-03 09:36 - 2014-03-03 09:36 - 00000355 _____ () C:\Users\MATTHEW\Desktop\Computer - Shortcut.lnk
2014-03-03 09:35 - 2014-03-03 09:35 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-03-01 10:28 - 2014-03-01 10:29 - 90578216 _____ (AVAST Software) C:\Users\MATTHEW\Downloads\Unconfirmed 274448.crdownload
2014-03-01 10:10 - 2014-03-01 10:10 - 00860176 _____ (Microsoft Corporation) C:\Users\MATTHEW\Downloads\mssstool64 (1).exe
2014-03-01 10:06 - 2014-03-01 10:06 - 00860176 _____ (Microsoft Corporation) C:\Users\MATTHEW\Downloads\mssstool64.exe
2014-03-01 10:00 - 2014-03-01 10:00 - 00000000 ____D () C:\ProgramData\PDFC
2014-03-01 09:34 - 2014-03-01 09:34 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\NewspaperDirect
2014-03-01 09:23 - 2014-03-01 09:23 - 00003790 _____ () C:\Windows\System32\Tasks\Driver Support-RTMUpdater
2014-03-01 09:23 - 2014-03-01 09:23 - 00003790 _____ () C:\Windows\System32\Tasks\Driver Support-RTMScan
2014-03-01 09:23 - 2014-03-01 09:23 - 00003774 _____ () C:\Windows\System32\Tasks\Driver Support-RTMRules
2014-03-01 09:23 - 2014-03-01 09:23 - 00001270 _____ () C:\Users\MATTHEW\Desktop\Revo Uninstaller.lnk
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\Users\MATTHEW\Downloads\Driver Support
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\PC_Drivers_Headquarters
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\ProgramData\UAB
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\ProgramData\Driver Support
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-03-01 09:22 - 2014-03-01 09:22 - 00002303 _____ () C:\Users\Public\Desktop\Driver Support.lnk
2014-03-01 09:22 - 2014-03-01 09:22 - 00000000 ____D () C:\Program Files (x86)\Driver Support
2014-03-01 09:17 - 2014-03-01 09:17 - 00930952 _____ (CNET Download.com) C:\Users\MATTHEW\Downloads\cbsidlm-cbsi183-Revo_Uninstaller-SEO-10687648.exe
2014-03-01 08:56 - 2014-03-03 09:31 - 00000000 ____D () C:\Windows\pss
2014-02-28 15:29 - 2014-03-01 11:07 - 00001719 _____ () C:\Windows\SysWOW64\InstallUtil.InstallLog
2014-02-28 15:15 - 2014-03-01 11:26 - 00001421 _____ () C:\Users\MATTHEW\Desktop\avgrep.txt
2014-02-28 09:11 - 2014-02-28 09:11 - 00000000 _____ () C:\END
2014-02-28 09:02 - 2014-02-28 15:11 - 00000000 ____D () C:\70880a6c81cdaf3696
2014-02-28 09:02 - 2014-02-28 09:02 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-28 09:01 - 2014-02-28 09:01 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-28 09:00 - 2014-02-28 09:00 - 00000000 ____D () C:\AMD
2014-02-28 08:48 - 2014-02-28 09:04 - 00000440 _____ () C:\Windows\Tasks\DriverNavigator Scheduled Scan.job
2014-02-28 08:47 - 2014-02-28 08:47 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Easeware
2014-02-27 17:12 - 2014-02-27 17:12 - 00000036 _____ () C:\Users\MATTHEW\AppData\Local\housecall.guid.cache
2014-02-27 17:08 - 2014-02-28 15:11 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-27 13:43 - 2014-02-28 15:10 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Paiszae
2014-02-27 12:45 - 2014-02-27 12:45 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\AVG
2014-02-27 12:42 - 2014-02-27 12:53 - 00000000 ____D () C:\ProgramData\AVG
2014-02-27 12:28 - 2014-02-27 13:06 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-02-27 09:36 - 2014-02-27 15:57 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Fiicneuw
2014-02-27 09:06 - 2014-02-27 09:06 - 00012326 _____ () C:\Users\MATTHEW\AppData\Local\kadrdruk
2014-02-27 09:05 - 2014-02-27 09:05 - 00068161 _____ () C:\Users\MATTHEW\AppData\Local\wcbehkkl
2014-02-27 09:04 - 2014-02-27 09:04 - 00000000 _____ () C:\Users\MATTHEW\AppData\Roaming\SharedSettings.ccs
2014-02-25 17:47 - 2014-02-28 15:06 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-24 11:33 - 2014-02-24 11:33 - 00007019 _____ () C:\Users\MATTHEW\Downloads\Pizza_Marvel.aqproj
2014-02-24 09:00 - 2014-02-24 09:00 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\{D0EB16D1-3C43-480E-98CC-3EE89C53AF3F}
2014-02-24 09:00 - 2014-02-24 09:00 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\{877D4FCA-AD4D-47F6-844F-7A68D647D6E5}
2014-02-24 08:59 - 2014-02-24 08:59 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Windows Live Writer
2014-02-24 08:59 - 2014-02-24 08:59 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\Windows Live Writer
2014-02-17 09:23 - 2014-02-17 09:23 - 00016384 _____ () C:\Users\MATTHEW\Downloads\4822____-MANGAP.pxf
2014-02-17 09:23 - 2014-02-17 09:23 - 00016384 _____ () C:\Users\MATTHEW\Downloads\4822____-MANGAP (1).pxf
2014-02-12 17:40 - 2013-12-21 04:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-12 17:40 - 2013-12-21 03:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-12 17:39 - 2014-02-06 07:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-12 17:39 - 2014-02-06 06:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 06:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-12 17:39 - 2014-02-06 06:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-12 17:39 - 2014-02-06 06:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-12 17:39 - 2014-02-06 06:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 05:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 05:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-12 17:39 - 2014-02-06 05:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-12 17:39 - 2014-02-06 05:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 05:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 05:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-12 17:39 - 2014-02-06 05:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-12 17:39 - 2014-02-06 05:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-12 17:39 - 2014-02-06 05:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-12 17:39 - 2014-02-06 05:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-12 17:39 - 2014-02-06 05:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-12 17:39 - 2014-02-06 05:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-12 17:39 - 2014-02-06 05:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-12 17:39 - 2014-02-06 04:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-12 17:39 - 2014-02-06 04:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 04:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-12 17:39 - 2014-02-06 04:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-12 17:39 - 2014-02-06 04:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 04:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-12 17:39 - 2014-02-06 04:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-12 17:39 - 2014-02-06 04:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-12 17:39 - 2014-02-06 04:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 17:39 - 2014-02-06 04:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-12 17:39 - 2014-02-06 04:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-12 17:39 - 2014-02-06 04:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-12 17:39 - 2014-02-06 04:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-12 17:39 - 2014-02-06 04:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-12 17:39 - 2014-02-06 04:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-12 17:39 - 2014-02-06 03:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-12 17:39 - 2014-02-06 03:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-12 17:39 - 2014-02-06 03:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-12 17:39 - 2014-02-06 03:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-12 17:39 - 2014-02-06 03:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-12 10:11 - 2013-12-31 18:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 10:11 - 2013-12-31 18:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 10:11 - 2013-12-24 18:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 10:11 - 2013-12-24 17:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 10:11 - 2013-12-05 21:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 10:11 - 2013-12-05 21:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 10:11 - 2013-12-05 21:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 10:11 - 2013-12-05 21:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 10:11 - 2013-12-03 21:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-12 10:11 - 2013-12-03 21:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-12 10:11 - 2013-12-03 21:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-12 10:11 - 2013-12-03 21:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-12 10:11 - 2013-12-03 21:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-12 10:11 - 2013-12-03 21:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-12 10:11 - 2013-12-03 21:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-12 10:11 - 2013-12-03 21:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-12 10:11 - 2013-12-03 21:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-12 10:11 - 2013-12-03 21:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-12 10:11 - 2013-12-03 21:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-12 10:11 - 2013-12-03 21:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-12 10:11 - 2013-12-03 21:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-12 10:11 - 2013-12-03 21:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-12 10:11 - 2013-12-03 20:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-12 10:11 - 2013-12-03 20:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-12 10:11 - 2013-12-03 20:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-12 10:11 - 2013-12-03 20:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-12 10:11 - 2013-11-26 03:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 10:11 - 2013-11-22 17:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-06 13:41 - 2014-02-06 13:41 - 00032768 _____ () C:\Users\MATTHEW\Downloads\SEITO_SU-Seito_Sushi.pxf
2014-02-05 10:47 - 2014-02-28 15:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-03 08:47 - 2014-02-03 08:47 - 01070088 _____ (Solid State Networks) C:\Users\MATTHEW\Downloads\install_flashplayer12x32axau_mssa_aaa_aih (1).exe
2014-02-01 09:10 - 2014-02-01 09:10 - 00847336 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup (3).exe
2014-02-01 09:09 - 2014-02-01 09:09 - 00847344 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup (2).exe
2014-02-01 08:56 - 2014-02-01 08:56 - 00847336 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup (1).exe
2014-02-01 08:55 - 2014-02-01 08:55 - 00847336 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup.exe
 
==================== One Month Modified Files and Folders =======
 
2014-03-03 16:25 - 2014-03-03 16:24 - 00020993 _____ () C:\Users\MATTHEW\Desktop\FRST.txt
2014-03-03 16:24 - 2014-03-03 16:24 - 00000000 ____D () C:\FRST
2014-03-03 16:23 - 2014-03-03 16:23 - 02156544 _____ (Farbar) C:\Users\MATTHEW\Desktop\FRST64.exe
2014-03-03 16:23 - 2014-03-03 16:22 - 02156544 _____ (Farbar) C:\Users\MATTHEW\Downloads\FRST64.exe
2014-03-03 16:22 - 2014-03-03 16:14 - 00624224 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2014-03-03 16:22 - 2014-03-03 16:14 - 00115296 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2014-03-03 16:22 - 2013-10-11 13:25 - 00458336 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2014-03-03 16:22 - 2013-10-11 13:25 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2014-03-03 16:22 - 2013-06-06 17:38 - 00178272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2014-03-03 16:19 - 2014-03-03 16:19 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\MATTHEW\Downloads\tdsskiller (1).exe
2014-03-03 16:18 - 2014-03-03 16:14 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-03 16:15 - 2014-03-03 16:15 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-03-03 16:14 - 2014-03-03 16:14 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-03-03 16:09 - 2014-03-03 16:03 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-03 16:08 - 2014-03-03 16:08 - 00000000 ___SD () C:\ComboFix
2014-03-03 16:08 - 2014-03-03 16:06 - 00000000 ____D () C:\Qoobox
2014-03-03 16:07 - 2014-03-03 16:07 - 00001810 _____ () C:\Users\MATTHEW\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-03-03 16:07 - 2014-03-03 16:07 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\SUPERAntiSpyware.com
2014-03-03 16:07 - 2014-03-03 16:07 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2014-03-03 16:07 - 2014-03-03 16:06 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-03-03 16:06 - 2014-03-03 16:06 - 00000000 ____D () C:\Windows\erdnt
2014-03-03 16:06 - 2014-03-03 16:06 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-03-03 16:06 - 2014-03-03 16:05 - 00001420 _____ () C:\Users\MATTHEW\Desktop\Rkill.txt
2014-03-03 16:06 - 2014-03-03 16:03 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-03-03 16:05 - 2014-03-03 16:05 - 01057016 _____ (Bleeping Computer, LLC) C:\Users\MATTHEW\Desktop\rkill64.exe
2014-03-03 16:04 - 2014-03-03 16:04 - 00001345 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-03-03 16:01 - 2014-03-03 16:02 - 246010176 _____ (Kaspersky Lab) C:\Users\MATTHEW\Desktop\kav14.0.0.4651aEN_4872.exe
2014-03-03 16:01 - 2014-03-03 15:58 - 246010176 _____ (Kaspersky Lab) C:\Users\MATTHEW\Downloads\kav14.0.0.4651aEN_4872.exe
2014-03-03 15:58 - 2014-03-03 16:02 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\MATTHEW\Desktop\tdsskiller.exe
2014-03-03 15:58 - 2014-03-03 15:56 - 04130656 _____ (Kaspersky Lab ZAO) C:\Users\MATTHEW\Downloads\tdsskiller.exe
2014-03-03 15:54 - 2009-07-13 23:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-03 15:54 - 2009-07-13 23:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-03 15:52 - 2014-03-03 16:02 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\MATTHEW\Desktop\spybot-2.2.exe
2014-03-03 15:52 - 2014-03-03 15:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\MATTHEW\Downloads\spybot-2.2.exe
2014-03-03 15:51 - 2014-03-03 15:51 - 00003198 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForMATTHEW
2014-03-03 15:51 - 2014-03-03 15:51 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForMATTHEW.job
2014-03-03 15:50 - 2014-03-03 16:02 - 05186474 ____R (Swearware) C:\Users\MATTHEW\Desktop\ComboFix.exe
2014-03-03 15:50 - 2014-03-03 16:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\MATTHEW\Desktop\rkill.exe
2014-03-03 15:50 - 2014-03-03 15:49 - 05186474 _____ (Swearware) C:\Users\MATTHEW\Downloads\ComboFix.exe
2014-03-03 15:50 - 2014-03-03 15:49 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\MATTHEW\Downloads\rkill.exe
2014-03-03 15:50 - 2011-12-02 07:59 - 01362313 _____ () C:\Windows\WindowsUpdate.log
2014-03-03 15:49 - 2014-03-03 16:02 - 18146232 _____ (SUPERAntiSpyware) C:\Users\MATTHEW\Desktop\SUPERAntiSpyware.exe
2014-03-03 15:49 - 2014-03-03 15:48 - 18146232 _____ (SUPERAntiSpyware) C:\Users\MATTHEW\Downloads\SUPERAntiSpyware.exe
2014-03-03 15:49 - 2012-04-13 08:44 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-03 15:46 - 2011-12-02 15:40 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-03 15:46 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-03 15:46 - 2009-07-13 23:51 - 00092765 _____ () C:\Windows\setupact.log
2014-03-03 15:42 - 2011-12-02 15:40 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-03 15:33 - 2014-03-03 15:33 - 00000000 _____ () C:\Users\MATTHEW\Downloads\CE9D.tmp
2014-03-03 15:26 - 2014-03-03 15:26 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds (7).com
2014-03-03 15:26 - 2014-03-03 15:25 - 00000000 ____D () C:\AdwCleaner
2014-03-03 15:25 - 2014-03-03 15:25 - 01244192 _____ () C:\Users\MATTHEW\Downloads\AdwCleaner.exe
2014-03-03 15:17 - 2014-03-03 13:48 - 00001934 _____ () C:\Users\MATTHEW\Desktop\attach.txt
2014-03-03 15:16 - 2014-03-03 15:16 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (6).com
2014-03-03 14:44 - 2014-03-03 09:50 - 00000000 ____D () C:\Windows\Minidump
2014-03-03 14:44 - 2011-11-23 04:03 - 00336344 ____N () C:\Windows\Minidump\030314-45396-01.dmp
2014-03-03 14:11 - 2014-03-03 14:11 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (5).com
2014-03-03 14:11 - 2014-03-03 14:11 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds (1).scr
2014-03-03 14:09 - 2014-03-03 14:08 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds.scr
2014-03-03 14:02 - 2014-03-03 14:01 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (4).com
2014-03-03 13:53 - 2014-03-03 13:53 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (3).com
2014-03-03 13:53 - 2014-03-03 13:52 - 00688992 _____ (Swearware) C:\Users\MATTHEW\Downloads\dds (2).com
2014-03-03 13:50 - 2014-03-03 13:50 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds (1).com
2014-03-03 13:45 - 2014-03-03 13:45 - 00688992 ____R (Swearware) C:\Users\MATTHEW\Downloads\dds.com
2014-03-03 13:40 - 2011-11-23 04:03 - 00336344 ____N () C:\Windows\Minidump\030314-44959-01.dmp
2014-03-03 13:38 - 2014-03-03 13:38 - 00180000 _____ (Kaspersky Lab) C:\Users\MATTHEW\Downloads\kss12.0.1.117EN_RU_DE_FR_2926.exe
2014-03-03 12:37 - 2011-11-23 04:03 - 00336344 ____N () C:\Windows\Minidump\030314-54054-01.dmp
2014-03-03 12:28 - 2012-01-03 11:49 - 00000000 ____D () C:\Users\MATTHEW\Desktop\MATWord & EXCEL 2012 Folder
2014-03-03 12:02 - 2014-03-03 12:02 - 00509440 _____ (Tech Support Guy System) C:\Users\MATTHEW\Downloads\SysInfo.exe
2014-03-03 10:41 - 2011-11-23 04:03 - 00336344 ____N () C:\Windows\Minidump\030314-53445-01.dmp
2014-03-03 09:59 - 2014-03-03 09:59 - 00000000 ____D () C:\Users\MATTHEW\Downloads\ProcessExplorer (1)
2014-03-03 09:58 - 2011-12-03 12:09 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\CrashDumps
2014-03-03 09:57 - 2014-03-03 09:54 - 00000000 ____D () C:\Users\MATTHEW\Desktop\MatthewDesktop Items
2014-03-03 09:55 - 2014-03-03 09:55 - 01243588 _____ () C:\Users\MATTHEW\Downloads\ProcessExplorer.zip
2014-03-03 09:55 - 2014-03-03 09:55 - 01243588 _____ () C:\Users\MATTHEW\Downloads\ProcessExplorer (1).zip
2014-03-03 09:50 - 2011-11-23 04:03 - 00336344 ____N () C:\Windows\Minidump\030314-63976-01.dmp
2014-03-03 09:40 - 2011-02-11 12:15 - 00774592 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-03-03 09:40 - 2009-07-14 00:13 - 00774592 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-03 09:38 - 2013-11-19 12:31 - 00000000 ____D () C:\ProgramData\MFAData
2014-03-03 09:36 - 2014-03-03 09:36 - 00000355 _____ () C:\Users\MATTHEW\Desktop\Computer - Shortcut.lnk
2014-03-03 09:36 - 2011-12-02 08:05 - 00003942 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DE47DD2B-A7CF-45AD-AC64-FD4CB4EC2194}
2014-03-03 09:35 - 2014-03-03 09:35 - 00000000 ____D () C:\ProgramData\AVG Secure Search
2014-03-03 09:35 - 2013-11-20 17:16 - 00000000 ____D () C:\Program Files (x86)\AVG SafeGuard toolbar
2014-03-03 09:34 - 2013-11-20 17:16 - 00050976 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2014-03-03 09:31 - 2014-03-01 08:56 - 00000000 ____D () C:\Windows\pss
2014-03-01 11:26 - 2014-02-28 15:15 - 00001421 _____ () C:\Users\MATTHEW\Desktop\avgrep.txt
2014-03-01 11:07 - 2014-02-28 15:29 - 00001719 _____ () C:\Windows\SysWOW64\InstallUtil.InstallLog
2014-03-01 10:29 - 2014-03-01 10:28 - 90578216 _____ (AVAST Software) C:\Users\MATTHEW\Downloads\Unconfirmed 274448.crdownload
2014-03-01 10:15 - 2010-11-20 22:47 - 01069856 _____ () C:\Windows\PFRO.log
2014-03-01 10:10 - 2014-03-01 10:10 - 00860176 _____ (Microsoft Corporation) C:\Users\MATTHEW\Downloads\mssstool64 (1).exe
2014-03-01 10:06 - 2014-03-01 10:06 - 00860176 _____ (Microsoft Corporation) C:\Users\MATTHEW\Downloads\mssstool64.exe
2014-03-01 10:00 - 2014-03-01 10:00 - 00000000 ____D () C:\ProgramData\PDFC
2014-03-01 09:52 - 2011-12-12 11:33 - 00000000 ____D () C:\Program Files (x86)\Citrix
2014-03-01 09:47 - 2011-11-23 03:18 - 00000000 ____D () C:\Program Files (x86)\HP Games
2014-03-01 09:44 - 2012-08-25 08:26 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\WildTangent
2014-03-01 09:44 - 2011-11-23 03:18 - 00000000 ____D () C:\ProgramData\WildTangent
2014-03-01 09:42 - 2011-11-23 03:17 - 00000000 ____D () C:\Program Files (x86)\Cyberlink
2014-03-01 09:42 - 2011-11-23 03:11 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-01 09:34 - 2014-03-01 09:34 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\NewspaperDirect
2014-03-01 09:23 - 2014-03-01 09:23 - 00003790 _____ () C:\Windows\System32\Tasks\Driver Support-RTMUpdater
2014-03-01 09:23 - 2014-03-01 09:23 - 00003790 _____ () C:\Windows\System32\Tasks\Driver Support-RTMScan
2014-03-01 09:23 - 2014-03-01 09:23 - 00003774 _____ () C:\Windows\System32\Tasks\Driver Support-RTMRules
2014-03-01 09:23 - 2014-03-01 09:23 - 00001270 _____ () C:\Users\MATTHEW\Desktop\Revo Uninstaller.lnk
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\Users\MATTHEW\Downloads\Driver Support
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\PC_Drivers_Headquarters
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\ProgramData\UAB
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\ProgramData\Driver Support
2014-03-01 09:23 - 2014-03-01 09:23 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-03-01 09:22 - 2014-03-01 09:22 - 00002303 _____ () C:\Users\Public\Desktop\Driver Support.lnk
2014-03-01 09:22 - 2014-03-01 09:22 - 00000000 ____D () C:\Program Files (x86)\Driver Support
2014-03-01 09:17 - 2014-03-01 09:17 - 00930952 _____ (CNET Download.com) C:\Users\MATTHEW\Downloads\cbsidlm-cbsi183-Revo_Uninstaller-SEO-10687648.exe
2014-03-01 09:00 - 2009-07-14 00:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-02-28 15:11 - 2014-02-28 09:02 - 00000000 ____D () C:\70880a6c81cdaf3696
2014-02-28 15:11 - 2014-02-27 17:08 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-28 15:11 - 2014-01-26 12:52 - 00000000 ____D () C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-02-28 15:11 - 2013-08-20 09:31 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
2014-02-28 15:11 - 2013-08-20 09:30 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2014-02-28 15:11 - 2011-12-05 09:06 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Fujitsu
2014-02-28 15:11 - 2011-12-03 10:47 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-28 15:11 - 2011-12-02 14:58 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\Microsoft Help
2014-02-28 15:11 - 2011-12-02 12:49 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-28 15:11 - 2011-12-02 08:00 - 00000000 ____D () C:\Users\MATTHEW
2014-02-28 15:11 - 2011-11-16 12:33 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-02-28 15:11 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\servicing
2014-02-28 15:11 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\schemas
2014-02-28 15:10 - 2014-02-27 13:43 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Paiszae
2014-02-28 15:09 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\registration
2014-02-28 15:08 - 2011-12-06 11:06 - 00000000 ____D () C:\Users\MATTHEW\Documents\ScanSnap
2014-02-28 15:08 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\AppCompat
2014-02-28 15:06 - 2014-02-25 17:47 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-28 15:06 - 2014-02-05 10:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-28 15:06 - 2014-01-13 10:11 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-02-28 15:06 - 2014-01-13 10:11 - 00000000 ____D () C:\Program Files\iTunes
2014-02-28 15:06 - 2014-01-13 10:11 - 00000000 ____D () C:\Program Files\iPod
2014-02-28 15:06 - 2013-11-20 17:16 - 00000000 ____D () C:\ProgramData\AVG SafeGuard toolbar
2014-02-28 15:06 - 2013-11-19 12:34 - 00000000 ____D () C:\Program Files (x86)\AVG
2014-02-28 15:06 - 2012-04-30 10:15 - 00000000 ____D () C:\ProgramData\Skype
2014-02-28 15:06 - 2011-12-02 15:19 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-28 15:06 - 2011-12-02 15:18 - 00000000 ____D () C:\ProgramData\Apple
2014-02-28 09:11 - 2014-02-28 09:11 - 00000000 _____ () C:\END
2014-02-28 09:04 - 2014-02-28 08:48 - 00000440 _____ () C:\Windows\Tasks\DriverNavigator Scheduled Scan.job
2014-02-28 09:02 - 2014-02-28 09:02 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-28 09:01 - 2014-02-28 09:01 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-28 09:00 - 2014-02-28 09:00 - 00000000 ____D () C:\AMD
2014-02-28 08:47 - 2014-02-28 08:47 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Easeware
2014-02-27 17:12 - 2014-02-27 17:12 - 00000036 _____ () C:\Users\MATTHEW\AppData\Local\housecall.guid.cache
2014-02-27 15:57 - 2014-02-27 09:36 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Fiicneuw
2014-02-27 13:06 - 2014-02-27 12:28 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-02-27 13:06 - 2011-12-03 12:28 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\hpqLog
2014-02-27 13:06 - 2011-12-02 15:21 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\HpUpdate
2014-02-27 13:06 - 2011-12-02 15:19 - 00000000 ____D () C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2014-02-27 12:53 - 2014-02-27 12:42 - 00000000 ____D () C:\ProgramData\AVG
2014-02-27 12:45 - 2014-02-27 12:45 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\AVG
2014-02-27 11:31 - 2010-05-09 23:02 - 00028133 _____ () C:\Users\MATTHEW\Documents\plot.log
2014-02-27 09:44 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-02-27 09:06 - 2014-02-27 09:06 - 00012326 _____ () C:\Users\MATTHEW\AppData\Local\kadrdruk
2014-02-27 09:05 - 2014-02-27 09:05 - 00068161 _____ () C:\Users\MATTHEW\AppData\Local\wcbehkkl
2014-02-27 09:04 - 2014-02-27 09:04 - 00000000 _____ () C:\Users\MATTHEW\AppData\Roaming\SharedSettings.ccs
2014-02-26 17:28 - 2011-12-02 15:06 - 00000000 ____D () C:\KCLCAD
2014-02-25 17:47 - 2012-04-30 10:15 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-24 11:33 - 2014-02-24 11:33 - 00007019 _____ () C:\Users\MATTHEW\Downloads\Pizza_Marvel.aqproj
2014-02-24 11:28 - 2011-10-18 11:45 - 00000000 ____D () C:\Users\MATTHEW\Desktop\MAT FW PICS 2011
2014-02-24 09:00 - 2014-02-24 09:00 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\{D0EB16D1-3C43-480E-98CC-3EE89C53AF3F}
2014-02-24 09:00 - 2014-02-24 09:00 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\{877D4FCA-AD4D-47F6-844F-7A68D647D6E5}
2014-02-24 08:59 - 2014-02-24 08:59 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\Windows Live Writer
2014-02-24 08:59 - 2014-02-24 08:59 - 00000000 ____D () C:\Users\MATTHEW\AppData\Local\Windows Live Writer
2014-02-24 08:47 - 2011-12-03 11:51 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-02-24 08:47 - 2011-12-03 10:44 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-02-21 07:49 - 2012-04-13 08:44 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-21 07:49 - 2012-04-13 08:44 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-21 07:49 - 2011-11-23 03:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-18 14:37 - 2011-12-02 15:40 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-18 14:37 - 2011-12-02 15:40 - 00003644 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-17 17:31 - 2013-08-14 16:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 17:28 - 2011-12-02 13:34 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-17 09:23 - 2014-02-17 09:23 - 00016384 _____ () C:\Users\MATTHEW\Downloads\4822____-MANGAP.pxf
2014-02-17 09:23 - 2014-02-17 09:23 - 00016384 _____ () C:\Users\MATTHEW\Downloads\4822____-MANGAP (1).pxf
2014-02-13 11:22 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-02-12 17:38 - 2011-12-09 09:49 - 00000000 ____D () C:\Users\MATTHEW\Desktop\MATTHEW PDF
2014-02-12 12:57 - 2012-02-21 13:11 - 00000000 ____D () C:\Users\MATTHEW\Desktop\desktop stuff
2014-02-07 12:22 - 2010-08-17 11:55 - 00000000 ____D () C:\Users\MATTHEW\Desktop\FW EQ PICS MAT-2010
2014-02-07 08:57 - 2012-10-17 08:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-06 13:41 - 2014-02-06 13:41 - 00032768 _____ () C:\Users\MATTHEW\Downloads\SEITO_SU-Seito_Sushi.pxf
2014-02-06 07:16 - 2014-02-12 17:39 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 06:30 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 06:30 - 2014-02-12 17:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 06:12 - 2014-02-12 17:39 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 06:07 - 2014-02-12 17:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 06:06 - 2014-02-12 17:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 05:57 - 2014-02-12 17:39 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 05:56 - 2014-02-12 17:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 05:52 - 2014-02-12 17:39 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 05:49 - 2014-02-12 17:39 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 05:48 - 2014-02-12 17:39 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 05:48 - 2014-02-12 17:39 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 05:38 - 2014-02-12 17:39 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 05:32 - 2014-02-12 17:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 05:20 - 2014-02-12 17:39 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 05:17 - 2014-02-12 17:39 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 05:11 - 2014-02-12 17:39 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 05:01 - 2014-02-12 17:39 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 05:00 - 2014-02-12 17:39 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 04:57 - 2014-02-12 17:39 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 04:57 - 2014-02-12 17:39 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 04:52 - 2014-02-12 17:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 04:52 - 2014-02-12 17:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 04:50 - 2014-02-12 17:39 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 04:49 - 2014-02-12 17:39 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 04:47 - 2014-02-12 17:39 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 04:46 - 2014-02-12 17:39 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 04:25 - 2014-02-12 17:39 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 04:25 - 2014-02-12 17:39 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 04:24 - 2014-02-12 17:39 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 04:22 - 2014-02-12 17:39 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 04:13 - 2014-02-12 17:39 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 04:09 - 2014-02-12 17:39 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 04:03 - 2014-02-12 17:39 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 03:55 - 2014-02-12 17:39 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 03:41 - 2014-02-12 17:39 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 03:40 - 2014-02-12 17:39 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 03:36 - 2014-02-12 17:39 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 03:34 - 2014-02-12 17:39 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-05 09:32 - 2012-11-07 09:44 - 00003222 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForMATTHEW-HP$
2014-02-05 09:32 - 2012-11-07 09:44 - 00000346 _____ () C:\Windows\Tasks\HPCeeScheduleForMATTHEW-HP$.job
2014-02-03 10:23 - 2014-01-17 09:08 - 00000208 ____H () C:\Users\MATTHEW\Documents\Drawing1.dwl2
2014-02-03 10:23 - 2014-01-17 09:08 - 00000058 ____H () C:\Users\MATTHEW\Documents\Drawing1.dwl
2014-02-03 08:47 - 2014-02-03 08:47 - 01070088 _____ (Solid State Networks) C:\Users\MATTHEW\Downloads\install_flashplayer12x32axau_mssa_aaa_aih (1).exe
2014-02-01 12:52 - 2013-08-16 09:13 - 00000000 ____D () C:\Users\MATTHEW\AppData\Roaming\vlc
2014-02-01 09:11 - 2013-05-21 08:24 - 00002296 _____ () C:\Users\MATTHEW\Desktop\Google Chrome.lnk
2014-02-01 09:10 - 2014-02-01 09:10 - 00847336 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup (3).exe
2014-02-01 09:09 - 2014-02-01 09:09 - 00847344 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup (2).exe
2014-02-01 08:56 - 2014-02-01 08:56 - 00847336 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup (1).exe
2014-02-01 08:55 - 2014-02-01 08:55 - 00847336 _____ (Google Inc.) C:\Users\MATTHEW\Downloads\ChromeSetup.exe
 
Files to move or delete:
====================
C:\Users\MATTHEW\g2ax_customer_downloadhelper_win32_x86.exe
 
 
Some content of TEMP:
====================
C:\Users\MATTHEW\AppData\Local\Temp\AcDeltree.exe
C:\Users\MATTHEW\AppData\Local\Temp\EPSDIW64_000.EXE
C:\Users\MATTHEW\AppData\Local\Temp\EPSTPA64_000.EXE
C:\Users\MATTHEW\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\MATTHEW\AppData\Local\Temp\HPHelpUpdater.exe
C:\Users\MATTHEW\AppData\Local\Temp\install_reader11_en_gtba_chra_dy_aih.exe
C:\Users\MATTHEW\AppData\Local\Temp\procexp64.exe
C:\Users\MATTHEW\AppData\Local\Temp\Resource.exe
C:\Users\MATTHEW\AppData\Local\Temp\SkypeSetup.exe
C:\Users\MATTHEW\AppData\Local\Temp\sp54931.exe
C:\Users\MATTHEW\AppData\Local\Temp\sp58915.exe
C:\Users\MATTHEW\AppData\Local\Temp\sp64126.exe
C:\Users\MATTHEW\AppData\Local\Temp\uninstall.exe
C:\Users\MATTHEW\AppData\Local\Temp\UninstallHPSA.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-03-03 11:55
 
==================== End Of Log ============================
 
//end  FRST.txt
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Addition.txt
-----------------------
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-03-2014 01
Ran by MATTHEW at 2014-03-03 16:27:30
Running from C:\Users\MATTHEW\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
 
==================== Installed Programs ======================
 
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7500_7600_7700_Help1 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
ABBYY FineReader for ScanSnap ™ 4.1 (HKLM-x32\...\{FB400000-0002-0000-0000-074957833700}) (Version: 8.02.380.7259 - ABBYY)
Adobe Acrobat  9 Standard - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-BA7E-000000000004}{AC76BA86-1033-F400-BA7E-000000000004}) (Version: 9.5.5 - Adobe Systems)
Adobe Acrobat  9 Standard - English, Français, Deutsch (x32 Version: 9.5.5 - Adobe Systems) Hidden
Adobe Acrobat 9.5.5 - CPSID_83708 (HKLM-x32\...\{AC76BA86-1033-F400-BA7E-000000000004}_955) (Version:  - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.60629.2348 - ATI Technologies Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2011.0630.16.41755 - ATI) Hidden
AnswerWorks Runtime (HKLM-x32\...\AnswerWorks) (Version:  - )
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AQ360 New Look (HKLM-x32\...\{C4165A52-D45B-4CB5-A5A2-9B8484EA1CA7}) (Version: 1.13.12181.1215 - AutoQuotes)
ATI Catalyst Install Manager (HKLM\...\{BCC01139-903A-6FC7-3358-85B0AE332601}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
AutoCAD 2002 (HKLM-x32\...\{5783F2D7-0101-0409-0000-0060B0CE6BBA}) (Version: 15.0.6.030 - Autodesk)
AutoCAD 2010 - English (HKLM\...\AutoCAD 2010 - English) (Version: 18.0.55.0 - Autodesk)
AutoCAD 2010 - English (Version: 18.0.55.0 - Autodesk) Hidden
AutoCAD 2010 Language Pack - English (Version: 18.0.55.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.0.84.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Inventor Fusion 2013 (HKLM\...\Autodesk Inventor Fusion 2013) (Version: 2.0.0.206 - Autodesk, Inc.)
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Autodesk Inventor Fusion plug-in for AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Fusion plug-in language pack for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.24.0 - Autodesk, Inc.)
AutoQuotes (HKLM-x32\...\AutoQuotes) (Version:  - )
AutoQuotes 360 (HKCU\...\2772797971.www.aq360.com) (Version:  - www.aq360.com)
AutoQuotes 360 (HKCU\...\c6d78188d3196eee) (Version: 1.0.0.9 - AutoQuotes, Inc.)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4259 - AVG Technologies)
AVG 2014 (Version: 14.0.3705 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4158 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4259 - AVG Technologies) Hidden
AVG SafeGuard toolbar (HKLM-x32\...\AVG SafeGuard toolbar) (Version: 18.0.0.248 - AVG Technologies)
BELKIN F5U109 V1.25 (HKLM-x32\...\{16115E10-502B-4EA0-BD39-4DA329AD89E2}) (Version:  - )
Bing Bar (HKLM-x32\...\{FF6DD716-7B10-4269-9F19-FFB07AC4CD95}) (Version: 7.3.124.0 - Microsoft Corporation)
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.174.0 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
bpd_scan_Carrier (x32 Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (x32 Version: 140.0.000.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden
CardMinder (HKLM-x32\...\{D4F2AFD3-0167-4464-B92F-78AB6DA8A0AA}) (Version: V4.1L10 - PFU)
CardMinder V4.1 (x32 Version: 4.1.10.1 - PFU) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0630.16.41755 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0630.16.41755 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0630.16.41755 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Czech (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Danish (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Dutch (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help English (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Finnish (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help French (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help German (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Greek (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Italian (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Japanese (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Korean (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Polish (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Russian (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Spanish (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Swedish (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Thai (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
CCC Help Turkish (x32 Version: 2011.0630.0015.41755 - ATI) Hidden
ccc-utility64 (Version: 2011.0630.16.41755 - ATI) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Download Navigator (HKLM-x32\...\{3A3A3B34-6EA2-4031-8580-D66D29533E89}) (Version: 3.4.0 - SEIKO EPSON CORPORATION)
Driver Support (HKLM-x32\...\{597FB4A5-DD86-4316-A410-7E8074CC2CCE}) (Version: 8.1 - Driver Support)
Epson Connect (HKLM-x32\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version:  - )
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)
EPSON LQ-590_2090 Manual (HKLM-x32\...\EPSON LQ-590_2090 Manual) (Version:  - )
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version:  - )
EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WP-4530 Series Printer Uninstall (HKLM\...\EPSON WP-4530 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.117 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4805.320 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Auto (Version: 1.0.12935.3667 - Hewlett-Packard Company) Hidden
HP Client Services (Version: 1.1.12938.3539 - Hewlett-Packard) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP LinkUp (HKLM-x32\...\{DB3147AB-4024-4773-8EC0-A1FE5B44933D}) (Version: 2.01.028 - Hewlett-Packard)
HP MovieStore (HKLM-x32\...\{9008D736-35CA-40DB-A2BE-5F32D954E5AA}) (Version: 2.0 - Hewlett-Packard Company)
HP MovieStore (x32 Version: 1.0.057 - Hewlett-Packard) Hidden
HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard)
HP OfficeJet L7300/L7500/7600/7700 (HKLM\...\{A818DAE1-EBBE-4438-B557-8115955D88E4}) (Version: 14.0 - HP)
HP Setup (HKLM-x32\...\{D35B72B6-F0E4-462B-BDEB-E08032B3B681}) (Version: 8.7.4747.3786 - Hewlett-Packard Company)
HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13880.3792 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}) (Version: 10.1.1000 - Hewlett-Packard)
HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard)
HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.9.0.0 - Hewlett-Packard)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
L7000_Basic (x32 Version: 140.0.000.000 - Hewlett-Packard) Hidden
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0 - Microsoft Corp.) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.3.0 - Mozilla)
Mozilla Thunderbird 24.3.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 24.3.0 (x86 en-US)) (Version: 24.3.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6531 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.0.4320 - CyberLink Corp.) Hidden
Remote Graphics Receiver (HKLM-x32\...\{16FC3056-90C0-4757-8A68-64D8DA846ADA}) (Version: 5.4.5 - Hewlett-Packard)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Scan (x32 Version: 140.0.167.000 - Hewlett-Packard) Hidden
ScanSnap (x32 Version: 5.0.21.1 - PFU Limited) Hidden
ScanSnap (x32 Version: 5.1.41.1 - PFU Limited) Hidden
ScanSnap Manager (HKLM-x32\...\{DBCDB997-EEEB-4BE9-BAFF-26B4094DBDE6}) (Version: V5.1L41 - PFU)
ScanSnap Organizer (HKLM-x32\...\{E58F3B88-3B3E-4F85-9323-04789D979C15}) (Version: V4.1L41 - PFU)
ScanSnap Organizer (x32 Version: 4.1.11.3 - PFU LIMITED) Hidden
ScanSnap Organizer (x32 Version: 4.1.41.1 - PFU LIMITED) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
Tango (HKCU\...\Tango) (Version: 1.6.14117 - TangoMe, Inc.)
The KCL CADalog (HKLM-x32\...\{A0B80680-1433-11DD-6784-0045A78B18BE}) (Version: 4.9.4 - Kochman Consultants, Ltd.)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{128A5449-CF71-4DA4-A746-F49E3B5DB584}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
WebReg (x32 Version: 140.0.213.017 - Hewlett-Packard) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
 
==================== Restore Points  =========================
 
27-02-2014 17:42:38 Installed AVG PC TuneUp 2014
27-02-2014 18:13:41 Restore Operation
27-02-2014 22:04:16 Removed AVG PC TuneUp 2014
28-02-2014 13:52:35 Removed Download Navigator
28-02-2014 13:54:10 Installed HP Support Solutions Framework
28-02-2014 14:01:54 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
28-02-2014 15:14:26 Windows Update
01-03-2014 14:26:24 Windows Update
03-03-2014 14:37:32 Windows Update
 
==================== Hosts content: ==========================
 
2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {147C9125-67DD-4D1B-84F9-DC258537B14F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Warranty Opt-In(Yes) => c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_PostWarrantyAlert.exe
Task: {2DB35C0E-D4C0-49C5-A0B7-9EBC72E58494} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {2F6FEDA7-0FDC-4862-9D62-B633FA7F5D08} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-02] (Google Inc.)
Task: {3CE5777B-869E-4118-977C-1CB72FF9E58E} - System32\Tasks\Driver Support-RTMRules => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [2014-02-20] (PC Drivers Headquarters)
Task: {46FAD7C5-E35F-4A0C-8484-F756658D46C3} - System32\Tasks\HPCeeScheduleForMATTHEW-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {543CE323-D39B-44E2-9E76-BC78EC8C91BF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {6DFA3B8F-3B32-48A0-8386-1605587C4652} - System32\Tasks\Driver Support-RTMUpdater => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [2014-02-20] (PC Drivers Headquarters)
Task: {794E2611-6D59-47FE-B785-955C8207B049} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-11-22] (Hewlett-Packard)
Task: {83C0EBD4-BDE7-47FF-B59E-FC0F3E33C6C2} - System32\Tasks\{1A72E7E3-7B9C-4221-9E47-EC5E937EBBE1} => C:\AutoQuotes\AQNet6.exe [2008-01-02] ()
Task: {888CDB76-2DD4-40E1-BF23-669057634FDA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-02] (Google Inc.)
Task: {92122F00-41AD-499A-BDC7-773FD6C4E91D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {9380F5CC-0DA4-4F09-8D80-B6929A1EDBD7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Warranty Opt-In(No) => c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\Detection_PostWarrantyAlert.exe
Task: {ACAFBCF3-40D3-4145-BA6C-B1397309D76A} - System32\Tasks\{04EE94DC-860D-4A3A-A059-AF175AF59866} => E:\Software\AutoDesk\AutoCAD2010\AutoCAD_2010_English_MLD_Win_32bit.exe
Task: {D8ED6A2A-0194-468B-B10B-2A8530D72E35} - System32\Tasks\{8836F0C6-3968-4A84-826C-203548F72556} => C:\AutoQuotes\AQNet6.exe [2008-01-02] ()
Task: {D9359BA3-56AD-46EB-B73B-9E87AD8CDAA0} - System32\Tasks\Driver Support-RTMScan => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe [2014-02-20] (PC Drivers Headquarters)
Task: {E7029054-CB9F-4DFB-8DDE-E2047E8CC50F} - System32\Tasks\HPCeeScheduleForMATTHEW => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {EAFB9318-077B-4C93-8B52-70CA8732692C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: {F4447E94-222E-4DF5-A4EF-12B9FF3E113E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSFUpdaterRedux => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: {F875E85E-6DC8-4EEC-81F3-1EA0D7338C76} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DriverNavigator Scheduled Scan.job => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForMATTHEW-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\HPCeeScheduleForMATTHEW.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-03-03 09:35 - 2014-03-03 09:34 - 00159768 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\loggingserver.exe
2014-02-20 10:35 - 2014-02-20 10:35 - 00428448 _____ () C:\Program Files (x86)\Driver Support\Driver Support\Agent.Communication.XmlSerializers.dll
2013-11-20 17:16 - 2014-03-03 09:34 - 02539544 _____ () C:\Program Files (x86)\AVG SafeGuard toolbar\vprot.exe
2011-09-27 07:23 - 2011-09-27 07:23 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-09-27 07:22 - 2011-09-27 07:22 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-03 09:35 - 2014-03-03 09:34 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.0\log4cplusU.dll
2011-12-05 09:03 - 2008-11-12 15:32 - 00014848 _____ () C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardPath.dll
2011-12-05 09:01 - 2011-08-31 08:41 - 00376832 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsConfig.dll
2011-12-05 09:01 - 2011-03-16 15:30 - 00233472 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsExtention.dll
2011-12-05 09:01 - 2003-03-26 18:46 - 00135168 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\PfuSsImgIO.dll
2011-12-05 09:01 - 2010-08-24 16:56 - 00167936 _____ () C:\Program Files (x86)\PFU\ScanSnap\Driver\SSsltsa.dll
2011-12-05 09:01 - 2003-04-21 14:19 - 00020480 _____ () C:\Windows\SSDriver\fi5110\fjipl.dll
2011-12-05 09:01 - 2003-04-21 14:19 - 00856064 _____ () C:\Windows\SSDriver\fi5110\fjiplW7.DLL
2009-07-13 16:03 - 2009-07-13 20:15 - 00364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll
2014-02-21 13:44 - 2014-02-19 20:02 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\chrome_elf.dll
2014-02-21 13:44 - 2014-02-19 20:02 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libglesv2.dll
2014-02-21 13:44 - 2014-02-19 20:02 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\libegl.dll
2014-02-21 13:44 - 2014-02-19 20:03 - 04060488 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\pdf.dll
2014-02-21 13:44 - 2014-02-19 20:03 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll
2014-02-21 13:44 - 2014-02-19 20:02 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.117\ffmpegsumo.dll
2014-03-03 16:03 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-03-03 16:03 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-03-03 16:03 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-03-03 16:03 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-03-03 16:03 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\kpcengine.2.3.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
 
==================== Disabled items from MSCONFIG ==============
 
MSCONFIG\startupreg: EPLTarget => 
 
==================== Faulty Device Manager Devices =============
 
Name: Officejet Pro L7500
Description: Officejet Pro L7500
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Officejet Pro L7500
Description: Officejet Pro L7500
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (03/03/2014 09:58:36 AM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24
Exception code: 0xc000070a
Fault offset: 0x000000000005cf99
Faulting process id: 0x884
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
 
Error: (03/01/2014 11:27:12 AM) (Source: Application Error) (User: )
Description: Faulting application name: avgscana.exe, version: 14.0.0.4110, time stamp: 0x5213dd87
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24
Exception code: 0xc0000005
Fault offset: 0x000000000004e4e4
Faulting process id: 0x5e4
Faulting application start time: 0xavgscana.exe0
Faulting application path: avgscana.exe1
Faulting module path: avgscana.exe2
Report Id: avgscana.exe3
 
Error: (03/01/2014 10:22:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24
Exception code: 0xc000070a
Fault offset: 0x000000000005cf99
Faulting process id: 0xc10
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3
 
Error: (02/28/2014 04:40:53 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgscana.exe, version: 14.0.0.4110, time stamp: 0x5213dd87
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24
Exception code: 0xc0000005
Fault offset: 0x000000000004e4e4
Faulting process id: 0x474
Faulting application start time: 0xavgscana.exe0
Faulting application path: avgscana.exe1
Faulting module path: avgscana.exe2
Report Id: avgscana.exe3
 
Error: (02/28/2014 03:50:38 PM) (Source: Application Error) (User: )
Description: Faulting application name: avgscana.exe, version: 14.0.0.4110, time stamp: 0x5213dd87
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24
Exception code: 0xc0000005
Fault offset: 0x000000000004e4e4
Faulting process id: 0x784
Faulting application start time: 0xavgscana.exe0
Faulting application path: avgscana.exe1
Faulting module path: avgscana.exe2
Report Id: avgscana.exe3
 
Error: (02/28/2014 01:04:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14539
 
Error: (02/28/2014 01:04:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14539
 
Error: (02/28/2014 01:04:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (02/28/2014 01:04:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12277
 
Error: (02/28/2014 01:04:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12277
 
 
System errors:
=============
Error: (03/03/2014 04:23:15 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (03/03/2014 03:47:45 PM) (Source: NetBT) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 192.168.1.110.
The computer with the IP address 192.168.1.100 did not allow the name to be claimed by
this computer.
 
Error: (03/03/2014 02:44:35 PM) (Source: BugCheck) (User: )
Description: 0x00000116 (0xfffffa800a30d010, 0xfffff880045a3bb8, 0x0000000000000000, 0x0000000000000002)C:\Windows\Minidump\030314-45396-01.dmp030314-45396-01
 
Error: (03/03/2014 02:44:35 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:42:23 PM on ‎3/‎3/‎2014 was unexpected.
 
Error: (03/03/2014 01:40:31 PM) (Source: BugCheck) (User: )
Description: 0x00000116 (0xfffffa8008c654e0, 0xfffff8800457dbb8, 0x0000000000000000, 0x0000000000000002)C:\Windows\Minidump\030314-44959-01.dmp030314-44959-01
 
Error: (03/03/2014 01:40:31 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:39:09 PM on ‎3/‎3/‎2014 was unexpected.
 
Error: (03/03/2014 00:37:20 PM) (Source: BugCheck) (User: )
Description: 0x00000116 (0xfffffa8008416420, 0xfffff8800432fbb8, 0x0000000000000000, 0x0000000000000002)C:\Windows\Minidump\030314-54054-01.dmp030314-54054-01
 
Error: (03/03/2014 00:37:20 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:35:34 PM on ‎3/‎3/‎2014 was unexpected.
 
Error: (03/03/2014 10:54:46 AM) (Source: NetBT) (User: )
Description: The name "WORKGROUP      :1d" could not be registered on the interface with IP address 192.168.1.110.
The computer with the IP address 192.168.1.100 did not allow the name to be claimed by
this computer.
 
Error: (03/03/2014 10:42:28 AM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service failed to start due to the following error: 
%%1053
 
 
Microsoft Office Sessions:
=========================
Error: (12/07/2011 11:11:44 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 28 seconds with 0 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-06-13 13:57:42.125
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 13:56:18.698
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 13:56:18.609
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 13:03:37.681
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 13:03:37.591
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 12:55:29.462
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 12:55:29.378
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 12:47:53.553
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 12:47:53.471
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-13 12:46:00.736
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\RtkAPO64.dll because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 43%
Total physical RAM: 7666.81 MB
Available physical RAM: 4365.32 MB
Total Pagefile: 15333.62 MB
Available Pagefile: 11298.16 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:919.65 GB) (Free:756.66 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:11.77 GB) (Free:1.41 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive h: (H-Drive) (Network) (Total:1170.69 GB) (Free:719.13 GB) NTFS
Drive x: (X-Drive) (Network) (Total:1170.69 GB) (Free:719.13 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: EE41F39A)
 
Partition: GPT Partition Type.
 
==================== End Of Log ============================
 


#4 daphoenix7207

daphoenix7207
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:28 AM

Posted 04 March 2014 - 09:43 AM

Okay I resolved the issue

 

I brute forced and scanned it with multiple AV and spyware scanners (Kaspersky AV, AVG, MSE, SFC /ScanNow under command prompt, Spybot, MalwareBytes, TDSSKiller.exe). I also cleaned a lot of crapware through removal of temporary files, uninstalled useless programs, stopped many startup programs, regedit -> WindowsNTImage -> deleted explorer.exe, made a shortcut of file explorer and placed into taskbar, checked for any broken icons on desktop, ran process explorer, etc.

 

It seems Kaspersky's AV and TDSSKiller.exe did the trick, along with MalwareBytes 

 

http://www.bleepingcomputer.com/download/tdsskiller/

 

 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users