Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Win32.Pincav.cryr


  • This topic is locked This topic is locked
14 replies to this topic

#1 neroman00

neroman00

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 18 April 2014 - 03:52 PM

RESULTS regarding the following Thread: http://www.bleepingcomputer.com/forums/t/531327/cannot-delete-a-trojan-see-screenshot/#entry3345865

 

 

dds.txt - results

 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17041  BrowserJavaVersion: 10.5.1
Run by msi at 23:41:40 on 2014-04-18
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.7982.5268 [GMT 3:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Spotflux\services\SpotfluxUpdateService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Motorola\Bluetooth\obexsrv.exe
C:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wermgr.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = Preserve
uDefault_Page_URL = hxxp://msi.msn.com
mURLSearchHooks: <No Name>:  - LocalServer32 - <no file>
mWinlogon: Userinit = userinit.exe
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
uRun: [Google Update] "C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe" /c
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\RALINK~1.LNK - C:\Program Files (x86)\Ralink\Common\RaUI.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoThumbnailCache = dword:1
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to &Hot Keyboard - C:\Program Files (x86)\Hot Keyboard Pro\IEScript.htm
IE: Assign &hot key - C:\Program Files (x86)\Hot Keyboard Pro\IEScript.htm
IE: Download all links with IDM - C:\Users\msi\Documents\Vuze Downloads\Internet Download Manager 6.18 Build 11 incl. Crack {AmanPC}\Crack\IEGetAll.htm
IE: Download with IDM - C:\Users\msi\Documents\Vuze Downloads\Internet Download Manager 6.18 Build 11 incl. Crack {AmanPC}\Crack\IEExt.htm
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
TCP: NameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554} : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\162727963753437623 : DHCPNameServer = 213.140.208.226 213.140.209.226 213.140.211.226
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514144343533434 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514144354433444 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514342334636393 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514535333646363 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514935483032314 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\46C696E6B6 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{74AB6E7E-EE5C-475F-8BB1-E3C9567E2D8C} : DHCPNameServer = 4.2.2.1 4.2.2.2 44.105.10.1
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514033383641433 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514133463445314 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514144343533434 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514144354433444 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514342334636393 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514630323343424 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514637343335354 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\1627279637534376 : DHCPNameServer = 213.140.209.226 213.140.208.226 213.140.210.226
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\34954514033383641433 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\34954514132364445373 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\34954514348323939324 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\C696E6B6379737 : DHCPNameServer = 8.8.8.8 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\F46666963656 : DHCPNameServer = 8.8.8.8 8.8.4.4
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs=  
SSODL: WebCheck - <orphaned>
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\Windows\System32\wpdshserviceobj.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [fspuip] C:\Program Files (x86)\FSP\fspuip.exe
x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-IE: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com
FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Winamp Detect\npwachk.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\msi\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll
FF - plugin: C:\Users\msi\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll
FF - plugin: C:\windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2014-1-25 268512]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);C:\Windows\System32\drivers\tdrpm273.sys [2012-3-14 1263200]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-4-7 203264]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files\Motorola\Bluetooth\obexsrv.exe [2013-9-25 679176]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-9-27 133928]
R2 SpotfluxUpdateService;Spotflux Update Service;C:\Program Files (x86)\Spotflux\services\SpotfluxUpdateService.exe [2014-1-21 28160]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-6-12 2320920]
R3 Bluetooth Device Manager;Bluetooth Device Manager;C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [2013-9-25 4150864]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-9-25 1028096]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-6-12 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2013-9-25 158720]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2010-6-12 271872]
R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2014-4-7 10322848]
R3 Neo_VPN-test;VPN Client Device Driver - VPN-test;C:\Windows\System32\drivers\Neo_0053.sys [2014-2-28 28768]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-3-11 347872]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-4-7 888536]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2013-9-25 31032]
R3 stdriver;Sound tap driver Upper Class Filter Driver v2.0.0.0;C:\Windows\System32\drivers\stdriver64.sys [2012-10-2 103512]
R3 tapSF0901;Spotflux Virtual Network Device Driver;C:\Windows\System32\drivers\tapSF0901.sys [2014-1-21 39104]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.352.0\BBSvc.EXE [2012-1-21 192792]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2012-3-14 285280]
S3 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2012-3-14 3246040]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;C:\Windows\System32\drivers\ArcSoftKsUFilter.sys [2010-6-12 19968]
S3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.352.0\SeaPort.EXE [2012-1-21 240408]
S3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files\Motorola\Bluetooth\audiosrv.exe [2013-9-25 1188616]
S3 BTMCOM;Bluetooth Serial Port;C:\Windows\System32\drivers\btmcom.sys [2013-9-25 52736]
S3 BTMUSB;Motorola Bluetooth Radio Service;C:\Windows\System32\drivers\btmusb.sys [2013-9-25 484096]
S3 CGVPNCliSrvc;CyberGhost VPN Client;C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2013-1-8 2430128]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2013-1-16 17480]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2013-1-16 9800]
S3 fspad_wlh64;Finger Sensing Pad Driver for Windows 2000/XP/Vista/Win7_wlh64;C:\Windows\System32\drivers\fspad_wlh64.sys [2010-6-12 53248]
S3 fspad_xp64;Finger Sensing Pad Driver for Windows 2000/XP/Vista/Win7_xp64;C:\Windows\System32\drivers\fspad_xp64.sys [2010-6-12 53248]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-4-10 111616]
S3 MDA_NTDRV;MDA_NTDRV;C:\Windows\System32\MDA_NTDRV.sys [2013-2-25 21208]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;C:\Program Files (x86)\msi\Super-Charger\NTIOLib_X64.sys [2013-9-14 13368]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4;C:\Program Files (x86)\msi\Live Update 5\NTIOLib_X64.sys [2013-9-14 14136]
S3 RaMediaServer;Ralink UPnP Media Server;C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [2013-11-11 1863680]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-9-24 19456]
S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2013-12-13 31800]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-14 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-9-24 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-1-31 1255736]
S4 LaCieDesktopManagerService;LaCieDesktopManagerService;C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe [2012-12-30 1379840]
S4 MSI_SuperCharger;MSI_SuperCharger;C:\Program Files (x86)\msi\Super-Charger\ChargeService.exe [2013-9-14 161264]
S4 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-9-23 641832]
S4 RalinkRegistryWriter;RalinkRegistryWriter;C:\Program Files (x86)\Ralink\Common\RaRegistry.exe [2013-11-11 391472]
S4 RalinkRegistryWriter64;RalinkRegistryWriter64;C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe [2013-11-11 452912]
S4 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-5-31 386344]
S4 SEVPNCLIENT;SoftEther VPN Client;C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2014-2-28 4298808]
S4 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-10-26 2848168]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2014-04-18 09:20:36    10651704    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EB8CC6E-107A-4301-ACEC-A259324C795C}\mpengine.dll
2014-04-18 00:35:07    --------    d-----w-    C:\Program Files (x86)\ESET
2014-04-18 00:24:49    --------    d-----w-    C:\Windows\ERUNT
2014-04-18 00:13:15    --------    d-----w-    C:\AdwCleaner
2014-04-17 14:34:08    --------    d-----w-    C:\Users\msi\AppData\Local\ElevatedDiagnostics
2014-04-17 12:30:10    --------    d-sh--w-    C:\Users\msi\AppData\Local\EmieUserList
2014-04-17 12:30:10    --------    d-sh--w-    C:\Users\msi\AppData\Local\EmieSiteList
2014-04-16 23:33:13    10651696    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-04-14 20:56:33    --------    d-----w-    C:\Program Files\Macrorit
2014-04-14 20:47:35    --------    d-----w-    C:\Program Files (x86)\WinASO
2014-04-09 18:05:02    --------    d-sh--w-    C:\ProgramData\googleupdate
2014-04-08 23:00:15    70832    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-08 23:00:15    692400    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-07 20:19:28    --------    d-----w-    C:\Users\msi\AppData\Local\Skype
2014-04-06 23:17:58    888536    ----a-w-    C:\Windows\System32\drivers\Rt64win7.sys
2014-04-06 23:17:58    73800    ----a-w-    C:\Windows\System32\RtNicProp64.dll
2014-04-06 22:06:06    --------    d-----w-    C:\Program Files\ATI
2014-04-06 21:39:29    511000    ----a-w-    C:\Windows\System32\igfxsrvc.exe
2014-04-06 21:39:23    --------    d-----w-    C:\Program Files\ATI Technologies
2014-04-06 21:11:21    --------    d-----w-    C:\Users\msi\AppData\Local\ATI
2014-04-06 20:30:41    1031560    ------w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{479BE528-2230-4A20-A26A-9F12575923A0}\gapaengine.dll
2014-04-06 17:26:04    --------    d-----w-    C:\ProgramData\DriverReviver.exe
2014-04-06 17:25:16    --------    d-----w-    C:\ProgramData\ReviverSoft
2014-04-06 17:25:13    --------    d-----w-    C:\Program Files\ReviverSoft
2014-04-06 15:49:55    --------    d-----w-    C:\Rbackup
2014-04-06 15:44:58    --------    d-----w-    C:\Program Files\Perfect Uninstaller
2014-04-05 14:20:02    --------    d-----w-    C:\Users\msi\AppData\Roaming\library_dir
2014-04-05 13:42:36    --------    d-sh--w-    C:\found.000
2014-04-05 13:17:08    --------    d-----w-    C:\Program Files (x86)\DriverTuner
2014-03-22 19:02:30    --------    d-----w-    C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-20 23:42:36    --------    d-----w-    C:\Users\msi\AppData\Roaming\Wireshark
2014-03-20 23:39:40    --------    d-----w-    C:\Program Files (x86)\Wireshark
2014-03-20 23:04:02    --------    d-----w-    C:\Program Files (x86)\ophcrack
2014-03-20 21:22:42    --------    d-----w-    C:\Users\msi\.zenmap
2014-03-20 21:20:49    --------    d-----w-    C:\Program Files (x86)\Nmap
2014-03-20 20:44:07    --------    d-----w-    C:\Users\msi\AppData\Roaming\ViberPC
2014-03-20 20:42:20    --------    d-----w-    C:\Users\msi\AppData\Local\Viber
2014-03-20 12:18:28    438    ----a-w-    C:\Users\msi\advanced_ip_scanner_MAC.bin
2014-03-20 12:08:15    --------    d-----w-    C:\wifidata
2014-03-20 12:07:41    --------    d-----w-    C:\Program Files (x86)\Advanced IP Scanner
.
==================== Find3M  ====================
.
2014-03-11 06:52:30    133928    ----a-w-    C:\Windows\System32\drivers\NisDrvWFP.sys
2014-03-06 09:32:16    2724864    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-03-06 09:31:33    4096    ----a-w-    C:\Windows\System32\ieetwcollectorres.dll
2014-03-06 08:59:04    66048    ----a-w-    C:\Windows\System32\iesetup.dll
2014-03-06 08:57:34    548352    ----a-w-    C:\Windows\System32\vbscript.dll
2014-03-06 08:57:20    48640    ----a-w-    C:\Windows\System32\ieetwproxystub.dll
2014-03-06 08:32:07    2724864    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-03-06 08:29:40    139264    ----a-w-    C:\Windows\System32\ieUnatt.exe
2014-03-06 08:29:14    111616    ----a-w-    C:\Windows\System32\ieetwcollector.exe
2014-03-06 08:28:15    752640    ----a-w-    C:\Windows\System32\jscript9diag.dll
2014-03-06 08:15:54    940032    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-06 08:11:41    5784064    ----a-w-    C:\Windows\System32\jscript9.dll
2014-03-06 08:02:34    61952    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-03-06 08:02:33    455168    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2014-03-06 08:01:01    51200    ----a-w-    C:\Windows\SysWow64\ieetwproxystub.dll
2014-03-06 07:56:43    38400    ----a-w-    C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-03-06 07:46:36    4254720    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-03-06 07:38:13    112128    ----a-w-    C:\Windows\SysWow64\ieUnatt.exe
2014-03-06 07:36:40    592896    ----a-w-    C:\Windows\SysWow64\jscript9diag.dll
2014-03-06 07:13:43    32256    ----a-w-    C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-03-06 07:11:15    2043904    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-03-06 06:40:39    1967104    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-03-06 06:22:40    2260480    ----a-w-    C:\Windows\System32\wininet.dll
2014-03-06 05:41:49    1789440    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-03-06 00:54:41    108968    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll
2014-03-04 09:44:21    362496    ----a-w-    C:\Windows\System32\wow64win.dll
2014-03-04 09:44:21    243712    ----a-w-    C:\Windows\System32\wow64.dll
2014-03-04 09:44:21    13312    ----a-w-    C:\Windows\System32\wow64cpu.dll
2014-03-04 09:44:03    16384    ----a-w-    C:\Windows\System32\ntvdm64.dll
2014-03-04 09:17:19    14336    ----a-w-    C:\Windows\SysWow64\ntvdm64.dll
2014-03-04 09:17:05    44032    ----a-w-    C:\Windows\apppatch\acwow64.dll
2014-03-04 09:16:54    25600    ----a-w-    C:\Windows\SysWow64\setup16.exe
2014-03-04 09:16:18    5120    ----a-w-    C:\Windows\SysWow64\wow32.dll
2014-03-04 08:09:30    7680    ----a-w-    C:\Windows\SysWow64\instnm.exe
2014-03-04 08:09:29    2048    ----a-w-    C:\Windows\SysWow64\user.exe
2014-02-27 23:28:22    28768    ----a-w-    C:\Windows\System32\drivers\Neo_0053.sys
2014-02-27 23:27:41    135736    ----a-w-    C:\Windows\System32\vpncmd.exe
2014-02-07 01:23:30    3156480    ----a-w-    C:\Windows\System32\win32k.sys
2014-02-05 09:13:46    680448    ----a-w-    C:\Windows\System32\ndm-fre.exe
2014-02-04 02:35:56    190912    ----a-w-    C:\Windows\System32\drivers\storport.sys
2014-02-04 02:35:49    274880    ----a-w-    C:\Windows\System32\drivers\msiscsi.sys
2014-02-04 02:35:35    27584    ----a-w-    C:\Windows\System32\drivers\Diskdump.sys
2014-02-04 02:32:22    1424384    ----a-w-    C:\Windows\System32\WindowsCodecs.dll
2014-02-04 02:32:12    624128    ----a-w-    C:\Windows\System32\qedit.dll
2014-02-04 02:28:36    2048    ----a-w-    C:\Windows\System32\iologmsg.dll
2014-02-04 02:04:22    1230336    ----a-w-    C:\Windows\SysWow64\WindowsCodecs.dll
2014-02-04 02:04:11    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
2014-02-04 02:00:39    2048    ----a-w-    C:\Windows\SysWow64\iologmsg.dll
2014-01-29 02:32:18    484864    ----a-w-    C:\Windows\System32\wer.dll
2014-01-29 02:06:47    381440    ----a-w-    C:\Windows\SysWow64\wer.dll
2014-01-28 02:32:46    228864    ----a-w-    C:\Windows\System32\wwansvc.dll
2014-01-27 07:58:44    270496    ------w-    C:\Windows\System32\MpSigStub.exe
2014-01-24 22:19:42    268512    ----a-w-    C:\Windows\System32\drivers\MpFilter.sys
2014-01-24 02:37:55    1684928    ----a-w-    C:\Windows\System32\drivers\ntfs.sys
2014-01-20 21:10:44    39104    ----a-w-    C:\Windows\System32\drivers\tapSF0901.sys
.
============= FINISH: 23:42:24.77 ===============
 

 

 

 

 

 

attach.txt - Results

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 24/9/2013 10:21:36 AM
System Uptime: 18/4/2014 9:34:49 PM (2 hours ago)
.
Motherboard: Micro-Star International |  | MS-1688
Processor: Intel® Core™ i3 CPU       M 330  @ 2.13GHz | CPU 1 | 2133/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 272 GiB total, 108.981 GiB free.
D: is FIXED (NTFS) - 181 GiB total, 179.007 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP256: 13/4/2014 4:36:16 PM - Windows Update
RP257: 17/4/2014 2:23:31 AM - Windows Update
.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Excel 2007 Help (KB963678)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Powerpoint 2007 Help (KB963669)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Word 2007 Help (KB963665)
Acrobat.com
Acronis True Image Home 2011
Adobe AIR
Adobe Flash Player 13 Plugin
Adobe Reader XI (11.0.06)
Adobe Shockwave Player 12.1
Advanced IP Scanner 2.3
Applian Director
ArcSoft Magic-i Visual Effects 2
ArcSoft Print Creations
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Brochures & Flyers
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Funhouse II
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Photo Prints
ArcSoft Print Creations - Poster Creator
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
ArcSoft WebCam Companion 3
Art Effects for PDR10
ATI Catalyst Install Manager
Audacity 2.0.5
Auslogics Disk Defrag
Auto Shutdown
AutoHotkey 1.1.14.03
Avidemux 2.5
AVS Video Converter 8
AVS Video Editor 6
Bing Bar
BurnRecovery
Camtasia Studio 8
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Comfort On-Screen Keyboard Pro 5.1.4.0
Compatibility Pack for the 2007 Office system
Core Temp 1.0 RC6
CoreAAC Audio Decoder (remove only)
CyberGhost VPN
CyberLink PowerDirector 10
CyberLink WaveEditor
CyberScrub® Privacy Suite™ 5.1
D3DX10
Debut Video Capture Software
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Defraggler
Dropbox
EaseUS Data Recovery Wizard 5.6.5
EaseUS Partition Master 9.2.1 Home Edition
EasyViewer
ENE USB Card Reader Driver
ESET Online Scanner v3
Evernote v. 4.5.10
Facebook Messenger 2.1.4814.0
FileZilla Client 3.7.4.1
Finger Sensing Pad Driver
FixCleaner
FormatFactory 2.96
Free Studio version 2013
FreeWebSiteSubmitter 1.0.3
FXCM Trading Station
Google Chrome
Google Earth
Google Talk Plugin
Google Update Helper
Hide IP Easy
HiDownloadPlatinum
HitmanPro 3.7
Hot Keyboard Pro 4
HP Deskjet 2050 J510 series Basic Device Software
HP Deskjet 2050 J510 series Help
Intel® Graphics Media Accelerator Driver
Intel® Management Engine Components
Intel® Turbo Boost Technology Driver
iWisoft Free Video Converter 1.2
Java 7 Update 51 (64-bit)
Java Auto Updater
Junk Mail filter update
LaCie Desktop Manager 1.5.5
Live Update 5
Macro Recorder 5.7.2
Magical Jelly Bean KeyFinder
Maxthon Cloud Browser
MediaCoder x64 0.8.22.5525
MediaInfo 0.7.67
MEGATRADER
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Expression Blend 3 SDK
Microsoft Expression Blend 4
Microsoft Expression Blend SDK for .NET 4
Microsoft Expression Blend SDK for Silverlight 4
Microsoft Expression Design 4
Microsoft Expression Encoder 4
Microsoft Expression Encoder 4 Screen Capture Codec
Microsoft Expression Studio 4
Microsoft Expression Web 4
Microsoft Expression Web 4 Service Pack 2
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access MUI (Greek) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Excel MUI (Greek) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove MUI (Greek) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office InfoPath MUI (Greek) 2007
Microsoft Office Language Pack 2007 - Greek/????????
Microsoft Office O MUI (Greek) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2007
Microsoft Office OneNote MUI (Greek) 2007
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2007
Microsoft Office Outlook MUI (Greek) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint MUI (Greek) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2007
Microsoft Office Proof (French) 2010
Microsoft Office Proof (German) 2007
Microsoft Office Proof (Greek) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing (English) 2010
Microsoft Office Proofing (Greek) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Publisher MUI (Greek) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit MUI (Greek) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared MUI (Greek) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office SharePoint Designer 2010
Microsoft Office SharePoint Designer MUI (English) 2010
Microsoft Office SharePoint Designer MUI (Greek) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Office Word MUI (Greek) 2007
Microsoft Office X MUI (Greek) 2007
Microsoft Report Viewer Redistributable 2005
Microsoft Security Client
Microsoft Security Essentials
Microsoft SharePoint Designer 2010
Microsoft SharePoint Designer 2010 Service Pack 1 (SP1)
Microsoft Silverlight
Microsoft Silverlight 3 SDK
Microsoft Silverlight 4 SDK
Microsoft SkyDrive
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft VC9 runtime libraries
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Works
Microsoft_VC100_CRT_SP1_x64
Microsoft_VC100_CRT_SP1_x86
MixPad Audio Mixer
Motorola Bluetooth
Movie Maker
Mozilla Firefox 29.0 (x86 en-US)
Mozilla Maintenance Service
msi Software Install
MSVC80_x64_v2
MSVC80_x86_v2
MSVC90_x64
MSVC90_x86
MSVCRT
MSVCRT_amd64
MSVCRT110
MSVCRT110_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero Burning ROM 11
Nero Burning ROM 11 Help (CHM)
Nero ControlCenter 11
Nero ControlCenter 11 Help (CHM)
Nero Core Components 11
Nero RescueAgent 11
Nero RescueAgent 11 Help (CHM)
Nero Update
nero.prerequisites.msi
neroxml
Nmap 6.40
Notepad++
Office Shuttle Software
Opera Stable 18.0.1284.63
Opera Stable 20.0.1387.91
ophcrack 3.6.0
Paint.NET v3.5.11
PC Sleep
PDFill PDF Editor with FREE Writer and FREE Tools
Photo Common
Photo Gallery
Photo Story 3 for Windows
Photo! Editor 1.1
PhotoPad Image Editor
PhotoScape
PicoZip Recovery Tool 1.02
PowerDirector
PowerXpressHybrid
PX Profile Update
Ralink RT2870 Wireless LAN Card
RAR Password Recovery v1.1 RC17 (remove only)
RAR Password Unlocker 4.2.0.0
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
RecordPad Sound Recorder
Recuva
Replay Video Capture
Replay Video Capture 7
Revo Uninstaller Pro 3.0.7
S?????? f?t???af???
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft Expression Design 4 (KB2667730)
Security Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687501) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Security Update for Microsoft OneNote 2010 (KB2760600) 32-Bit Edition
Security Update for Microsoft Word 2010 (KB2760410) 32-Bit Edition
Skype Click to Call
Skype™ 6.14
Slideshow Creator
SlimCleaner
SmartSound Quicktracks 5
SoftEther VPN Client
Speccy
Spotflux
Stellar Phoenix Windows Data Recovery - Professional
StrategyRunner Paper Console
Streaming Audio Recorder V2.5.2
StreamTransport version: 1.0.2.2171
Subtitle Edit 3.2.7
Super-Charger
swMSM
Synaptics Pointing Device Driver
TeamViewer 7
Traffic Travis 4.1.0
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817359) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft SharePoint Designer 2010 (KB2553382) 32-Bit Edition
Update for Microsoft SharePoint Designer 2010 (KB2553459) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Viber
VideoGenie
VideoPad Video Editor
VLC media player 2.1.3
Vuze
WebM Media Foundation Components
Winamp
Winamp Detector Plug-in
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinPcap 4.1.3
WinRAR 5.10 beta 2 (64-bit)
WinRAR archiver
WinX DVD Ripper 5.5.6
WPF Toolkit February 2010 (Version 3.5.50211.1)
YTD YouTube Downloader & Converter 3.7
ZIP Password Unlocker 3.0.1.9
.
==== Event Viewer Messages From Past Week ========
.
18/4/2014 9:45:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 4 time(s).
18/4/2014 9:40:55 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 3 time(s).
18/4/2014 9:40:21 PM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
18/4/2014 9:39:46 PM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
18/4/2014 7:45:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 111 time(s).
18/4/2014 7:39:49 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 110 time(s).
18/4/2014 7:39:33 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 109 time(s).
18/4/2014 7:16:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 108 time(s).
18/4/2014 7:16:07 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 107 time(s).
18/4/2014 7:15:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 106 time(s).
18/4/2014 7:15:52 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 105 time(s).
18/4/2014 7:15:45 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 104 time(s).
18/4/2014 7:15:31 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 103 time(s).
18/4/2014 7:15:14 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 102 time(s).
18/4/2014 7:15:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 101 time(s).
18/4/2014 7:00:30 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 100 time(s).
18/4/2014 5:45:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 99 time(s).
18/4/2014 5:15:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 98 time(s).
18/4/2014 5:13:59 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 97 time(s).
18/4/2014 5:13:19 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 96 time(s).
18/4/2014 5:12:29 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 95 time(s).
18/4/2014 4:59:46 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 94 time(s).
18/4/2014 4:45:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 93 time(s).
18/4/2014 4:15:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 92 time(s).
18/4/2014 3:15:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 91 time(s).
18/4/2014 2:51:26 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 90 time(s).
18/4/2014 2:50:38 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 89 time(s).
18/4/2014 2:50:32 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 88 time(s).
18/4/2014 2:50:20 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 87 time(s).
18/4/2014 2:50:11 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 86 time(s).
18/4/2014 2:50:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 85 time(s).
18/4/2014 2:49:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 84 time(s).
18/4/2014 2:45:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 83 time(s).
18/4/2014 2:15:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 82 time(s).
18/4/2014 12:56:48 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 77 time(s).
18/4/2014 12:55:53 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 76 time(s).
18/4/2014 12:55:39 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 75 time(s).
18/4/2014 12:48:34 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 74 time(s).
18/4/2014 12:48:31 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 73 time(s).
18/4/2014 12:48:25 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 72 time(s).
18/4/2014 12:48:21 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 71 time(s).
18/4/2014 12:48:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 70 time(s).
18/4/2014 12:47:56 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 69 time(s).
18/4/2014 12:47:51 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 68 time(s).
18/4/2014 12:47:49 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 67 time(s).
18/4/2014 12:47:40 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 66 time(s).
18/4/2014 12:47:34 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 65 time(s).
18/4/2014 12:47:26 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 64 time(s).
18/4/2014 12:47:23 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 63 time(s).
18/4/2014 12:47:17 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 62 time(s).
18/4/2014 12:45:35 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 61 time(s).
18/4/2014 12:45:21 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 60 time(s).
18/4/2014 12:45:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 59 time(s).
18/4/2014 12:44:54 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 58 time(s).
18/4/2014 12:43:18 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 57 time(s).
18/4/2014 12:43:15 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 56 time(s).
18/4/2014 12:43:13 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 55 time(s).
18/4/2014 12:43:10 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 54 time(s).
18/4/2014 12:43:08 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 53 time(s).
18/4/2014 12:43:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 52 time(s).
18/4/2014 12:43:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 51 time(s).
18/4/2014 12:43:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 50 time(s).
18/4/2014 12:42:56 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 49 time(s).
18/4/2014 12:42:53 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 48 time(s).
18/4/2014 12:42:37 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 47 time(s).
18/4/2014 12:42:33 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 46 time(s).
18/4/2014 12:42:29 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 45 time(s).
18/4/2014 12:42:25 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 44 time(s).
18/4/2014 12:41:32 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 43 time(s).
18/4/2014 12:41:28 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 42 time(s).
18/4/2014 12:41:11 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 41 time(s).
18/4/2014 12:41:00 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 40 time(s).
18/4/2014 12:40:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 39 time(s).
18/4/2014 12:38:29 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 38 time(s).
18/4/2014 12:37:39 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 37 time(s).
18/4/2014 12:37:29 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 36 time(s).
18/4/2014 12:37:27 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 35 time(s).
18/4/2014 12:36:59 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 34 time(s).
18/4/2014 12:36:52 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 33 time(s).
18/4/2014 12:36:15 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 32 time(s).
18/4/2014 12:36:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 31 time(s).
18/4/2014 12:36:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 30 time(s).
18/4/2014 12:35:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 29 time(s).
18/4/2014 12:35:55 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 28 time(s).
18/4/2014 12:35:38 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 27 time(s).
18/4/2014 12:35:27 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 26 time(s).
18/4/2014 12:35:21 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 25 time(s).
18/4/2014 12:35:19 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 24 time(s).
18/4/2014 12:35:14 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 23 time(s).
18/4/2014 12:35:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 22 time(s).
18/4/2014 12:34:52 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 21 time(s).
18/4/2014 12:34:41 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 20 time(s).
18/4/2014 12:34:27 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 19 time(s).
18/4/2014 12:34:20 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 18 time(s).
18/4/2014 12:34:18 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 17 time(s).
18/4/2014 12:34:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 16 time(s).
18/4/2014 12:33:52 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 15 time(s).
18/4/2014 12:33:43 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 14 time(s).
18/4/2014 12:33:24 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 13 time(s).
18/4/2014 12:33:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 12 time(s).
18/4/2014 11:41:42 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 11 time(s).
18/4/2014 11:40:26 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 10 time(s).
18/4/2014 11:15:43 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 9 time(s).
18/4/2014 10:47:32 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 8 time(s).
18/4/2014 10:40:14 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 7 time(s).
18/4/2014 10:39:43 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 6 time(s).
18/4/2014 10:15:07 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 5 time(s).
18/4/2014 1:45:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 81 time(s).
18/4/2014 1:37:32 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 80 time(s).
18/4/2014 1:15:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 79 time(s).
18/4/2014 1:01:39 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 78 time(s).
.
==== End Of File ===========================
 

 

 

 

Both files have been attached as well!

 



BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,604 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:52 AM

Posted 23 April 2014 - 03:55 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/531552 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 neroman00

neroman00
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 23 April 2014 - 08:39 PM

1. attach.txt

 

LINK: http://m.uploadedit.com/b034/1398304227811.txt

 

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 24/9/2013 10:21:36 AM
System Uptime: 24/4/2014 3:23:35 AM (1 hours ago)
.
Motherboard: Micro-Star International |  | MS-1688
Processor: Intel® Core™ i3 CPU       M 330  @ 2.13GHz | CPU 1 | 1983/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 272 GiB total, 103.942 GiB free.
D: is FIXED (NTFS) - 181 GiB total, 179.007 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft Virtual WiFi Miniport Adapter
Device ID: {5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\VWIFIMP\5&32D5024C&0&04
Manufacturer: Microsoft
Name: Microsoft Virtual WiFi Miniport Adapter #2
PNP Device ID: {5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\VWIFIMP\5&32D5024C&0&04
Service: vwifimp
.
==== System Restore Points ===================
.
RP256: 13/4/2014 4:36:16 PM - Windows Update
RP257: 17/4/2014 2:23:31 AM - Windows Update
RP258: 19/4/2014 12:20:36 AM - Removed FixCleaner
RP259: 19/4/2014 12:22:35 AM - Restore Operation
RP260: 19/4/2014 3:27:47 AM - Installed Free Image Converter
RP261: 20/4/2014 8:54:44 PM - Windows Update
.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Excel 2007 Help (KB963678)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Powerpoint 2007 Help (KB963669)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Word 2007 Help (KB963665)
Acrobat.com
Acronis True Image Home 2011
Adobe AIR
Adobe Flash Player 13 Plugin
Adobe Reader XI (11.0.06)
Adobe Shockwave Player 12.1
Advanced IP Scanner 2.3
Applian Director
ArcSoft Magic-i Visual Effects 2
ArcSoft Print Creations
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Brochures & Flyers
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Funhouse II
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Photo Prints
ArcSoft Print Creations - Poster Creator
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
ArcSoft WebCam Companion 3
Art Effects for PDR10
ATI Catalyst Install Manager
Audacity 2.0.5
Auslogics Disk Defrag
Auto Shutdown
AutoHotkey 1.1.14.03
Avidemux 2.5
AVS Video Converter 8
AVS Video Editor 6
Bing Bar
BurnRecovery
Camtasia Studio 8
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Comfort On-Screen Keyboard Pro 5.1.4.0
Compatibility Pack for the 2007 Office system
Core Temp 1.0 RC6
CoreAAC Audio Decoder (remove only)
CyberGhost VPN
CyberLink PowerDirector 10
CyberLink WaveEditor
CyberScrub® Privacy Suite™ 5.1
D3DX10
Debut Video Capture Software
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Defraggler
Dropbox
EaseUS Data Recovery Wizard 5.6.5
EaseUS Partition Master 9.2.1 Home Edition
EasyViewer
ENE USB Card Reader Driver
ESET Online Scanner v3
Evernote v. 4.5.10
Facebook Messenger 2.1.4814.0
FileZilla Client 3.7.4.1
Finger Sensing Pad Driver
FixCleaner
FormatFactory 2.96
Free Studio version 2013
FreeWebSiteSubmitter 1.0.3
FXCM Trading Station
GIMP 2.8.10
Google Chrome
Google Earth
Google Talk Plugin
Google Update Helper
Hide IP Easy
HiDownloadPlatinum
HitmanPro 3.7
Hot Keyboard Pro 4
HP Deskjet 2050 J510 series Basic Device Software
HP Deskjet 2050 J510 series Help
Intel® Graphics Media Accelerator Driver
Intel® Management Engine Components
Intel® Turbo Boost Technology Driver
iWisoft Free Video Converter 1.2
Java 7 Update 51 (64-bit)
Java Auto Updater
Junk Mail filter update
LaCie Desktop Manager 1.5.5
Live Update 5
Macro Recorder 5.7.2
Magical Jelly Bean KeyFinder
Maxthon Cloud Browser
MediaCoder x64 0.8.22.5525
MediaInfo 0.7.67
MEGATRADER
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Expression Blend 3 SDK
Microsoft Expression Blend 4
Microsoft Expression Blend SDK for .NET 4
Microsoft Expression Blend SDK for Silverlight 4
Microsoft Expression Design 4
Microsoft Expression Encoder 4
Microsoft Expression Encoder 4 Screen Capture Codec
Microsoft Expression Studio 4
Microsoft Expression Web 4
Microsoft Expression Web 4 Service Pack 2
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access MUI (Greek) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Excel MUI (Greek) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove MUI (Greek) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office InfoPath MUI (Greek) 2007
Microsoft Office Language Pack 2007 - Greek/????????
Microsoft Office O MUI (Greek) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office Office 64-bit Components 2010
Microsoft Office OneNote MUI (English) 2007
Microsoft Office OneNote MUI (Greek) 2007
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2007
Microsoft Office Outlook MUI (Greek) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint MUI (Greek) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2007
Microsoft Office Proof (French) 2010
Microsoft Office Proof (German) 2007
Microsoft Office Proof (Greek) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing (English) 2010
Microsoft Office Proofing (Greek) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Publisher MUI (Greek) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2010
Microsoft Office Shared 64-bit MUI (Greek) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared MUI (Greek) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office SharePoint Designer 2010
Microsoft Office SharePoint Designer MUI (English) 2010
Microsoft Office SharePoint Designer MUI (Greek) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Office Word MUI (Greek) 2007
Microsoft Office X MUI (Greek) 2007
Microsoft Report Viewer Redistributable 2005
Microsoft Security Client
Microsoft Security Essentials
Microsoft SharePoint Designer 2010
Microsoft SharePoint Designer 2010 Service Pack 1 (SP1)
Microsoft Silverlight
Microsoft Silverlight 3 SDK
Microsoft Silverlight 4 SDK
Microsoft SkyDrive
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft VC9 runtime libraries
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Microsoft Works
Microsoft_VC100_CRT_SP1_x64
Microsoft_VC100_CRT_SP1_x86
MixPad Audio Mixer
Motorola Bluetooth
Movie Maker
Mozilla Firefox 29.0 (x86 en-US)
Mozilla Maintenance Service
msi Software Install
MSVC80_x64_v2
MSVC80_x86_v2
MSVC90_x64
MSVC90_x86
MSVCRT
MSVCRT_amd64
MSVCRT110
MSVCRT110_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Nero Burning ROM 11
Nero Burning ROM 11 Help (CHM)
Nero ControlCenter 11
Nero ControlCenter 11 Help (CHM)
Nero Core Components 11
Nero RescueAgent 11
Nero RescueAgent 11 Help (CHM)
Nero Update
nero.prerequisites.msi
neroxml
Nmap 6.40
Notepad++
Office Shuttle Software
Opera Stable 18.0.1284.63
Opera Stable 20.0.1387.91
ophcrack 3.6.0
Paint.NET v3.5.11
PC Sleep
PDFill PDF Editor with FREE Writer and FREE Tools
Photo Common
Photo Gallery
Photo Story 3 for Windows
Photo! Editor 1.1
PhotoPad Image Editor
PhotoScape
PicoZip Recovery Tool 1.02
PowerDirector
PowerXpressHybrid
PX Profile Update
Ralink RT2870 Wireless LAN Card
RAR Password Recovery v1.1 RC17 (remove only)
RAR Password Unlocker 4.2.0.0
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
RecordPad Sound Recorder
Recuva
Replay Video Capture
Replay Video Capture 7
Revo Uninstaller Pro 3.0.7
S?????? f?t???af???
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft Expression Design 4 (KB2667730)
Security Update for Microsoft Filter Pack 2.0 (KB2553501) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2760406) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687501) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2687510) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Security Update for Microsoft OneNote 2010 (KB2760600) 32-Bit Edition
Security Update for Microsoft Word 2010 (KB2760410) 32-Bit Edition
Skype Click to Call
Skype™ 6.14
Slideshow Creator
SlimCleaner
SmartSound Quicktracks 5
SoftEther VPN Client
Speccy
Spotflux
Stellar Phoenix Windows Data Recovery - Professional
StrategyRunner Paper Console
Streaming Audio Recorder V2.5.2
StreamTransport version: 1.0.2.2171
Subtitle Edit 3.2.7
Super-Charger
swMSM
Synaptics Pointing Device Driver
TeamViewer 7
Traffic Travis 4.1.0
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817359) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft SharePoint Designer 2010 (KB2553382) 32-Bit Edition
Update for Microsoft SharePoint Designer 2010 (KB2553459) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Viber
VideoGenie
VideoPad Video Editor
VLC media player 2.1.3
Vuze
WebM Media Foundation Components
Winamp
Winamp Detector Plug-in
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinPcap 4.1.3
WinRAR 5.10 beta 2 (64-bit)
WinRAR archiver
WinX DVD Ripper 5.5.6
WPF Toolkit February 2010 (Version 3.5.50211.1)
YTD YouTube Downloader & Converter 3.7
ZIP Password Unlocker 3.0.1.9
.
==== Event Viewer Messages From Past Week ========
.
24/4/2014 4:15:03 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 9 time(s).
24/4/2014 4:14:19 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 8 time(s).
24/4/2014 4:01:47 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 7 time(s).
24/4/2014 3:58:07 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 6 time(s).
24/4/2014 3:57:15 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 5 time(s).
24/4/2014 3:45:07 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 4 time(s).
24/4/2014 3:29:12 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 3 time(s).
24/4/2014 3:28:40 AM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
24/4/2014 3:28:07 AM, Error: Service Control Manager [7031]  - The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
23/4/2014 8:55:21 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 322 time(s).
23/4/2014 8:54:13 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 321 time(s).
23/4/2014 8:53:28 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 320 time(s).
23/4/2014 8:45:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 319 time(s).
23/4/2014 8:34:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 318 time(s).
23/4/2014 8:33:32 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 317 time(s).
23/4/2014 8:33:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 316 time(s).
23/4/2014 8:30:34 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 315 time(s).
23/4/2014 8:28:48 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 314 time(s).
23/4/2014 8:23:36 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 313 time(s).
23/4/2014 8:22:11 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 312 time(s).
23/4/2014 8:15:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 311 time(s).
23/4/2014 8:15:01 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 263 time(s).
23/4/2014 8:12:22 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 262 time(s).
23/4/2014 8:11:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 310 time(s).
23/4/2014 5:22:48 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 309 time(s).
23/4/2014 5:16:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 308 time(s).
23/4/2014 5:15:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 307 time(s).
23/4/2014 4:45:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 306 time(s).
23/4/2014 4:43:19 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 305 time(s).
23/4/2014 4:41:46 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 304 time(s).
23/4/2014 4:40:48 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 303 time(s).
23/4/2014 4:35:31 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 302 time(s).
23/4/2014 4:22:52 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 301 time(s).
23/4/2014 4:22:43 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 300 time(s).
23/4/2014 4:15:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 299 time(s).
23/4/2014 3:45:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 298 time(s).
23/4/2014 3:29:28 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 297 time(s).
23/4/2014 3:26:42 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 296 time(s).
23/4/2014 3:25:59 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 295 time(s).
23/4/2014 3:25:38 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 294 time(s).
23/4/2014 3:23:35 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 293 time(s).
23/4/2014 3:22:59 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 292 time(s).
23/4/2014 3:22:29 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 291 time(s).
23/4/2014 3:22:22 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 290 time(s).
23/4/2014 3:21:44 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 289 time(s).
23/4/2014 3:15:16 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 288 time(s).
23/4/2014 3:15:13 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 287 time(s).
23/4/2014 3:15:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 286 time(s).
23/4/2014 2:45:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 285 time(s).
23/4/2014 2:33:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 284 time(s).
23/4/2014 2:32:45 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 283 time(s).
23/4/2014 2:32:23 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 282 time(s).
23/4/2014 2:32:13 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 281 time(s).
23/4/2014 2:31:57 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 280 time(s).
23/4/2014 2:31:51 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 279 time(s).
23/4/2014 2:31:43 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 278 time(s).
23/4/2014 2:24:34 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 277 time(s).
23/4/2014 2:24:23 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 276 time(s).
23/4/2014 2:24:20 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 275 time(s).
23/4/2014 2:21:16 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 274 time(s).
23/4/2014 2:15:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 273 time(s).
23/4/2014 12:15:02 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 261 time(s).
23/4/2014 12:10:08 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 260 time(s).
23/4/2014 12:09:36 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 259 time(s).
23/4/2014 12:06:24 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 258 time(s).
23/4/2014 12:06:18 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 257 time(s).
23/4/2014 11:59:10 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 327 time(s).
23/4/2014 11:57:22 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 326 time(s).
23/4/2014 11:45:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 325 time(s).
23/4/2014 11:15:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 324 time(s).
23/4/2014 10:48:22 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 323 time(s).
23/4/2014 1:56:31 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 272 time(s).
23/4/2014 1:56:27 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 271 time(s).
23/4/2014 1:45:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 270 time(s).
23/4/2014 1:43:43 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 269 time(s).
23/4/2014 1:43:41 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 268 time(s).
23/4/2014 1:37:31 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 267 time(s).
23/4/2014 1:32:17 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 266 time(s).
23/4/2014 1:15:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 265 time(s).
23/4/2014 1:09:33 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 264 time(s).
22/4/2014 9:45:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 234 time(s).
22/4/2014 9:38:51 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 233 time(s).
22/4/2014 5:45:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 232 time(s).
22/4/2014 5:15:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 231 time(s).
22/4/2014 4:53:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 230 time(s).
22/4/2014 4:45:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 229 time(s).
22/4/2014 4:30:59 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 228 time(s).
22/4/2014 4:25:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 227 time(s).
22/4/2014 4:24:11 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 226 time(s).
22/4/2014 4:23:59 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 225 time(s).
22/4/2014 4:23:20 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 224 time(s).
22/4/2014 4:18:34 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 223 time(s).
22/4/2014 4:18:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 222 time(s).
22/4/2014 4:15:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 221 time(s).
22/4/2014 3:53:18 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 220 time(s).
22/4/2014 3:50:41 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 219 time(s).
22/4/2014 3:45:11 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 218 time(s).
22/4/2014 3:42:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 217 time(s).
22/4/2014 3:15:10 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 216 time(s).
22/4/2014 3:15:06 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 191 time(s).
22/4/2014 2:45:11 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 215 time(s).
22/4/2014 2:45:06 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 190 time(s).
22/4/2014 2:37:36 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 189 time(s).
22/4/2014 2:15:21 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 188 time(s).
22/4/2014 2:15:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 214 time(s).
22/4/2014 2:13:26 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 187 time(s).
22/4/2014 2:05:34 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 213 time(s).
22/4/2014 12:59:33 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 202 time(s).
22/4/2014 12:59:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 201 time(s).
22/4/2014 12:58:36 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 200 time(s).
22/4/2014 12:57:44 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 199 time(s).
22/4/2014 12:55:57 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 198 time(s).
22/4/2014 12:45:22 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 181 time(s).
22/4/2014 12:45:19 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 197 time(s).
22/4/2014 12:22:16 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 196 time(s).
22/4/2014 12:15:27 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 195 time(s).
22/4/2014 12:15:21 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 180 time(s).
22/4/2014 12:10:22 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 194 time(s).
22/4/2014 12:09:08 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 193 time(s).
22/4/2014 12:08:21 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 192 time(s).
22/4/2014 12:03:15 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 179 time(s).
22/4/2014 11:45:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 256 time(s).
22/4/2014 11:28:51 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 255 time(s).
22/4/2014 11:28:37 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 254 time(s).
22/4/2014 11:26:13 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 253 time(s).
22/4/2014 11:25:41 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 252 time(s).
22/4/2014 11:25:16 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 251 time(s).
22/4/2014 11:22:37 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 250 time(s).
22/4/2014 11:15:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 249 time(s).
22/4/2014 11:14:21 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 248 time(s).
22/4/2014 11:14:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 247 time(s).
22/4/2014 11:07:25 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 246 time(s).
22/4/2014 11:07:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 245 time(s).
22/4/2014 11:07:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 244 time(s).
22/4/2014 11:06:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 243 time(s).
22/4/2014 11:06:07 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 242 time(s).
22/4/2014 11:05:07 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 241 time(s).
22/4/2014 11:04:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 240 time(s).
22/4/2014 10:53:31 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 239 time(s).
22/4/2014 10:45:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 238 time(s).
22/4/2014 10:37:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 237 time(s).
22/4/2014 10:35:44 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 236 time(s).
22/4/2014 10:15:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 235 time(s).
22/4/2014 1:45:20 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 186 time(s).
22/4/2014 1:45:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 212 time(s).
22/4/2014 1:27:51 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 211 time(s).
22/4/2014 1:16:41 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 185 time(s).
22/4/2014 1:15:24 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 184 time(s).
22/4/2014 1:14:59 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 210 time(s).
22/4/2014 1:14:40 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 209 time(s).
22/4/2014 1:14:25 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 208 time(s).
22/4/2014 1:14:12 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 207 time(s).
22/4/2014 1:11:38 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 206 time(s).
22/4/2014 1:09:03 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 183 time(s).
22/4/2014 1:08:37 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 182 time(s).
22/4/2014 1:03:29 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 205 time(s).
22/4/2014 1:02:46 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 204 time(s).
22/4/2014 1:02:33 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 203 time(s).
21/4/2014 5:45:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 167 time(s).
21/4/2014 5:15:20 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 166 time(s).
21/4/2014 5:11:22 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 165 time(s).
21/4/2014 4:53:22 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 164 time(s).
21/4/2014 4:47:37 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 163 time(s).
21/4/2014 4:45:20 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 162 time(s).
21/4/2014 4:30:35 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 161 time(s).
21/4/2014 4:15:18 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 160 time(s).
21/4/2014 3:46:40 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 159 time(s).
21/4/2014 3:15:28 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 158 time(s).
21/4/2014 3:09:24 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 157 time(s).
21/4/2014 3:08:56 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR9.
21/4/2014 12:15:26 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 156 time(s).
21/4/2014 12:11:57 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 155 time(s).
21/4/2014 11:45:22 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 178 time(s).
21/4/2014 11:44:16 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 177 time(s).
21/4/2014 11:40:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 176 time(s).
21/4/2014 11:38:19 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 175 time(s).
21/4/2014 11:15:37 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 174 time(s).
21/4/2014 11:07:53 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 173 time(s).
21/4/2014 10:53:17 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 172 time(s).
21/4/2014 10:52:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 171 time(s).
21/4/2014 10:45:24 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 170 time(s).
21/4/2014 10:25:57 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 169 time(s).
21/4/2014 10:22:46 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 168 time(s).
20/4/2014 9:00:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 151 time(s).
20/4/2014 8:59:37 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 150 time(s).
20/4/2014 8:56:23 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 149 time(s).
20/4/2014 8:45:27 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 148 time(s).
20/4/2014 8:43:50 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 147 time(s).
20/4/2014 8:43:08 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 146 time(s).
20/4/2014 8:43:01 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR7.
20/4/2014 3:32:34 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 137 time(s).
20/4/2014 3:31:10 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 136 time(s).
20/4/2014 3:30:36 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 135 time(s).
20/4/2014 3:29:22 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 134 time(s).
20/4/2014 3:28:57 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 133 time(s).
20/4/2014 3:15:18 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 132 time(s).
20/4/2014 2:45:25 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 131 time(s).
20/4/2014 2:15:23 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 130 time(s).
20/4/2014 2:05:10 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 129 time(s).
20/4/2014 12:47:00 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 145 time(s).
20/4/2014 12:45:21 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 144 time(s).
20/4/2014 12:44:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 143 time(s).
20/4/2014 12:38:15 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 142 time(s).
20/4/2014 12:37:25 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 141 time(s).
20/4/2014 12:34:50 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 140 time(s).
20/4/2014 12:25:49 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 139 time(s).
20/4/2014 12:22:17 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 138 time(s).
20/4/2014 12:21:58 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR5.
20/4/2014 11:56:00 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 154 time(s).
20/4/2014 11:49:53 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 153 time(s).
20/4/2014 11:45:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 152 time(s).
20/4/2014 11:44:40 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR8.
20/4/2014 1:46:10 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 128 time(s).
20/4/2014 1:35:33 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 127 time(s).
20/4/2014 1:28:54 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 126 time(s).
20/4/2014 1:15:07 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 125 time(s).
20/4/2014 1:14:27 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 124 time(s).
20/4/2014 1:05:28 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 123 time(s).
20/4/2014 1:05:07 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 122 time(s).
19/4/2014 9:59:45 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 113 time(s).
19/4/2014 9:59:30 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 112 time(s).
19/4/2014 9:59:18 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 111 time(s).
19/4/2014 9:59:01 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 110 time(s).
19/4/2014 9:55:24 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 109 time(s).
19/4/2014 9:55:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 108 time(s).
19/4/2014 9:54:07 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 107 time(s).
19/4/2014 9:45:10 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 106 time(s).
19/4/2014 9:25:45 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 105 time(s).
19/4/2014 4:41:47 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR2.
19/4/2014 4:37:56 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 104 time(s).
19/4/2014 4:34:54 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 103 time(s).
19/4/2014 4:34:18 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 102 time(s).
19/4/2014 4:31:41 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 101 time(s).
19/4/2014 4:30:24 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 100 time(s).
19/4/2014 4:30:13 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 99 time(s).
19/4/2014 4:18:29 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 98 time(s).
19/4/2014 4:15:08 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 97 time(s).
19/4/2014 3:45:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 96 time(s).
19/4/2014 3:30:20 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 59 time(s).
19/4/2014 3:29:32 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 58 time(s).
19/4/2014 3:29:06 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 57 time(s).
19/4/2014 3:23:08 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 56 time(s).
19/4/2014 3:23:00 AM, Error: Service Control Manager [7030]  - The MgAssist Service service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
19/4/2014 3:22:02 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 55 time(s).
19/4/2014 3:21:52 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 54 time(s).
19/4/2014 3:21:33 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 53 time(s).
19/4/2014 3:20:24 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 52 time(s).
19/4/2014 3:20:14 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 51 time(s).
19/4/2014 3:18:08 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 50 time(s).
19/4/2014 3:15:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 95 time(s).
19/4/2014 3:15:03 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 49 time(s).
19/4/2014 3:08:39 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 48 time(s).
19/4/2014 3:07:04 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 47 time(s).
19/4/2014 3:06:56 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 46 time(s).
19/4/2014 3:06:28 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 45 time(s).
19/4/2014 3:06:20 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 44 time(s).
19/4/2014 3:06:15 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 43 time(s).
19/4/2014 3:06:08 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 42 time(s).
19/4/2014 3:06:02 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 41 time(s).
19/4/2014 3:05:53 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 40 time(s).
19/4/2014 3:03:45 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 39 time(s).
19/4/2014 2:45:07 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 94 time(s).
19/4/2014 2:45:04 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 38 time(s).
19/4/2014 2:43:27 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 37 time(s).
19/4/2014 2:39:07 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 36 time(s).
19/4/2014 2:38:57 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 35 time(s).
19/4/2014 2:30:24 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 34 time(s).
19/4/2014 2:30:21 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 33 time(s).
19/4/2014 2:30:10 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 32 time(s).
19/4/2014 2:30:04 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 31 time(s).
19/4/2014 2:29:56 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 93 time(s).
19/4/2014 2:29:36 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 30 time(s).
19/4/2014 2:29:26 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 29 time(s).
19/4/2014 2:29:05 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 28 time(s).
19/4/2014 2:29:01 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 27 time(s).
19/4/2014 2:28:55 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 26 time(s).
19/4/2014 2:28:46 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 25 time(s).
19/4/2014 2:28:41 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 24 time(s).
19/4/2014 2:27:45 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 92 time(s).
19/4/2014 2:24:58 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 23 time(s).
19/4/2014 2:22:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 91 time(s).
19/4/2014 2:19:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 90 time(s).
19/4/2014 2:19:47 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 89 time(s).
19/4/2014 2:18:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 88 time(s).
19/4/2014 2:15:05 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 22 time(s).
19/4/2014 2:15:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 87 time(s).
19/4/2014 12:45:03 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 62 time(s).
19/4/2014 12:36:33 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 61 time(s).
19/4/2014 12:36:17 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 60 time(s).
19/4/2014 11:37:21 PM, Error: Disk [11]  - The driver detected a controller error on \Device\Harddisk1\DR4.
19/4/2014 11:34:33 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 121 time(s).
19/4/2014 11:32:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 120 time(s).
19/4/2014 11:31:52 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 119 time(s).
19/4/2014 11:29:23 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 118 time(s).
19/4/2014 10:45:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 117 time(s).
19/4/2014 10:29:26 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 116 time(s).
19/4/2014 10:15:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 115 time(s).
19/4/2014 10:00:40 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 114 time(s).
19/4/2014 1:57:35 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 21 time(s).
19/4/2014 1:57:00 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 20 time(s).
19/4/2014 1:53:04 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 86 time(s).
19/4/2014 1:46:53 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 85 time(s).
19/4/2014 1:46:36 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 84 time(s).
19/4/2014 1:45:06 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 83 time(s).
19/4/2014 1:45:06 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 19 time(s).
19/4/2014 1:43:45 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 18 time(s).
19/4/2014 1:43:40 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 17 time(s).
19/4/2014 1:43:24 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 16 time(s).
19/4/2014 1:42:21 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 15 time(s).
19/4/2014 1:34:48 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 82 time(s).
19/4/2014 1:34:29 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 14 time(s).
19/4/2014 1:33:14 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 81 time(s).
19/4/2014 1:31:52 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 13 time(s).
19/4/2014 1:31:45 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 12 time(s).
19/4/2014 1:31:33 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 11 time(s).
19/4/2014 1:29:42 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 80 time(s).
19/4/2014 1:28:49 AM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 10 time(s).
19/4/2014 1:27:49 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 79 time(s).
19/4/2014 1:24:00 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 78 time(s).
19/4/2014 1:23:53 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 77 time(s).
19/4/2014 1:23:44 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 76 time(s).
19/4/2014 1:23:02 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 75 time(s).
19/4/2014 1:22:58 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 74 time(s).
19/4/2014 1:22:42 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 73 time(s).
19/4/2014 1:22:32 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 72 time(s).
19/4/2014 1:22:27 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 71 time(s).
19/4/2014 1:22:13 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 70 time(s).
19/4/2014 1:22:08 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 69 time(s).
19/4/2014 1:21:52 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 68 time(s).
19/4/2014 1:21:09 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 67 time(s).
19/4/2014 1:20:41 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 66 time(s).
19/4/2014 1:15:05 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 65 time(s).
19/4/2014 1:14:15 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 64 time(s).
19/4/2014 1:13:25 PM, Error: Service Control Manager [7034]  - The Windows Search service terminated unexpectedly.  It has done this 63 time(s).
18/4/2014 11:55:39 PM, Error: Tcpip [4199]  - The system detected an address conflict for IP address 192.168.2.5 with the system having network hardware address E8-39-DF-0D-95-DE. Network operations on this system may be disrupted as a result.
.
==== End Of File ===========================

 


 

2.  dds.txt

 

LINK: http://m.uploadedit.com/b034/1398304361112.txt

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17041  BrowserJavaVersion: 10.5.1
Run by msi at 4:14:16 on 2014-04-24
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.7982.6303 [GMT 3:00]
.
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Spotflux\services\SpotfluxUpdateService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Motorola\Bluetooth\obexsrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\Dwm.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Ralink\Common\RaUI.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\StreamingStar\HiDownload_Platinum\HiDownloadPlatinum.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\WerFault.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = Preserve
uDefault_Page_URL = hxxp://msi.msn.com
mURLSearchHooks: <No Name>:  - LocalServer32 - <no file>
mWinlogon: Userinit = userinit.exe
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
uRun: [Google Update] "C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\RALINK~1.LNK - C:\Program Files (x86)\Ralink\Common\RaUI.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoThumbnailCache = dword:1
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to &Hot Keyboard - C:\Program Files (x86)\Hot Keyboard Pro\IEScript.htm
IE: Assign &hot key - C:\Program Files (x86)\Hot Keyboard Pro\IEScript.htm
IE: Download all links with IDM - C:\Users\msi\Documents\Vuze Downloads\Internet Download Manager 6.18 Build 11 incl. Crack {AmanPC}\Crack\IEGetAll.htm
IE: Download with IDM - C:\Users\msi\Documents\Vuze Downloads\Internet Download Manager 6.18 Build 11 incl. Crack {AmanPC}\Crack\IEExt.htm
IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_05-windows-i586.cab
TCP: NameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554} : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514144343533434 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514144354433444 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514342334636393 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514535333646363 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\34954514935483032314 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{508CF140-AA4A-4B00-B8F3-54618C186554}\46C696E6B6 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{74AB6E7E-EE5C-475F-8BB1-E3C9567E2D8C} : DHCPNameServer = 4.2.2.1 4.2.2.2 44.105.10.1
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514033383641433 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514133463445314 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514144343533434 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514144354433444 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514342334636393 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514630323343424 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{7A410A8F-2252-4DBA-B4AF-7D7E0C1D13D0}\34954514637343335354 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\1627279637534376 : DHCPNameServer = 213.140.209.226 213.140.208.226 213.140.210.226
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\34954514033383641433 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\34954514132364445373 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\34954514348323939324 : DHCPNameServer = 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\C696E6B6379737 : DHCPNameServer = 8.8.8.8 192.168.10.254
TCP: Interfaces\{EA79BA14-82E4-4828-9BAD-A117877FD166}\F46666963656 : DHCPNameServer = 8.8.8.8 8.8.4.4
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs=  
SSODL: WebCheck - <orphaned>
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\Windows\System32\wpdshserviceobj.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [fspuip] C:\Program Files (x86)\FSP\fspuip.exe
x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-IE: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned>
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com
FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Winamp Detect\npwachk.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\msi\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll
FF - plugin: C:\Users\msi\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1209149.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll
FF - plugin: C:\windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2014-1-25 268512]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);C:\Windows\System32\drivers\tdrpm273.sys [2012-3-14 1263200]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-4-7 203264]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files\Motorola\Bluetooth\obexsrv.exe [2013-9-25 679176]
R2 c2cautoupdatesvc;Skype Click to Call Updater;C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-4-11 1390720]
R2 c2cpnrsvc;Skype Click to Call PNR Service;C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-4-11 1764992]
R2 SpotfluxUpdateService;Spotflux Update Service;C:\Program Files (x86)\Spotflux\services\SpotfluxUpdateService.exe [2014-1-21 28160]
R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2010-6-12 2320920]
R3 Bluetooth Device Manager;Bluetooth Device Manager;C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [2013-9-25 4150864]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2013-9-25 1028096]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-6-12 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2013-9-25 158720]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2010-6-12 271872]
R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2014-4-7 10322848]
R3 Neo_VPN-test;VPN Client Device Driver - VPN-test;C:\Windows\System32\drivers\Neo_0053.sys [2014-2-28 28768]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-4-7 888536]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\drivers\Smb_driver_Intel.sys [2013-9-25 31032]
R3 stdriver;Sound tap driver Upper Class Filter Driver v2.0.0.0;C:\Windows\System32\drivers\stdriver64.sys [2012-10-2 103512]
R3 tapSF0901;Spotflux Virtual Network Device Driver;C:\Windows\System32\drivers\tapSF0901.sys [2014-1-21 39104]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.352.0\BBSvc.EXE [2012-1-21 192792]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 afcdp;afcdp;C:\Windows\System32\drivers\afcdp.sys [2012-3-14 285280]
S3 afcdpsrv;Acronis Nonstop Backup Service;C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2012-3-14 3246040]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;C:\Windows\System32\drivers\ArcSoftKsUFilter.sys [2010-6-12 19968]
S3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.352.0\SeaPort.EXE [2012-1-21 240408]
S3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files\Motorola\Bluetooth\audiosrv.exe [2013-9-25 1188616]
S3 BTMCOM;Bluetooth Serial Port;C:\Windows\System32\drivers\btmcom.sys [2013-9-25 52736]
S3 BTMUSB;Motorola Bluetooth Radio Service;C:\Windows\System32\drivers\btmusb.sys [2013-9-25 484096]
S3 CGVPNCliSrvc;CyberGhost VPN Client;C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2013-1-8 2430128]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2013-1-16 17480]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2013-1-16 9800]
S3 fspad_wlh64;Finger Sensing Pad Driver for Windows 2000/XP/Vista/Win7_wlh64;C:\Windows\System32\drivers\fspad_wlh64.sys [2010-6-12 53248]
S3 fspad_xp64;Finger Sensing Pad Driver for Windows 2000/XP/Vista/Win7_xp64;C:\Windows\System32\drivers\fspad_xp64.sys [2010-6-12 53248]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-4-10 111616]
S3 MDA_NTDRV;MDA_NTDRV;C:\Windows\System32\MDA_NTDRV.sys [2013-2-25 21208]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2013-9-27 133928]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-3-11 347872]
S3 NTIOLib_1_0_3;NTIOLib_1_0_3;C:\Program Files (x86)\msi\Super-Charger\NTIOLib_X64.sys [2013-9-14 13368]
S3 NTIOLib_1_0_4;NTIOLib_1_0_4;C:\Program Files (x86)\msi\Live Update 5\NTIOLib_X64.sys [2013-9-14 14136]
S3 RaMediaServer;Ralink UPnP Media Server;C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [2013-11-11 1863680]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-9-24 19456]
S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2013-12-13 31800]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-2-14 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-9-24 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-1-31 1255736]
S4 LaCieDesktopManagerService;LaCieDesktopManagerService;C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe [2012-12-30 1379840]
S4 MSI_SuperCharger;MSI_SuperCharger;C:\Program Files (x86)\msi\Super-Charger\ChargeService.exe [2013-9-14 161264]
S4 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-9-23 641832]
S4 RalinkRegistryWriter;RalinkRegistryWriter;C:\Program Files (x86)\Ralink\Common\RaRegistry.exe [2013-11-11 391472]
S4 RalinkRegistryWriter64;RalinkRegistryWriter64;C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe [2013-11-11 452912]
S4 RichVideo64;Cyberlink RichVideo64 Service(CRVS);C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-5-31 386344]
S4 SEVPNCLIENT;SoftEther VPN Client;C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [2014-2-28 4298808]
S4 TeamViewer7;TeamViewer 7;C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-10-26 2848168]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2014-04-23 17:21:58    10651704    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FFF5973A-22E3-4355-9D77-17CB05EECCB6}\mpengine.dll
2014-04-22 12:29:33    10651704    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-04-19 10:50:15    --------    d-----w-    C:\Users\msi\AppData\Local\webkit
2014-04-19 10:47:51    --------    d-----w-    C:\Users\msi\AppData\Local\gtk-2.0
2014-04-19 10:47:29    --------    d-----w-    C:\Users\msi\.thumbnails
2014-04-19 10:27:59    --------    d-----w-    C:\Users\msi\AppData\Local\fontconfig
2014-04-19 10:27:58    --------    d-----w-    C:\Users\msi\AppData\Local\gegl-0.2
2014-04-19 10:27:58    --------    d-----w-    C:\Users\msi\.gimp-2.8
2014-04-19 10:18:13    --------    d-----w-    C:\Program Files\GIMP 2
2014-04-19 10:12:22    --------    d-----w-    C:\Users\msi\AppData\Roaming\DesktopIconGoodgame
2014-04-19 09:47:27    1031560    ------w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{68BF2AE8-5AB9-4DA1-823C-44C96D2121F9}\gapaengine.dll
2014-04-19 00:34:14    --------    d-----w-    C:\Program Files (x86)\Photo!
2014-04-19 00:27:24    --------    d-----w-    C:\Users\msi\AppData\Roaming\FreePicResizer
2014-04-19 00:23:08    --------    d-----w-    C:\Users\msi\.android
2014-04-19 00:23:07    --------    d-----w-    C:\Users\msi\AppData\Local\cache
2014-04-19 00:23:03    --------    d-----w-    C:\Users\msi\AppData\Local\Mobogenie
2014-04-18 21:19:59    --------    d-----w-    C:\Program Files (x86)\FixCleaner
2014-04-18 00:35:07    --------    d-----w-    C:\Program Files (x86)\ESET
2014-04-18 00:24:49    --------    d-----w-    C:\Windows\ERUNT
2014-04-18 00:13:15    --------    d-----w-    C:\AdwCleaner
2014-04-17 14:34:08    --------    d-----w-    C:\Users\msi\AppData\Local\ElevatedDiagnostics
2014-04-17 12:30:10    --------    d-sh--w-    C:\Users\msi\AppData\Local\EmieUserList
2014-04-17 12:30:10    --------    d-sh--w-    C:\Users\msi\AppData\Local\EmieSiteList
2014-04-14 20:56:33    --------    d-----w-    C:\Program Files\Macrorit
2014-04-14 20:47:35    --------    d-----w-    C:\Program Files (x86)\WinASO
2014-04-09 18:05:02    --------    d-sh--w-    C:\ProgramData\googleupdate
2014-04-08 23:00:15    70832    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-04-08 23:00:15    692400    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-07 20:19:28    --------    d-----w-    C:\Users\msi\AppData\Local\Skype
2014-04-06 23:17:58    888536    ----a-w-    C:\Windows\System32\drivers\Rt64win7.sys
2014-04-06 23:17:58    73800    ----a-w-    C:\Windows\System32\RtNicProp64.dll
2014-04-06 22:06:06    --------    d-----w-    C:\Program Files\ATI
2014-04-06 21:39:29    511000    ----a-w-    C:\Windows\System32\igfxsrvc.exe
2014-04-06 21:39:23    --------    d-----w-    C:\Program Files\ATI Technologies
2014-04-06 21:11:21    --------    d-----w-    C:\Users\msi\AppData\Local\ATI
2014-04-06 17:26:04    --------    d-----w-    C:\ProgramData\DriverReviver.exe
2014-04-06 17:25:16    --------    d-----w-    C:\ProgramData\ReviverSoft
2014-04-06 17:25:13    --------    d-----w-    C:\Program Files\ReviverSoft
2014-04-06 15:49:55    --------    d-----w-    C:\Rbackup
2014-04-06 15:44:58    --------    d-----w-    C:\Program Files\Perfect Uninstaller
2014-04-05 14:20:02    --------    d-----w-    C:\Users\msi\AppData\Roaming\library_dir
2014-04-05 13:42:36    --------    d-sh--w-    C:\found.000
2014-04-05 13:17:08    --------    d-----w-    C:\Program Files (x86)\DriverTuner
.
==================== Find3M  ====================
.
2014-04-15 19:41:11    438    ----a-w-    C:\Users\msi\advanced_ip_scanner_MAC.bin
2014-03-11 06:52:30    133928    ----a-w-    C:\Windows\System32\drivers\NisDrvWFP.sys
2014-03-06 09:32:16    2724864    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-03-06 09:31:33    4096    ----a-w-    C:\Windows\System32\ieetwcollectorres.dll
2014-03-06 08:59:04    66048    ----a-w-    C:\Windows\System32\iesetup.dll
2014-03-06 08:57:34    548352    ----a-w-    C:\Windows\System32\vbscript.dll
2014-03-06 08:57:20    48640    ----a-w-    C:\Windows\System32\ieetwproxystub.dll
2014-03-06 08:32:07    2724864    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-03-06 08:29:40    139264    ----a-w-    C:\Windows\System32\ieUnatt.exe
2014-03-06 08:29:14    111616    ----a-w-    C:\Windows\System32\ieetwcollector.exe
2014-03-06 08:28:15    752640    ----a-w-    C:\Windows\System32\jscript9diag.dll
2014-03-06 08:15:54    940032    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2014-03-06 08:11:41    5784064    ----a-w-    C:\Windows\System32\jscript9.dll
2014-03-06 08:02:34    61952    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-03-06 08:02:33    455168    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2014-03-06 08:01:01    51200    ----a-w-    C:\Windows\SysWow64\ieetwproxystub.dll
2014-03-06 07:56:43    38400    ----a-w-    C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-03-06 07:46:36    4254720    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-03-06 07:38:13    112128    ----a-w-    C:\Windows\SysWow64\ieUnatt.exe
2014-03-06 07:36:40    592896    ----a-w-    C:\Windows\SysWow64\jscript9diag.dll
2014-03-06 07:13:43    32256    ----a-w-    C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-03-06 07:11:15    2043904    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-03-06 06:40:39    1967104    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-03-06 06:22:40    2260480    ----a-w-    C:\Windows\System32\wininet.dll
2014-03-06 05:41:49    1789440    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-03-06 00:54:41    108968    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll
2014-03-04 09:44:21    362496    ----a-w-    C:\Windows\System32\wow64win.dll
2014-03-04 09:44:21    243712    ----a-w-    C:\Windows\System32\wow64.dll
2014-03-04 09:44:21    13312    ----a-w-    C:\Windows\System32\wow64cpu.dll
2014-03-04 09:44:03    16384    ----a-w-    C:\Windows\System32\ntvdm64.dll
2014-03-04 09:17:19    14336    ----a-w-    C:\Windows\SysWow64\ntvdm64.dll
2014-03-04 09:17:05    44032    ----a-w-    C:\Windows\apppatch\acwow64.dll
2014-03-04 09:16:54    25600    ----a-w-    C:\Windows\SysWow64\setup16.exe
2014-03-04 09:16:18    5120    ----a-w-    C:\Windows\SysWow64\wow32.dll
2014-03-04 08:09:30    7680    ----a-w-    C:\Windows\SysWow64\instnm.exe
2014-03-04 08:09:29    2048    ----a-w-    C:\Windows\SysWow64\user.exe
2014-02-27 23:28:22    28768    ----a-w-    C:\Windows\System32\drivers\Neo_0053.sys
2014-02-27 23:27:41    135736    ----a-w-    C:\Windows\System32\vpncmd.exe
2014-02-07 01:23:30    3156480    ----a-w-    C:\Windows\System32\win32k.sys
2014-02-05 09:13:46    680448    ----a-w-    C:\Windows\System32\ndm-fre.exe
2014-02-04 02:35:56    190912    ----a-w-    C:\Windows\System32\drivers\storport.sys
2014-02-04 02:35:49    274880    ----a-w-    C:\Windows\System32\drivers\msiscsi.sys
2014-02-04 02:35:35    27584    ----a-w-    C:\Windows\System32\drivers\Diskdump.sys
2014-02-04 02:32:22    1424384    ----a-w-    C:\Windows\System32\WindowsCodecs.dll
2014-02-04 02:32:12    624128    ----a-w-    C:\Windows\System32\qedit.dll
2014-02-04 02:28:36    2048    ----a-w-    C:\Windows\System32\iologmsg.dll
2014-02-04 02:04:22    1230336    ----a-w-    C:\Windows\SysWow64\WindowsCodecs.dll
2014-02-04 02:04:11    509440    ----a-w-    C:\Windows\SysWow64\qedit.dll
2014-02-04 02:00:39    2048    ----a-w-    C:\Windows\SysWow64\iologmsg.dll
2014-01-29 02:32:18    484864    ----a-w-    C:\Windows\System32\wer.dll
2014-01-29 02:06:47    381440    ----a-w-    C:\Windows\SysWow64\wer.dll
2014-01-28 02:32:46    228864    ----a-w-    C:\Windows\System32\wwansvc.dll
2014-01-27 07:58:44    270496    ------w-    C:\Windows\System32\MpSigStub.exe
2014-01-24 22:19:42    268512    ----a-w-    C:\Windows\System32\drivers\MpFilter.sys
2014-01-24 02:37:55    1684928    ----a-w-    C:\Windows\System32\drivers\ntfs.sys
.
============= FINISH:  4:15:13.81 ===============
 

 

 

NOTE:

I am using genuine Windows by the date I bought my notebook (msi cx620). I do not have any Windows CD/DVD because windows was pre-installed by the date of purchased

 

 

***************************************************

 

 

This is all detailed information regarding my notebook: http://m.uploadedit.com/b034/1398303976937.txt


Edited by neroman00, 24 April 2014 - 05:35 AM.


#4 neroman00

neroman00
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 23 April 2014 - 08:47 PM

DELETED


Edited by neroman00, 23 April 2014 - 08:56 PM.


#5 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:52 AM

Posted 24 April 2014 - 01:09 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

--RogueKiller--
  • Download & SAVE to your Desktop For 32bit system or For 64bit system
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+
=======

Download the correct version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.

#6 neroman00

neroman00
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 24 April 2014 - 06:50 PM

Hi nasdaq, many thanks for your help!

 

RKreport.txt- FIRST SCAN:

 

 

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : msi [Admin rights]
Mode : Remove -- Date : 04/25/2014 02:47:47
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 4 ¤¤¤
[V1][ROGUE ST] iWebar-firefoxinstaller.job : C:\Program Files (x86)\iWebar\iWebar-firefoxinstaller.exe - /installxpi /agentregpath='iWebar' /extensionfilepath='C:\Program Files (x86)\iWebar\35510.xpi' /appid=35510 /srcid='000171' /subid='0' /zdata='eyJkYXRhIjp7ImRhdGUiOiJFMlB6c210YzEsOGJlYzc4ODMtODcxNC00ZDAyLWIzNjgtMGYxMzg4YjU5YWE0LCIsInVucSI6IjhiZWM3ODgzLTg3MTQtNGQwMi1iMzY4LTBmMTM4OGI1OWFhNCJ9fQ==' /bic=B7CC44DCD9CA4514B39E6E1A8F7E763EIE /verifier=907ff8f9f8fd26180fe476e5af839712 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1393287131 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com /extensionversion=0.93 /prefsbranch=a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/35510.rdf /extensionname='iWebar' /extensiondesc='iWebar' /publishername='iWebar' /defbro=ff /allusers /allprofiles /checkfflist /autoupdateulr='hxxp://update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.json' /runfrom='task' /externallog='' [x][x][x][x][x][x][x][x][x] -> DELETED
[V1][SUSP PATH] Norton Product InstallerIdle.job : C:\Users\msi\AppData\Local\Temp\SymInstallStub.exe - /partnerid=realnw /productlist=nss /staging=false /delay=0 /affid=RPLR /desktopshortcut=1 /startmenushortcut=1 /launchedby=4 [x] -> DELETED
[V2][ROGUE ST] iWebar-firefoxinstaller : C:\Program Files (x86)\iWebar\iWebar-firefoxinstaller.exe - /installxpi /agentregpath='iWebar' /extensionfilepath='C:\Program Files (x86)\iWebar\35510.xpi' /appid=35510 /srcid='000171' /subid='0' /zdata='eyJkYXRhIjp7ImRhdGUiOiJFMlB6c210YzEsOGJlYzc4ODMtODcxNC00ZDAyLWIzNjgtMGYxMzg4YjU5YWE0LCIsInVucSI6IjhiZWM3ODgzLTg3MTQtNGQwMi1iMzY4LTBmMTM4OGI1OWFhNCJ9fQ==' /bic=B7CC44DCD9CA4514B39E6E1A8F7E763EIE /verifier=907ff8f9f8fd26180fe476e5af839712 /installerversion=1_34_2_13 /installerfullversion=1.34.2.13 /installationtime=1393287131 /statsdomain=hxxp://stats.srvstatsdata.com /errorsdomain=hxxp://errors.srvstatsdata.com /waitforbrowser=300 /extensionid=2eb528f3-950d-48a3-be4b-5d7de6c8331e@a41e199b-6ca4-4d23-ab87-73f2d1973314.com /extensionversion=0.93 /prefsbranch=a2eb528f3950d48a3be4b5d7de6c8331ea41e199b6ca44d23ab8773f2d1973314com35510 /updateurl=hxxps://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/35510.rdf /extensionname='iWebar' /extensiondesc='iWebar' /publishername='iWebar' /defbro=ff /allusers /allprofiles /checkfflist /autoupdateulr='hxxp://update.srvstatsdata.com/ff_agent_updates/{CAMP_ID}/update.json' /runfrom='task' /externallog='' [x][x][x][x][x][x][x][x][x] -> DELETED
[V2][SUSP PATH] Windows Update Check - 0x196B03ED : C:\ProgramData\googleupdate\gtqadjqbe.exe [-] -> DELETED

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000BEVT-22ZAT0 ATA Device +++++
--- User ---
[MBR] c3b5f524b43bb5bd2fa43fb7094a98ca
[BSP] acd12ff5825208cc5559c9c06e42da1c : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 12288 MB
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 25167872 | Size: 100 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 25372672 | Size: 278729 MB
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 596209664 | Size: 185821 MB
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_04252014_024747.txt >>
RKreport[0]_S_04252014_024733.txt

=====================================================================================

 

 

RKreport.txt: Another Scan-after the first one (this time - Run as Administrator):

 

RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : msi [Admin rights]
Mode : Remove -- Date : 04/25/2014 02:53:42
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000BEVT-22ZAT0 ATA Device +++++
--- User ---
[MBR] c3b5f524b43bb5bd2fa43fb7094a98ca
[BSP] acd12ff5825208cc5559c9c06e42da1c : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 12288 MB
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 25167872 | Size: 100 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 25372672 | Size: 278729 MB
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 596209664 | Size: 185821 MB
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_04252014_025342.txt >>
RKreport[0]_D_04252014_024747.txt;RKreport[0]_S_04252014_024733.txt;RKreport[0]_S_04252014_025334.txt

 

=============================================================================================

 

 

FRST.txt log:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-04-2014
Ran by msi (administrator) on MSI-MSI on 25-04-2014 02:59:26
Running from C:\Users\msi\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft) C:\Program Files (x86)\Spotflux\services\SpotfluxUpdateService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaUI.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\obexsrv.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [3768832 2009-12-17] (Sentelic Corporation)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2965899324-3394625851-2540308716-1001\...\Run: [Google Update] => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-14] (Google Inc.)
HKU\S-1-5-21-2965899324-3394625851-2540308716-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2965899324-3394625851-2540308716-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-2965899324-3394625851-2540308716-1001\...\Policies\Explorer: [NoThumbnailCache] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk
ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files (x86)\Ralink\Common\RaUI.exe (Ralink Technology, Corp.)
SSODL-x32: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - %SystemRoot%\system32\wpdshserviceobj.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://msi.msn.com
URLSearchHook: HKLM-x32 - Default Value = {CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D}
SearchScopes: HKCU - DefaultScope {BE3F54AF-68B9-4E87-86A7-C782477468A4} URL = http://search.yahoo.com/search?fr=mcafee&p={SearchTerms}
SearchScopes: HKCU - {564CBCE4-E8E6-4368-A978-F5A360AD1651} URL = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {BE3F54AF-68B9-4E87-86A7-C782477468A4} URL = http://search.yahoo.com/search?fr=mcafee&p={SearchTerms}
SearchScopes: HKCU - {E03CA5AB-1A81-4FC2-9CF3-0A83A91FFBAF} URL =
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -  No File
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.352.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.254

FireFox:
========
FF ProfilePath: C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default
FF Homepage: https://www.google.com
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.1 - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.1 - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\msi\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\msi\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\msi\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Roomy Bookmarks Toolbar - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\ALone-live@ya.ru [2014-03-22]
FF Extension: Greek - English (US) Spelling dictionary - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\SpellingGR-EN_US@kostaskatsaros [2014-03-22]
FF Extension: F.B. Purity - Cleans Up Facebook - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\fbp@fbpurity.com.xpi [2014-04-16]
FF Extension: Ghostery - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\firefox@ghostery.com.xpi [2014-03-22]
FF Extension: FBChatSeenBlocker - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\jid0-ZnG0xn9spCC5ETo4mjyAuNfuq44@jetpack.xpi [2014-04-21]
FF Extension: Open Bookmarks in New Tab - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\openbookmarkintab@piro.sakura.ne.jp.xpi [2014-04-08]
FF Extension: Troubleshooter - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\troubleshooter@mozilla.org.xpi [2014-04-08]
FF Extension: 1-Click YouTube Video Downloader - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2014-03-22]
FF Extension: Show my Password - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2014-03-22]
FF Extension: Adblock Plus - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-15]
FF Extension: Greasemonkey - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2014-03-22]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-23]
FF HKLM-x32\...\Firefox\Extensions: [hotfix@mozilla.org] - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Extensions\MozillaHotfix
FF HKCU\...\Firefox\Extensions: [hotfix@mozilla.org] - C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Extensions\MozillaHotfix
FF HKCU\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\msi\AppData\Roaming\IDM\idmmzcc5

Chrome:
=======
CHR HomePage: https://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: Ask
CHR DefaultSearchURL: http://www.ask.com/web?q={searchTerms}
CHR DefaultNewTabURL:
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Java™ Platform SE 7 U5) - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Facebook Desktop) - C:\Users\msi\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.50.255) - C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Youtube Video Downloader) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aidmijgopnhoenebampepekbbejfboae [2013-09-09]
CHR Extension: (Google Docs) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-05]
CHR Extension: (Google Drive) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-05]
CHR Extension: (Shortcuts for Google™) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\baohinapilmkigilbbbcccncoljkdpnd [2013-09-09]
CHR Extension: (YouTube) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-05]
CHR Extension: (Adblock Plus) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-09-09]
CHR Extension: (Screen capture, screenshot share/save) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjbjepchlgclmpinlbbeinajphohgfod [2013-09-09]
CHR Extension: (Google Search) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-05]
CHR Extension: (Tampermonkey) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2013-09-06]
CHR Extension: (Google Calendar) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2013-10-14]
CHR Extension: (DoNotTrackMe: Online Privacy Protection) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd [2014-03-01]
CHR Extension: (PanicButton) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2013-09-09]
CHR Extension: (Bookmarks Menu) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffmdedmghpoipeldijkdlcckdpempkdi [2013-09-09]
CHR Extension: (History Button) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fofpnhmbgmmeaialapfddhbhfongoinh [2013-09-09]
CHR Extension: (Vimeo™ Download Videos) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\geeljcibkkackafmeepgadbfgmpjmdeg [2013-09-09]
CHR Extension: (Click&Clean) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghgabhipcejejjmhhchfonmamedcbeod [2013-09-09]
CHR Extension: (New Tab Redirect) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna [2014-04-11]
CHR Extension: (F.B Purity-Clean Up Facebook) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncdlagniojmheiklojdcpdaeepochckl [2014-04-21]
CHR Extension: (Bookmark manager) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgkimgbjgjknccgefmkpepkpngfjkld [2013-09-09]
CHR Extension: (Google Wallet) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-27]
CHR Extension: (Open Bookmark Manager) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\oalceheiomajabalbakkoeiheiokhdbd [2014-04-11]
CHR Extension: (Checker Plus for Gmail™) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\oeopbcgkkoapgobdbedcemjljbihmemj [2013-09-09]
CHR Extension: (Recent Bookmarks) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\olndffocioplakeilhkgenfgdincjlpn [2013-09-09]
CHR Extension: (Click&Clean App) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2013-09-09]
CHR Extension: (Evernote Web Clipper) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc [2013-09-09]
CHR Extension: (Gmail) - C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-05]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]

==================== Services (Whitelisted) =================

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S3 CGVPNCliSrvc; C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2430128 2011-12-06] (mobile concepts GmbH)
S4 LaCieDesktopManagerService; C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe [1379840 2012-10-10] ()
S4 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161264 2013-02-20] (MSI)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
S3 RaMediaServer; C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink)
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S4 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [4298808 2014-02-28] (SoftEther VPN Project at University of Tsukuba, Japan.)
R2 SpotfluxUpdateService; C:\Program Files (x86)\Spotflux\services\SpotfluxUpdateService.exe [28160 2014-01-21] (Microsoft)

==================== Drivers (Whitelisted) ====================

S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-27] (ArcSoft, Inc.)
S3 epmntdrv; C:\windows\system32\epmntdrv.sys [17480 2012-12-21] ()
S3 epmntdrv; C:\windows\SysWOW64\epmntdrv.sys [14920 2012-12-21] ()
S3 EuGdiDrv; C:\windows\system32\EuGdiDrv.sys [9800 2012-12-21] ()
S3 EuGdiDrv; C:\windows\SysWOW64\EuGdiDrv.sys [9160 2012-12-21] ()
S3 MDA_NTDRV; C:\Windows\system32\MDA_NTDRV.sys [21208 2013-02-25] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R3 Neo_VPN-test; C:\Windows\System32\DRIVERS\Neo_0053.sys [28768 2014-02-28] (SoftEther VPN Project at University of Tsukuba, Japan.)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
S3 NTIOLib_1_0_4; C:\Program Files (x86)\msi\Live Update 5\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
S3 pccsmcfd; No ImagePath
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [31032 2012-11-15] (Synaptics Incorporated)
S3 smserial; C:\Windows\System32\DRIVERS\SmSerl64.sys [1227776 2009-06-11] (Motorola Inc.)
R3 tapSF0901; C:\Windows\System32\DRIVERS\tapSF0901.sys [39104 2014-01-21] (Spotflux, Inc.)
S3 WinRing0_1_2_0; No ImagePath
U2 Apple Mobile Device;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-25 02:59 - 2014-04-25 03:00 - 00022944 _____ () C:\Users\msi\Desktop\FRST.txt
2014-04-25 02:58 - 2014-04-25 02:59 - 00000000 ____D () C:\FRST
2014-04-25 02:53 - 2014-04-25 02:53 - 00001643 _____ () C:\Users\msi\Desktop\RKreport[0]_D_04252014_025342.txt
2014-04-25 02:53 - 2014-04-25 02:53 - 00001605 _____ () C:\Users\msi\Desktop\RKreport[0]_S_04252014_025334.txt
2014-04-25 02:47 - 2014-04-25 02:47 - 00004590 _____ () C:\Users\msi\Desktop\RKreport[0]_D_04252014_024747.txt
2014-04-25 02:47 - 2014-04-25 02:47 - 00004533 _____ () C:\Users\msi\Desktop\RKreport[0]_S_04252014_024733.txt
2014-04-25 02:44 - 2014-04-25 02:48 - 00000000 ____D () C:\Users\msi\Desktop\RK_Quarantine
2014-04-25 02:31 - 2014-04-25 02:32 - 02061824 _____ (Farbar) C:\Users\msi\Desktop\FRST64.exe
2014-04-25 02:29 - 2014-04-25 02:43 - 04527616 _____ () C:\Users\msi\Desktop\RogueKillerX64.exe
2014-04-25 02:07 - 2014-04-25 02:35 - 160207020 _____ () C:\Users\msi\Desktop\Xrisis-24-4-2014-anan-oxi-tassos.ts
2014-04-25 01:59 - 2014-04-25 01:59 - 00001224 _____ () C:\Users\msi\Desktop\VideoPad Video Editor.lnk
2014-04-25 01:56 - 2014-04-25 01:56 - 00001272 _____ () C:\Users\Public\Desktop\NCH Software.lnk
2014-04-25 01:56 - 2014-04-25 01:56 - 00001148 _____ () C:\Users\Public\Desktop\VideoPad Video Editor.lnk
2014-04-25 01:56 - 2014-04-25 01:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2014-04-25 01:49 - 2014-04-25 01:51 - 00000000 ____D () C:\Users\msi\Documents\TIXATI
2014-04-25 01:48 - 2014-04-25 01:59 - 00000000 ____D () C:\Users\msi\AppData\Roaming\tixati
2014-04-25 01:47 - 2014-04-25 01:47 - 00000794 _____ () C:\Users\msi\Desktop\Tixati.lnk
2014-04-25 01:47 - 2014-04-25 01:47 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2014-04-25 01:47 - 2014-04-25 01:47 - 00000000 ____D () C:\Program Files\tixati
2014-04-25 01:46 - 2014-04-25 01:47 - 11118992 _____ () C:\Users\msi\Desktop\tixati-1.96-1.win64-install.exe
2014-04-24 20:30 - 2014-04-24 21:10 - 233440000 _____ () C:\Users\msi\Desktop\Xrisis-24-4-2014-anan-oxi-tassos.avi
2014-04-24 20:19 - 2014-04-25 15:32 - 1892970496 _____ () C:\Users\msi\Desktop\000.ts
2014-04-24 17:41 - 2014-04-24 17:41 - 00000358 _____ () C:\Users\msi\Desktop\TASSOS-ΤΑΣΣΟΣ 2004 ΑΝΑΝ ANAN.txt
2014-04-24 13:38 - 2014-04-24 13:39 - 05855234 _____ () C:\Users\msi\Desktop\Diko 24 Apriliou 40sec Final.mp4
2014-04-24 03:58 - 2014-04-24 03:58 - 00251724 _____ () C:\Users\msi\Desktop\MSI-MSI.txt
2014-04-23 23:53 - 2014-04-23 23:53 - 00000321 _____ () C:\Users\msi\Desktop\olympiakos hashtags.txt
2014-04-23 14:25 - 2014-04-23 14:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-23 13:17 - 2014-04-23 13:17 - 00042558 _____ () C:\Users\msi\Desktop\Attachments_2014423.zip
2014-04-22 12:13 - 2014-04-22 12:15 - 11558508 _____ () C:\Users\msi\Desktop\Seferis-BBC.avi
2014-04-22 02:38 - 2014-04-22 02:39 - 01297910 _____ () C:\Users\msi\Desktop\Untitled2.avi
2014-04-22 01:59 - 2014-04-22 03:01 - 00346913 _____ () C:\Users\msi\Desktop\1.vep
2014-04-22 01:46 - 2014-04-22 01:59 - 00061022 _____ () C:\Users\msi\Desktop\seferis-xounda- BBC 1969.avi
2014-04-22 01:32 - 2014-04-22 03:01 - 10594808 _____ () C:\Users\msi\Desktop\Untitled.avi
2014-04-19 16:37 - 2014-04-19 16:37 - 00086213 _____ () C:\Users\msi\Documents\kypros epomenimera2.xcf
2014-04-19 16:37 - 2014-04-19 16:37 - 00016816 _____ () C:\Users\msi\AppData\Local\recently-used.xbel
2014-04-19 16:17 - 2014-04-19 16:29 - 00076826 _____ () C:\Users\msi\Documents\kypros epomenimera.xcf
2014-04-19 16:14 - 2014-04-19 16:14 - 00037946 _____ () C:\Users\msi\Documents\test.xcf
2014-04-19 14:56 - 2014-04-19 14:56 - 01349671 _____ () C:\Users\msi\Desktop\6.pdn
2014-04-19 14:17 - 2014-04-19 14:18 - 00112854 _____ () C:\Users\msi\Desktop\NEW-TVAs_seen_on_TV2.JPE
2014-04-19 14:08 - 2014-04-19 14:09 - 00063513 _____ () C:\Users\msi\Desktop\TV-NEW FOR YOUTUBE.xcf
2014-04-19 13:50 - 2014-04-19 13:50 - 00000000 ____D () C:\Users\msi\AppData\Local\webkit
2014-04-19 13:47 - 2014-04-19 16:37 - 00000000 ____D () C:\Users\msi\AppData\Local\gtk-2.0
2014-04-19 13:47 - 2014-04-19 13:47 - 00000000 ____D () C:\Users\msi\.thumbnails
2014-04-19 13:27 - 2014-04-19 16:38 - 00000000 ____D () C:\Users\msi\.gimp-2.8
2014-04-19 13:27 - 2014-04-19 13:27 - 00000000 ____D () C:\Users\msi\AppData\Local\gegl-0.2
2014-04-19 13:19 - 2014-04-19 13:19 - 00000904 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-04-19 13:18 - 2014-04-19 13:19 - 00000000 ____D () C:\Program Files\GIMP 2
2014-04-19 13:12 - 2014-04-19 13:12 - 00000000 ____D () C:\Users\msi\AppData\Roaming\DesktopIconGoodgame
2014-04-19 13:11 - 2014-04-19 13:11 - 00613200 _____ () C:\Users\msi\Desktop\gimp.exe
2014-04-19 03:34 - 2014-04-19 03:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo!
2014-04-19 03:34 - 2014-04-19 03:34 - 00000000 ____D () C:\Program Files (x86)\Photo!
2014-04-19 03:33 - 2014-04-19 03:33 - 08161357 _____ ( ) C:\Users\msi\Desktop\Photo! Editor.exe
2014-04-19 03:27 - 2014-04-19 03:27 - 00000000 ____D () C:\Users\msi\AppData\Roaming\FreePicResizer
2014-04-19 03:23 - 2014-04-19 03:28 - 00000000 ____D () C:\Users\msi\AppData\Local\Mobogenie
2014-04-19 03:23 - 2014-04-19 03:23 - 00001715 _____ () C:\Users\msi\Desktop\Continue Free Image Converter.lnk
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 ____D () C:\Users\msi\Documents\Mobogenie
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 ____D () C:\Users\msi\AppData\Local\cache
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 ____D () C:\Users\msi\.android
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 _____ () C:\Users\msi\daemonprocess.txt
2014-04-19 02:45 - 2014-04-19 02:45 - 00047524 _____ () C:\Users\msi\Desktop\as seen on tv -new.pdn
2014-04-19 00:20 - 2014-04-19 00:20 - 00002465 _____ () C:\Users\Public\Desktop\FixCleaner.lnk
2014-04-19 00:19 - 2014-04-19 00:27 - 00000000 ____D () C:\Program Files (x86)\FixCleaner
2014-04-18 23:42 - 2014-04-24 04:15 - 00065394 _____ () C:\Users\msi\Desktop\attach.txt
2014-04-18 23:42 - 2014-04-24 04:15 - 00026188 _____ () C:\Users\msi\Desktop\dds.txt
2014-04-18 19:22 - 2014-04-18 19:25 - 47383492 _____ () C:\Users\msi\Desktop\Μετά από 58 χρόνια, τα εγκώμια στην κατεχόμενη Αμμόχωστο-Galanos-17-4-2014.webm
2014-04-18 19:15 - 2014-04-18 19:15 - 00000000 ____D () C:\Users\msi\Desktop\Epitafios-Ammoxostos-18-4-2014
2014-04-18 14:46 - 2014-04-18 14:46 - 00007708 _____ () C:\Users\msi\Desktop\HitmanPro_20140418_1446.log
2014-04-18 03:35 - 2014-04-18 03:35 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-04-18 03:24 - 2014-04-18 03:24 - 00000000 ____D () C:\Windows\ERUNT
2014-04-18 03:13 - 2014-04-18 12:45 - 00000000 ____D () C:\AdwCleaner
2014-04-17 15:30 - 2014-04-17 15:30 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieUserList
2014-04-17 15:30 - 2014-04-17 15:30 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieSiteList
2014-04-16 17:15 - 2014-04-16 17:16 - 24702644 _____ () C:\Users\msi\Desktop\NIKOLAS GIA FOCUS-AKEL&DYSI-16-4-2014.avi
2014-04-16 03:16 - 2014-04-16 15:08 - 00000000 ____D () C:\Users\msi\AppData\Roaming\WinRAR
2014-04-16 03:16 - 2014-04-16 03:16 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-04-16 03:16 - 2014-04-16 03:16 - 00000000 ____D () C:\Program Files\WinRAR
2014-04-16 02:34 - 2014-04-16 02:34 - 00009741 _____ () C:\Users\msi\Desktop\[kickass.to]winrar.5.10.beta.2.2014.pc.eng.torrent
2014-04-15 23:41 - 2014-04-15 23:41 - 42040725 _____ () C:\Users\msi\Desktop\FOROS 2012 -ANDRI & KOKOS.zip
2014-04-15 19:27 - 2014-04-15 19:27 - 00000000 ____D () C:\Users\msi\Desktop\FOROS 2012 -ANDRI & KOKOS
2014-04-15 18:44 - 2014-04-19 14:13 - 00000000 ____D () C:\Users\msi\Desktop\KOKOS+ANTRI TAX FORMS 2013
2014-04-15 18:44 - 2014-04-15 18:44 - 00000000 ____D () C:\Users\msi\Desktop\New folder (2)
2014-04-14 23:56 - 2014-04-15 12:10 - 00000978 _____ () C:\Users\msi\Desktop\Macrorit Disk Partition Expert Free.lnk
2014-04-14 23:56 - 2014-04-14 23:56 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Macrorit Disk Partition Expert Free
2014-04-14 23:56 - 2014-04-14 23:56 - 00000000 ____D () C:\Program Files\Macrorit
2014-04-14 23:47 - 2014-04-14 23:47 - 00000000 ____D () C:\Program Files (x86)\WinASO
2014-04-14 23:42 - 2014-04-14 23:45 - 07558881 _____ () C:\Users\msi\Desktop\mde_setup.zip
2014-04-14 16:48 - 2014-04-14 16:48 - 00058402 _____ () C:\Users\msi\AppData\Roaming\PhotoPad.dmp
2014-04-14 16:11 - 2014-04-14 16:28 - 114962769 _____ () C:\Users\msi\Desktop\Περί απαξίωσης της πολιτικής - αγανάκτησης για την ατιμωρησία - YouTube [360p].webm
2014-04-12 22:52 - 2014-04-12 23:01 - 00000142 _____ () C:\Users\msi\Desktop\hashtags-new.txt
2014-04-12 16:30 - 2014-04-12 16:30 - 00000085 _____ () C:\Users\msi\Desktop\#orakalpis.txt
2014-04-11 01:22 - 2014-04-24 03:23 - 00001084 _____ () C:\Windows\PFRO.log
2014-04-11 01:06 - 2014-04-25 02:37 - 00095484 _____ () C:\Windows\setupact.log
2014-04-11 01:06 - 2014-04-11 01:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-10 17:13 - 2014-04-10 17:13 - 00000171 _____ () C:\Users\msi\Desktop\EU-HSBC.txt
2014-04-10 14:46 - 2014-04-10 14:53 - 39280957 _____ () C:\Users\msi\Desktop\Get Free 10000 of FB Likes, FB Shares, Fan Page LIkes, Like Status .mp4
2014-04-10 12:24 - 2014-03-06 13:21 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-10 12:24 - 2014-03-06 12:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-10 12:24 - 2014-03-06 12:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-10 12:24 - 2014-03-06 12:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-10 12:24 - 2014-03-06 11:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-10 12:24 - 2014-03-06 11:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-10 12:24 - 2014-03-06 11:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-10 12:24 - 2014-03-06 11:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-10 12:24 - 2014-03-06 11:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-10 12:24 - 2014-03-06 11:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-10 12:24 - 2014-03-06 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-10 12:24 - 2014-03-06 11:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-10 12:24 - 2014-03-06 11:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-10 12:24 - 2014-03-06 11:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-10 12:24 - 2014-03-06 11:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-10 12:24 - 2014-03-06 11:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-10 12:24 - 2014-03-06 11:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-10 12:24 - 2014-03-06 11:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-10 12:24 - 2014-03-06 11:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-10 12:24 - 2014-03-06 11:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-10 12:24 - 2014-03-06 11:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-10 12:24 - 2014-03-06 11:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-10 12:24 - 2014-03-06 10:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-10 12:24 - 2014-03-06 10:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-10 12:24 - 2014-03-06 10:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-10 12:24 - 2014-03-06 10:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-10 12:24 - 2014-03-06 10:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-10 12:24 - 2014-03-06 10:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-10 12:24 - 2014-03-06 10:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-10 12:24 - 2014-03-06 10:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-10 12:24 - 2014-03-06 10:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-10 12:24 - 2014-03-06 10:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-10 12:24 - 2014-03-06 10:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-10 12:24 - 2014-03-06 10:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-10 12:24 - 2014-03-06 10:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-10 12:24 - 2014-03-06 10:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-10 12:24 - 2014-03-06 10:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-10 12:24 - 2014-03-06 10:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-10 12:24 - 2014-03-06 09:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-10 12:24 - 2014-03-06 09:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-10 12:24 - 2014-03-06 09:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-10 12:24 - 2014-03-06 09:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-10 12:24 - 2014-03-06 09:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-10 12:24 - 2014-03-06 08:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-10 12:24 - 2014-03-06 08:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-10 12:24 - 2014-03-06 08:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-10 12:24 - 2014-03-06 08:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-10 12:24 - 2014-03-06 08:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-09 21:05 - 2014-04-09 21:05 - 00000000 __SHD () C:\ProgramData\googleupdate
2014-04-09 13:22 - 2014-03-04 12:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 13:22 - 2014-03-04 12:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-09 13:22 - 2014-03-04 12:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-09 13:22 - 2014-03-04 12:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-09 13:22 - 2014-03-04 12:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-09 13:22 - 2014-03-04 12:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-09 13:22 - 2014-03-04 12:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-09 13:22 - 2014-03-04 12:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-09 13:22 - 2014-03-04 12:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-09 13:22 - 2014-03-04 11:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-09 13:22 - 2014-03-04 11:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-09 13:22 - 2014-02-04 05:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 13:22 - 2014-02-04 05:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 13:22 - 2014-02-04 05:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 13:22 - 2014-02-04 05:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 13:22 - 2014-02-04 05:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-09 13:22 - 2014-01-24 05:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-09 02:00 - 2014-04-25 02:49 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-09 02:00 - 2014-04-09 02:00 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-09 02:00 - 2014-04-09 02:00 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-09 02:00 - 2014-04-09 02:00 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-08 20:02 - 2014-04-08 20:02 - 00000442 _____ () C:\Users\msi\Desktop\HSBC-DRAFT.txt
2014-04-07 23:19 - 2014-04-07 23:19 - 00000000 ____D () C:\Users\msi\AppData\Local\Skype
2014-04-07 23:18 - 2014-04-07 23:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-04-07 22:28 - 2014-04-07 22:28 - 00000203 _____ () C:\Users\msi\Desktop\Aberdeen-Scotland jobs.txt
2014-04-07 14:31 - 2014-04-07 14:31 - 00070580 _____ () C:\Users\msi\Desktop\Attachments_201447.zip
2014-04-07 02:17 - 2013-11-26 15:49 - 00888536 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-04-07 02:17 - 2013-11-26 15:49 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-04-07 02:11 - 2014-04-07 02:11 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-04-07 01:59 - 2013-12-10 20:35 - 43342848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-04-07 01:59 - 2013-12-10 20:20 - 03771352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-04-07 01:59 - 2013-12-10 10:17 - 00693385 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-04-07 01:59 - 2013-12-05 20:21 - 00153304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-04-07 01:59 - 2013-12-04 16:27 - 01958616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-04-07 01:59 - 2013-12-02 16:55 - 05681196 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-04-07 01:59 - 2013-11-26 17:26 - 00618200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-04-07 01:59 - 2013-11-25 15:59 - 02810072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-04-07 01:59 - 2013-11-25 15:59 - 02588888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-04-07 01:59 - 2013-11-14 15:49 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-04-07 01:59 - 2013-11-13 18:52 - 01013504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-04-07 01:59 - 2013-11-13 18:41 - 14153984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-04-07 01:59 - 2013-11-13 18:10 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-04-07 01:59 - 2013-11-13 18:07 - 03899648 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll
2014-04-07 01:59 - 2013-11-13 18:07 - 02036992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-04-07 01:59 - 2013-11-13 17:52 - 01922304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-04-07 01:59 - 2013-11-13 17:52 - 01345280 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2014-04-07 01:59 - 2013-11-05 11:22 - 00912184 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-04-07 01:59 - 2013-11-05 11:19 - 05753112 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2014-04-07 01:59 - 2013-10-28 17:29 - 01021656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-04-07 01:59 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-04-07 01:59 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-04-07 01:59 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-04-07 01:59 - 2013-10-09 20:13 - 01286400 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2014-04-07 01:59 - 2013-10-09 20:12 - 27644160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll
2014-04-07 01:59 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2014-04-07 01:59 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2014-04-07 01:59 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2014-04-07 01:59 - 2013-09-10 04:02 - 06217904 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2014-04-07 01:59 - 2013-09-10 04:02 - 00313520 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2014-04-07 01:59 - 2013-09-10 04:01 - 01938608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2014-04-07 01:59 - 2013-09-10 04:01 - 00260272 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2014-04-07 01:59 - 2013-08-24 03:14 - 01014016 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2014-04-07 01:59 - 2013-08-24 03:14 - 00897792 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2014-04-07 01:59 - 2013-08-24 03:14 - 00722688 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2014-04-07 01:59 - 2013-08-24 03:14 - 00244480 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2014-04-07 01:59 - 2013-08-20 17:37 - 00605496 _____ () C:\Windows\system32\audioLibVc.dll
2014-04-07 01:59 - 2013-08-14 16:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-04-07 01:59 - 2013-08-14 16:35 - 01084160 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2014-04-07 01:59 - 2013-08-14 16:35 - 00907008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-04-07 01:59 - 2013-08-14 16:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-04-07 01:59 - 2013-08-05 18:11 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-04-07 01:59 - 2013-07-23 15:39 - 00790272 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll
2014-04-07 01:59 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll
2014-04-07 01:59 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll
2014-04-07 01:59 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll
2014-04-07 01:28 - 2014-04-07 01:28 - 00000000 ____D () C:\ProgramData\ATI
2014-04-07 01:25 - 2014-04-07 01:25 - 00002118 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Switchable Graphics.lnk
2014-04-07 01:25 - 2014-04-07 01:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-04-07 01:18 - 2010-04-28 17:18 - 00002110 _____ () C:\Windows\SysWOW64\atipblup.dat
2014-04-07 01:18 - 2010-04-28 17:18 - 00002110 _____ () C:\Windows\system32\atipblup.dat
2014-04-07 01:06 - 2014-04-07 01:06 - 00000000 ____D () C:\Program Files\ATI
2014-04-07 00:56 - 2014-04-07 00:56 - 00009741 _____ () C:\Windows\SysWOW64\CCCInstall_201404070056139119.log
2014-04-07 00:52 - 2010-06-09 01:54 - 06790656 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-04-07 00:52 - 2010-06-08 23:35 - 19735552 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-04-07 00:52 - 2010-06-08 23:15 - 15024128 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-04-07 00:52 - 2010-06-08 22:52 - 00455680 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-04-07 00:52 - 2010-06-08 22:52 - 00446464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-04-07 00:52 - 2010-06-08 22:52 - 00203264 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-04-07 00:52 - 2010-06-08 22:51 - 00421376 _____ (ATI Technologies, Inc.) C:\Windows\system32\atipdl64.dll
2014-04-07 00:52 - 2010-06-08 22:51 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-04-07 00:52 - 2010-06-08 22:50 - 00356352 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\atipdlxx.dll
2014-04-07 00:52 - 2010-06-08 22:50 - 00278528 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\Oemdspif.dll
2014-04-07 00:52 - 2010-06-08 22:50 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2014-04-07 00:52 - 2010-06-08 22:50 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2014-04-07 00:52 - 2010-06-08 22:50 - 00012288 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-04-07 00:52 - 2010-06-08 22:48 - 03611648 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-04-07 00:52 - 2010-06-08 22:31 - 03788288 _____ (ATI Technologies Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-04-07 00:52 - 2010-06-08 22:26 - 04902400 _____ (ATI Technologies Inc. ) C:\Windows\system32\atiumd64.dll
2014-04-07 00:52 - 2010-06-08 22:21 - 00053248 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-04-07 00:52 - 2010-06-08 22:21 - 00043008 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-04-07 00:52 - 2010-06-08 22:20 - 05194752 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-04-07 00:52 - 2010-06-08 22:20 - 00053248 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-04-07 00:52 - 2010-06-08 22:20 - 00039936 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-04-07 00:52 - 2010-06-08 22:19 - 04022272 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-04-07 00:52 - 2010-06-08 22:19 - 00237568 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-04-07 00:52 - 2010-06-08 22:19 - 00221184 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-04-07 00:52 - 2010-06-08 22:19 - 00016384 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-04-07 00:52 - 2010-06-08 22:19 - 00015360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-04-07 00:52 - 2010-06-08 22:19 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-04-07 00:52 - 2010-06-08 22:19 - 00012800 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-04-07 00:52 - 2010-06-08 22:18 - 00053248 _____ (ATI Technologies Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-04-07 00:52 - 2010-06-08 22:18 - 00028160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-04-07 00:52 - 2010-06-08 22:18 - 00028160 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-04-07 00:52 - 2010-06-08 22:18 - 00020480 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 15012864 _____ (Intel Corporation) C:\Windows\system32\ig4icd64.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 11034624 _____ (Intel Corporation) C:\Windows\SysWOW64\ig4icd32.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 10322848 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdpmd64.sys
2014-04-07 00:52 - 2010-06-08 22:10 - 10322848 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2014-04-07 00:52 - 2010-06-08 22:10 - 09014784 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 06534144 _____ (Intel Corporation) C:\Windows\system32\igdumd64.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 04960256 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 04653056 _____ (Intel Corporation) C:\Windows\system32\igd10umd64.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 04347904 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10umd32.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 03152920 _____ (Intel Corporation) C:\Windows\system32\GfxUI.exe
2014-04-07 00:52 - 2010-06-08 22:10 - 00870560 _____ () C:\Windows\SysWOW64\igkrng575.bin
2014-04-07 00:52 - 2010-06-08 22:10 - 00870560 _____ () C:\Windows\system32\igkrng575.bin
2014-04-07 00:52 - 2010-06-08 22:10 - 00571904 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdx32.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 00413720 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe
2014-04-07 00:52 - 2010-06-08 22:10 - 00391192 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe
2014-04-07 00:52 - 2010-06-08 22:10 - 00379392 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00286208 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285696 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00285184 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00284672 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00284672 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00283136 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00282624 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00281600 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00281600 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc
2014-04-07 00:52 - 2010-06-08 22:10 - 00248320 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 00227328 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 00223768 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2014-04-07 00:52 - 2010-06-08 22:10 - 00187908 _____ () C:\Windows\system32\Gfxres.th-TH.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00176774 _____ () C:\Windows\system32\Gfxres.el-GR.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00166424 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe
2014-04-07 00:52 - 2010-06-08 22:10 - 00163748 _____ () C:\Windows\system32\Gfxres.ru-RU.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00152600 _____ () C:\Windows\system32\difx64.exe
2014-04-07 00:52 - 2010-06-08 22:10 - 00142336 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 00138275 _____ () C:\Windows\system32\Gfxres.ar-SA.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00134776 _____ () C:\Windows\system32\Gfxres.ja-JP.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00132114 _____ () C:\Windows\system32\Gfxres.he-IL.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00131072 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl
2014-04-07 00:52 - 2010-06-08 22:10 - 00127868 _____ () C:\Windows\SysWOW64\igcompkrng575.bin
2014-04-07 00:52 - 2010-06-08 22:10 - 00127868 _____ () C:\Windows\system32\igcompkrng575.bin
2014-04-07 00:52 - 2010-06-08 22:10 - 00123921 _____ () C:\Windows\system32\Gfxres.it-IT.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00121602 _____ () C:\Windows\system32\Gfxres.ko-KR.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00121297 _____ () C:\Windows\system32\Gfxres.es-ES.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00121074 _____ () C:\Windows\system32\Gfxres.de-DE.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00119808 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 00119539 _____ () C:\Windows\system32\Gfxres.tr-TR.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00119155 _____ () C:\Windows\system32\Gfxres.fr-FR.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00118734 _____ () C:\Windows\system32\Gfxres.pt-BR.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00117972 _____ () C:\Windows\system32\Gfxres.hu-HU.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00117955 _____ () C:\Windows\system32\Gfxres.nl-NL.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00117715 _____ () C:\Windows\system32\Gfxres.sv-SE.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00117432 _____ () C:\Windows\system32\Gfxres.pt-PT.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00117128 _____ () C:\Windows\system32\Gfxres.cs-CZ.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00117051 _____ () C:\Windows\system32\Gfxres.fi-FI.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00116783 _____ () C:\Windows\system32\Gfxres.pl-PL.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00116423 _____ () C:\Windows\system32\Gfxres.sk-SK.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00113207 _____ () C:\Windows\system32\Gfxres.nb-NO.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00112728 _____ () C:\Windows\system32\Gfxres.sl-SI.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00112616 _____ () C:\Windows\system32\Gfxres.da-DK.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00108579 _____ () C:\Windows\system32\Gfxres.en-US.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00104636 _____ () C:\Windows\SysWOW64\igfcg575m.bin
2014-04-07 00:52 - 2010-06-08 22:10 - 00104636 _____ () C:\Windows\system32\igfcg575m.bin
2014-04-07 00:52 - 2010-06-08 22:10 - 00102407 _____ () C:\Windows\system32\Gfxres.zh-TW.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00101246 _____ () C:\Windows\system32\Gfxres.zh-CN.resources
2014-04-07 00:52 - 2010-06-08 22:10 - 00027648 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2014-04-07 00:52 - 2010-06-08 22:10 - 00005376 _____ () C:\Windows\system32\iglhxs64.vp
2014-04-07 00:52 - 2010-06-08 22:10 - 00004096 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll
2014-04-07 00:52 - 2010-06-08 22:04 - 02738176 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-04-07 00:52 - 2010-06-08 22:02 - 00531632 _____ () C:\Windows\system32\atiumd6a.cap
2014-04-07 00:52 - 2010-06-08 21:59 - 03015680 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-04-07 00:52 - 2010-06-08 21:58 - 00531632 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-04-07 00:52 - 2010-06-08 21:48 - 00053248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-04-07 00:52 - 2010-06-08 21:48 - 00053248 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-04-07 00:52 - 2010-06-08 21:48 - 00052224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-04-07 00:52 - 2010-06-08 21:48 - 00052224 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-04-07 00:52 - 2010-04-28 17:17 - 00002110 _____ () C:\Windows\SysWOW64\atipblag.dat
2014-04-07 00:52 - 2010-04-28 17:17 - 00002110 _____ () C:\Windows\system32\atipblag.dat
2014-04-07 00:52 - 2010-04-23 14:55 - 00021290 _____ () C:\Windows\atiogl.xml
2014-04-07 00:52 - 2010-03-25 11:56 - 00203331 _____ () C:\Windows\system32\atiicdxx.dat
2014-04-07 00:39 - 2014-04-07 00:45 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-04-07 00:39 - 2010-06-08 22:10 - 00511000 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe
2014-04-07 00:37 - 2014-04-07 00:37 - 00016920 _____ () C:\Windows\SysWOW64\CCCInstall_201404070037205600.log
2014-04-07 00:23 - 2014-04-07 00:23 - 10104363 _____ () C:\Users\msi\Desktop\LiveUpdate.zip
2014-04-07 00:12 - 2014-04-07 00:12 - 00003270 _____ () C:\Windows\System32\Tasks\{7CCA6E1B-E7E1-41FF-B6E2-BE2A0158B4F9}
2014-04-07 00:11 - 2014-04-07 00:11 - 00000000 ____D () C:\Users\msi\AppData\Roaming\ATI
2014-04-07 00:11 - 2014-04-07 00:11 - 00000000 ____D () C:\Users\msi\AppData\Local\ATI
2014-04-06 20:26 - 2014-04-06 20:26 - 00000000 ____D () C:\ProgramData\DriverReviver.exe
2014-04-06 20:25 - 2014-04-06 20:25 - 00000000 ____D () C:\ProgramData\ReviverSoft
2014-04-06 20:25 - 2014-04-06 20:25 - 00000000 ____D () C:\Program Files\ReviverSoft
2014-04-06 19:20 - 2014-04-06 19:20 - 00121840 _____ () C:\Users\msi\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-06 18:49 - 2014-04-06 18:49 - 00000000 ____D () C:\Rbackup
2014-04-06 16:23 - 2014-04-06 16:23 - 00769521 _____ () C:\Users\msi\Documents\▶ Ο Τάσσος μιλά για τον ελληνισμό της Κύπρου - YouTube [360p].webm
2014-04-05 23:03 - 2014-04-17 16:01 - 00001483 _____ () C:\Users\msi\Desktop\pass.txt
2014-04-05 17:20 - 2014-04-05 17:20 - 00000000 ____D () C:\Users\msi\AppData\Roaming\library_dir
2014-04-05 16:42 - 2014-04-05 16:42 - 00000000 __SHD () C:\found.000
2014-04-05 16:17 - 2014-04-06 23:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
2014-04-05 16:17 - 2014-04-06 23:16 - 00000000 ____D () C:\Program Files (x86)\DriverTuner
2014-04-05 15:04 - 2014-04-20 23:55 - 00000000 ____D () C:\Users\msi\Desktop\HSBC & Barclays-CHAT -NEW
2014-04-05 14:58 - 2014-04-15 12:13 - 00000000 ____D () C:\Users\msi\Desktop\APRIL 2014
2014-04-05 14:54 - 2014-04-05 14:55 - 00000000 ____D () C:\Users\msi\Desktop\QUOTES
2014-04-04 16:16 - 2014-04-11 01:02 - 00000000 ____D () C:\Windows\Minidump
2014-03-29 16:03 - 2014-03-29 16:03 - 00528694 _____ () C:\Users\msi\Downloads\168192-untitled.bmp
2014-03-28 01:42 - 2014-03-28 01:42 - 00000000 ____D () C:\Users\msi\Desktop\Log

==================== One Month Modified Files and Folders =======

2014-04-25 15:32 - 2014-04-24 20:19 - 1892970496 _____ () C:\Users\msi\Desktop\000.ts
2014-04-25 03:00 - 2014-04-25 02:59 - 00022944 _____ () C:\Users\msi\Desktop\FRST.txt
2014-04-25 03:00 - 2013-04-16 02:40 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001UA.job
2014-04-25 02:59 - 2014-04-25 02:58 - 00000000 ____D () C:\FRST
2014-04-25 02:53 - 2014-04-25 02:53 - 00001643 _____ () C:\Users\msi\Desktop\RKreport[0]_D_04252014_025342.txt
2014-04-25 02:53 - 2014-04-25 02:53 - 00001605 _____ () C:\Users\msi\Desktop\RKreport[0]_S_04252014_025334.txt
2014-04-25 02:52 - 2012-05-03 20:32 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-25 02:49 - 2014-04-09 02:00 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-25 02:48 - 2014-04-25 02:44 - 00000000 ____D () C:\Users\msi\Desktop\RK_Quarantine
2014-04-25 02:48 - 2013-09-24 03:04 - 01224293 _____ () C:\Windows\WindowsUpdate.log
2014-04-25 02:47 - 2014-04-25 02:47 - 00004590 _____ () C:\Users\msi\Desktop\RKreport[0]_D_04252014_024747.txt
2014-04-25 02:47 - 2014-04-25 02:47 - 00004533 _____ () C:\Users\msi\Desktop\RKreport[0]_S_04252014_024733.txt
2014-04-25 02:45 - 2009-07-14 07:45 - 00022784 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-25 02:45 - 2009-07-14 07:45 - 00022784 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-25 02:43 - 2014-04-25 02:29 - 04527616 _____ () C:\Users\msi\Desktop\RogueKillerX64.exe
2014-04-25 02:41 - 2012-04-11 11:31 - 00000920 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001UA.job
2014-04-25 02:41 - 2012-04-11 11:31 - 00000898 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001Core.job
2014-04-25 02:38 - 2012-05-03 20:32 - 00000888 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-25 02:37 - 2014-04-11 01:06 - 00095484 _____ () C:\Windows\setupact.log
2014-04-25 02:37 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-25 02:36 - 2013-08-28 12:26 - 00000000 ____D () C:\Users\msi\AppData\Roaming\vlc
2014-04-25 02:35 - 2014-04-25 02:07 - 160207020 _____ () C:\Users\msi\Desktop\Xrisis-24-4-2014-anan-oxi-tassos.ts
2014-04-25 02:32 - 2014-04-25 02:31 - 02061824 _____ (Farbar) C:\Users\msi\Desktop\FRST64.exe
2014-04-25 01:59 - 2014-04-25 01:59 - 00001224 _____ () C:\Users\msi\Desktop\VideoPad Video Editor.lnk
2014-04-25 01:59 - 2014-04-25 01:48 - 00000000 ____D () C:\Users\msi\AppData\Roaming\tixati
2014-04-25 01:58 - 2012-02-05 23:38 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-04-25 01:56 - 2014-04-25 01:56 - 00001272 _____ () C:\Users\Public\Desktop\NCH Software.lnk
2014-04-25 01:56 - 2014-04-25 01:56 - 00001148 _____ () C:\Users\Public\Desktop\VideoPad Video Editor.lnk
2014-04-25 01:56 - 2014-04-25 01:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2014-04-25 01:56 - 2012-02-24 13:23 - 00001160 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad Video Editor.lnk
2014-04-25 01:51 - 2014-04-25 01:49 - 00000000 ____D () C:\Users\msi\Documents\TIXATI
2014-04-25 01:47 - 2014-04-25 01:47 - 00000794 _____ () C:\Users\msi\Desktop\Tixati.lnk
2014-04-25 01:47 - 2014-04-25 01:47 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2014-04-25 01:47 - 2014-04-25 01:47 - 00000000 ____D () C:\Program Files\tixati
2014-04-25 01:47 - 2014-04-25 01:46 - 11118992 _____ () C:\Users\msi\Desktop\tixati-1.96-1.win64-install.exe
2014-04-25 01:16 - 2012-02-24 15:03 - 00003914 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6257FB56-A11C-4B65-8415-E47116489E15}
2014-04-24 21:10 - 2014-04-24 20:30 - 233440000 _____ () C:\Users\msi\Desktop\Xrisis-24-4-2014-anan-oxi-tassos.avi
2014-04-24 20:21 - 2009-07-14 08:13 - 00786854 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-24 17:41 - 2014-04-24 17:41 - 00000358 _____ () C:\Users\msi\Desktop\TASSOS-ΤΑΣΣΟΣ 2004 ΑΝΑΝ ANAN.txt
2014-04-24 17:00 - 2013-04-16 02:40 - 00000848 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001Core.job
2014-04-24 16:55 - 2012-02-16 16:26 - 00000000 ____D () C:\Users\msi\AppData\Local\Paint.NET
2014-04-24 13:39 - 2014-04-24 13:38 - 05855234 _____ () C:\Users\msi\Desktop\Diko 24 Apriliou 40sec Final.mp4
2014-04-24 04:54 - 2013-03-01 17:04 - 00000000 ____D () C:\Users\msi\Documents\FFOutput
2014-04-24 04:42 - 2013-01-25 23:42 - 00000000 ____D () C:\Users\msi\Documents\hidownload
2014-04-24 04:15 - 2014-04-18 23:42 - 00065394 _____ () C:\Users\msi\Desktop\attach.txt
2014-04-24 04:15 - 2014-04-18 23:42 - 00026188 _____ () C:\Users\msi\Desktop\dds.txt
2014-04-24 03:58 - 2014-04-24 03:58 - 00251724 _____ () C:\Users\msi\Desktop\MSI-MSI.txt
2014-04-24 03:23 - 2014-04-11 01:22 - 00001084 _____ () C:\Windows\PFRO.log
2014-04-24 03:23 - 2014-03-22 22:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-23 23:53 - 2014-04-23 23:53 - 00000321 _____ () C:\Users\msi\Desktop\olympiakos hashtags.txt
2014-04-23 14:30 - 2014-03-11 22:15 - 00000000 ____D () C:\Program Files (x86)\Replay Video Capture 7
2014-04-23 14:25 - 2014-04-23 14:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-23 13:17 - 2014-04-23 13:17 - 00042558 _____ () C:\Users\msi\Desktop\Attachments_2014423.zip
2014-04-22 22:16 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-22 12:15 - 2014-04-22 12:13 - 11558508 _____ () C:\Users\msi\Desktop\Seferis-BBC.avi
2014-04-22 03:01 - 2014-04-22 01:59 - 00346913 _____ () C:\Users\msi\Desktop\1.vep
2014-04-22 03:01 - 2014-04-22 01:32 - 10594808 _____ () C:\Users\msi\Desktop\Untitled.avi
2014-04-22 02:39 - 2014-04-22 02:38 - 01297910 _____ () C:\Users\msi\Desktop\Untitled2.avi
2014-04-22 01:59 - 2014-04-22 01:46 - 00061022 _____ () C:\Users\msi\Desktop\seferis-xounda- BBC 1969.avi
2014-04-20 23:55 - 2014-04-05 15:04 - 00000000 ____D () C:\Users\msi\Desktop\HSBC & Barclays-CHAT -NEW
2014-04-20 01:25 - 2012-06-05 22:13 - 00000000 ____D () C:\Users\msi\Documents\ΤΑΣΣΟΣ ΠΑΠΑΔΟΠΟΥΛΟΣ - TASSOS - PAPA - Papadopoulos - Τάσσος
2014-04-19 16:38 - 2014-04-19 13:27 - 00000000 ____D () C:\Users\msi\.gimp-2.8
2014-04-19 16:37 - 2014-04-19 16:37 - 00086213 _____ () C:\Users\msi\Documents\kypros epomenimera2.xcf
2014-04-19 16:37 - 2014-04-19 16:37 - 00016816 _____ () C:\Users\msi\AppData\Local\recently-used.xbel
2014-04-19 16:37 - 2014-04-19 13:47 - 00000000 ____D () C:\Users\msi\AppData\Local\gtk-2.0
2014-04-19 16:29 - 2014-04-19 16:17 - 00076826 _____ () C:\Users\msi\Documents\kypros epomenimera.xcf
2014-04-19 16:14 - 2014-04-19 16:14 - 00037946 _____ () C:\Users\msi\Documents\test.xcf
2014-04-19 14:56 - 2014-04-19 14:56 - 01349671 _____ () C:\Users\msi\Desktop\6.pdn
2014-04-19 14:18 - 2014-04-19 14:17 - 00112854 _____ () C:\Users\msi\Desktop\NEW-TVAs_seen_on_TV2.JPE
2014-04-19 14:13 - 2014-04-15 18:44 - 00000000 ____D () C:\Users\msi\Desktop\KOKOS+ANTRI TAX FORMS 2013
2014-04-19 14:09 - 2014-04-19 14:08 - 00063513 _____ () C:\Users\msi\Desktop\TV-NEW FOR YOUTUBE.xcf
2014-04-19 13:50 - 2014-04-19 13:50 - 00000000 ____D () C:\Users\msi\AppData\Local\webkit
2014-04-19 13:47 - 2014-04-19 13:47 - 00000000 ____D () C:\Users\msi\.thumbnails
2014-04-19 13:47 - 2013-09-24 01:58 - 00000000 ____D () C:\Users\msi
2014-04-19 13:27 - 2014-04-19 13:27 - 00000000 ____D () C:\Users\msi\AppData\Local\gegl-0.2
2014-04-19 13:19 - 2014-04-19 13:19 - 00000904 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
2014-04-19 13:19 - 2014-04-19 13:18 - 00000000 ____D () C:\Program Files\GIMP 2
2014-04-19 13:12 - 2014-04-19 13:12 - 00000000 ____D () C:\Users\msi\AppData\Roaming\DesktopIconGoodgame
2014-04-19 13:11 - 2014-04-19 13:11 - 00613200 _____ () C:\Users\msi\Desktop\gimp.exe
2014-04-19 03:34 - 2014-04-19 03:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo!
2014-04-19 03:34 - 2014-04-19 03:34 - 00000000 ____D () C:\Program Files (x86)\Photo!
2014-04-19 03:33 - 2014-04-19 03:33 - 08161357 _____ ( ) C:\Users\msi\Desktop\Photo! Editor.exe
2014-04-19 03:28 - 2014-04-19 03:23 - 00000000 ____D () C:\Users\msi\AppData\Local\Mobogenie
2014-04-19 03:27 - 2014-04-19 03:27 - 00000000 ____D () C:\Users\msi\AppData\Roaming\FreePicResizer
2014-04-19 03:23 - 2014-04-19 03:23 - 00001715 _____ () C:\Users\msi\Desktop\Continue Free Image Converter.lnk
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 ____D () C:\Users\msi\Documents\Mobogenie
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 ____D () C:\Users\msi\AppData\Local\cache
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 ____D () C:\Users\msi\.android
2014-04-19 03:23 - 2014-04-19 03:23 - 00000000 _____ () C:\Users\msi\daemonprocess.txt
2014-04-19 03:17 - 2012-01-31 01:11 - 00000000 ____D () C:\Users\msi\AppData\Local\CrashDumps
2014-04-19 03:03 - 2013-11-11 01:48 - 00000000 ____D () C:\Users\msi\Desktop\Originals
2014-04-19 03:02 - 2012-05-21 12:44 - 00038912 ____H () C:\Users\msi\Desktop\photothumb.db
2014-04-19 02:45 - 2014-04-19 02:45 - 00047524 _____ () C:\Users\msi\Desktop\as seen on tv -new.pdn
2014-04-19 00:28 - 2014-03-03 23:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FixCleaner
2014-04-19 00:27 - 2014-04-19 00:19 - 00000000 ____D () C:\Program Files (x86)\FixCleaner
2014-04-19 00:27 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\registration
2014-04-19 00:20 - 2014-04-19 00:20 - 00002465 _____ () C:\Users\Public\Desktop\FixCleaner.lnk
2014-04-18 19:25 - 2014-04-18 19:22 - 47383492 _____ () C:\Users\msi\Desktop\Μετά από 58 χρόνια, τα εγκώμια στην κατεχόμενη Αμμόχωστο-Galanos-17-4-2014.webm
2014-04-18 19:15 - 2014-04-18 19:15 - 00000000 ____D () C:\Users\msi\Desktop\Epitafios-Ammoxostos-18-4-2014
2014-04-18 14:46 - 2014-04-18 14:46 - 00007708 _____ () C:\Users\msi\Desktop\HitmanPro_20140418_1446.log
2014-04-18 12:45 - 2014-04-18 03:13 - 00000000 ____D () C:\AdwCleaner
2014-04-18 07:02 - 2014-03-21 02:04 - 00000000 ____D () C:\Program Files (x86)\ophcrack
2014-04-18 07:02 - 2014-03-20 23:42 - 00000000 ____D () C:\Users\msi\AppData\Local\Viber
2014-04-18 07:02 - 2012-12-06 23:57 - 00000000 ____D () C:\Users\msi\AppData\Local\CFSoft
2014-04-18 07:02 - 2012-11-28 03:18 - 00000000 ____D () C:\Users\msi\AppData\Roaming\WinLive
2014-04-18 03:35 - 2014-04-18 03:35 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-04-18 03:24 - 2014-04-18 03:24 - 00000000 ____D () C:\Windows\ERUNT
2014-04-17 16:45 - 2014-02-28 02:27 - 00001987 _____ () C:\Users\Public\Desktop\SoftEther VPN Client Manager.lnk
2014-04-17 16:45 - 2013-12-13 13:40 - 00001131 _____ () C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2014-04-17 16:45 - 2012-02-05 23:31 - 00000876 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-17 16:01 - 2014-04-05 23:03 - 00001483 _____ () C:\Users\msi\Desktop\pass.txt
2014-04-17 15:30 - 2014-04-17 15:30 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieUserList
2014-04-17 15:30 - 2014-04-17 15:30 - 00000000 __SHD () C:\Users\msi\AppData\Local\EmieSiteList
2014-04-17 12:53 - 2013-10-31 01:15 - 00000212 _____ () C:\Windows\system32\.crusader
2014-04-16 22:01 - 2012-10-26 17:32 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-04-16 17:16 - 2014-04-16 17:15 - 24702644 _____ () C:\Users\msi\Desktop\NIKOLAS GIA FOCUS-AKEL&DYSI-16-4-2014.avi
2014-04-16 16:02 - 2013-12-18 04:21 - 00000000 ____D () C:\Users\msi\Desktop\KLEOV
2014-04-16 15:08 - 2014-04-16 03:16 - 00000000 ____D () C:\Users\msi\AppData\Roaming\WinRAR
2014-04-16 03:16 - 2014-04-16 03:16 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-04-16 03:16 - 2014-04-16 03:16 - 00000000 ____D () C:\Program Files\WinRAR
2014-04-16 03:16 - 2010-06-12 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-04-16 03:15 - 2014-03-07 01:43 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Azureus
2014-04-16 02:34 - 2014-04-16 02:34 - 00009741 _____ () C:\Users\msi\Desktop\[kickass.to]winrar.5.10.beta.2.2014.pc.eng.torrent
2014-04-15 23:41 - 2014-04-15 23:41 - 42040725 _____ () C:\Users\msi\Desktop\FOROS 2012 -ANDRI & KOKOS.zip
2014-04-15 22:41 - 2014-03-20 15:18 - 00000438 _____ () C:\Users\msi\advanced_ip_scanner_MAC.bin
2014-04-15 22:20 - 2014-03-21 00:22 - 00000000 ____D () C:\Users\msi\.zenmap
2014-04-15 19:27 - 2014-04-15 19:27 - 00000000 ____D () C:\Users\msi\Desktop\FOROS 2012 -ANDRI & KOKOS
2014-04-15 18:44 - 2014-04-15 18:44 - 00000000 ____D () C:\Users\msi\Desktop\New folder (2)
2014-04-15 12:13 - 2014-04-05 14:58 - 00000000 ____D () C:\Users\msi\Desktop\APRIL 2014
2014-04-15 12:10 - 2014-04-14 23:56 - 00000978 _____ () C:\Users\msi\Desktop\Macrorit Disk Partition Expert Free.lnk
2014-04-14 23:56 - 2014-04-14 23:56 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Macrorit Disk Partition Expert Free
2014-04-14 23:56 - 2014-04-14 23:56 - 00000000 ____D () C:\Program Files\Macrorit
2014-04-14 23:47 - 2014-04-14 23:47 - 00000000 ____D () C:\Program Files (x86)\WinASO
2014-04-14 23:46 - 2012-06-25 15:15 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-14 23:45 - 2014-04-14 23:42 - 07558881 _____ () C:\Users\msi\Desktop\mde_setup.zip
2014-04-14 16:48 - 2014-04-14 16:48 - 00058402 _____ () C:\Users\msi\AppData\Roaming\PhotoPad.dmp
2014-04-14 16:28 - 2014-04-14 16:11 - 114962769 _____ () C:\Users\msi\Desktop\Περί απαξίωσης της πολιτικής - αγανάκτησης για την ατιμωρησία - YouTube [360p].webm
2014-04-13 17:58 - 2014-01-10 16:20 - 00000000 ____D () C:\Users\msi\Desktop\New folder-2
2014-04-12 23:01 - 2014-04-12 22:52 - 00000142 _____ () C:\Users\msi\Desktop\hashtags-new.txt
2014-04-12 16:30 - 2014-04-12 16:30 - 00000085 _____ () C:\Users\msi\Desktop\#orakalpis.txt
2014-04-11 01:17 - 2012-10-25 19:38 - 00000000 ___RD () C:\Users\msi\Desktop\PROGRAMS SHORTCUT
2014-04-11 01:06 - 2014-04-11 01:06 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-11 01:02 - 2014-04-04 16:16 - 00000000 ____D () C:\Windows\Minidump
2014-04-11 01:01 - 2012-02-05 23:31 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-10 23:06 - 2014-02-18 03:13 - 00000000 ____D () C:\Program Files (x86)\RAR Password Unlocker
2014-04-10 17:53 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\rescache
2014-04-10 17:13 - 2014-04-10 17:13 - 00000171 _____ () C:\Users\msi\Desktop\EU-HSBC.txt
2014-04-10 14:53 - 2014-04-10 14:46 - 39280957 _____ () C:\Users\msi\Desktop\Get Free 10000 of FB Likes, FB Shares, Fan Page LIkes, Like Status .mp4
2014-04-10 12:27 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-10 03:43 - 2013-08-10 22:33 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 21:05 - 2014-04-09 21:05 - 00000000 __SHD () C:\ProgramData\googleupdate
2014-04-09 12:07 - 2014-03-06 17:17 - 00001167 _____ () C:\Users\msi\Desktop\FB-GROUPS-with.txt
2014-04-09 11:29 - 2009-07-14 06:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-09 02:00 - 2014-04-09 02:00 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-09 02:00 - 2014-04-09 02:00 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-09 02:00 - 2014-04-09 02:00 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-09 01:53 - 2012-01-31 01:11 - 00000000 ____D () C:\Users\msi\AppData\Local\Adobe
2014-04-08 20:02 - 2014-04-08 20:02 - 00000442 _____ () C:\Users\msi\Desktop\HSBC-DRAFT.txt
2014-04-07 23:50 - 2012-10-26 17:32 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Skype
2014-04-07 23:19 - 2014-04-07 23:19 - 00000000 ____D () C:\Users\msi\AppData\Local\Skype
2014-04-07 23:19 - 2014-04-07 23:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-04-07 23:19 - 2012-10-26 17:32 - 00000000 ____D () C:\ProgramData\Skype
2014-04-07 22:28 - 2014-04-07 22:28 - 00000203 _____ () C:\Users\msi\Desktop\Aberdeen-Scotland jobs.txt
2014-04-07 14:31 - 2014-04-07 14:31 - 00070580 _____ () C:\Users\msi\Desktop\Attachments_201447.zip
2014-04-07 14:03 - 2013-10-27 00:14 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-07 02:17 - 2010-06-12 19:15 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-04-07 02:11 - 2014-04-07 02:11 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2014-04-07 02:10 - 2013-09-24 01:55 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-04-07 01:28 - 2014-04-07 01:28 - 00000000 ____D () C:\ProgramData\ATI
2014-04-07 01:25 - 2014-04-07 01:25 - 00002118 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Switchable Graphics.lnk
2014-04-07 01:25 - 2014-04-07 01:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-04-07 01:06 - 2014-04-07 01:06 - 00000000 ____D () C:\Program Files\ATI
2014-04-07 00:56 - 2014-04-07 00:56 - 00009741 _____ () C:\Windows\SysWOW64\CCCInstall_201404070056139119.log
2014-04-07 00:51 - 2012-02-19 23:26 - 00000000 ____D () C:\AMD
2014-04-07 00:45 - 2014-04-07 00:39 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-04-07 00:44 - 2012-02-19 21:16 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-04-07 00:37 - 2014-04-07 00:37 - 00016920 _____ () C:\Windows\SysWOW64\CCCInstall_201404070037205600.log
2014-04-07 00:23 - 2014-04-07 00:23 - 10104363 _____ () C:\Users\msi\Desktop\LiveUpdate.zip
2014-04-07 00:12 - 2014-04-07 00:12 - 00003270 _____ () C:\Windows\System32\Tasks\{7CCA6E1B-E7E1-41FF-B6E2-BE2A0158B4F9}
2014-04-07 00:11 - 2014-04-07 00:11 - 00000000 ____D () C:\Users\msi\AppData\Roaming\ATI
2014-04-07 00:11 - 2014-04-07 00:11 - 00000000 ____D () C:\Users\msi\AppData\Local\ATI
2014-04-06 23:18 - 2013-09-25 14:30 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-04-06 23:16 - 2014-04-05 16:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTuner
2014-04-06 23:16 - 2014-04-05 16:17 - 00000000 ____D () C:\Program Files (x86)\DriverTuner
2014-04-06 23:16 - 2014-02-28 02:50 - 00000000 ____D () C:\Program Files (x86)\CyberScrub Privacy Suite
2014-04-06 23:16 - 2013-10-30 23:06 - 00000000 ____D () C:\Program Files\HitmanPro
2014-04-06 23:16 - 2012-03-19 12:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-04-06 23:13 - 2013-09-24 01:58 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-04-06 23:13 - 2013-01-01 17:54 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2014-04-06 23:13 - 2012-03-28 13:46 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Notepad++
2014-04-06 22:39 - 2013-11-11 18:52 - 00000000 ____D () C:\ProgramData\Ralink
2014-04-06 20:26 - 2014-04-06 20:26 - 00000000 ____D () C:\ProgramData\DriverReviver.exe
2014-04-06 20:25 - 2014-04-06 20:25 - 00000000 ____D () C:\ProgramData\ReviverSoft
2014-04-06 20:25 - 2014-04-06 20:25 - 00000000 ____D () C:\Program Files\ReviverSoft
2014-04-06 19:20 - 2014-04-06 19:20 - 00121840 _____ () C:\Users\msi\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-06 18:49 - 2014-04-06 18:49 - 00000000 ____D () C:\Rbackup
2014-04-06 16:23 - 2014-04-06 16:23 - 00769521 _____ () C:\Users\msi\Documents\▶ Ο Τάσσος μιλά για τον ελληνισμό της Κύπρου - YouTube [360p].webm
2014-04-05 17:20 - 2014-04-05 17:20 - 00000000 ____D () C:\Users\msi\AppData\Roaming\library_dir
2014-04-05 16:42 - 2014-04-05 16:42 - 00000000 __SHD () C:\found.000
2014-04-05 14:55 - 2014-04-05 14:54 - 00000000 ____D () C:\Users\msi\Desktop\QUOTES
2014-04-05 14:49 - 2014-03-20 23:44 - 00000000 ____D () C:\Users\msi\AppData\Roaming\ViberPC
2014-04-05 03:14 - 2014-03-11 22:19 - 00000000 ____D () C:\Users\msi\AppData\Roaming\Replay Video Capture 7
2014-04-05 03:14 - 2013-05-09 20:43 - 00000000 ____D () C:\Users\msi\AppData\Local\Applian
2014-04-04 00:33 - 2014-03-22 22:02 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-04-04 00:33 - 2014-03-22 22:02 - 00001161 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-03-31 16:55 - 2013-04-16 02:40 - 00003866 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001UA
2014-03-31 16:55 - 2013-04-16 02:40 - 00003470 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001Core
2014-03-31 14:07 - 2014-03-01 14:27 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-03-31 14:07 - 2014-03-01 14:27 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-03-31 14:07 - 2012-01-30 11:46 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-03-31 03:51 - 2013-09-24 11:33 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-30 17:40 - 2013-01-26 00:16 - 00000000 ____D () C:\Program Files (x86)\WinPcap
2014-03-29 16:03 - 2014-03-29 16:03 - 00528694 _____ () C:\Users\msi\Downloads\168192-untitled.bmp
2014-03-28 21:47 - 2012-05-03 20:32 - 00003888 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-03-28 21:47 - 2012-05-03 20:32 - 00003636 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-28 01:43 - 2013-01-04 04:12 - 00000101 _____ () C:\Windows\spwdrp.INI
2014-03-28 01:42 - 2014-03-28 01:42 - 00000000 ____D () C:\Users\msi\Desktop\Log

Files to move or delete:
====================
C:\ProgramData\DriverReviver.exe


Some content of TEMP:
====================
C:\Users\msi\AppData\Local\Temp\6_Offer_3.exe
C:\Users\msi\AppData\Local\Temp\BackupSetup.exe
C:\Users\msi\AppData\Local\Temp\i4jdel0.exe
C:\Users\msi\AppData\Local\Temp\instract.exe
C:\Users\msi\AppData\Local\Temp\ntdll_dump.dll
C:\Users\msi\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-19 12:54

==================== End Of Log ============================

 

 

 

Addition.txt log:

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-04-2014
Ran by msi at 2014-04-25 03:00:42
Running from C:\Users\msi\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Acronis True Image Home 2011 (HKLM-x32\...\{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}) (Version: 14.0.6942 - Acronis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.3.0.3670 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.3.0.3670 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Advanced IP Scanner 2.3 (HKLM-x32\...\{A02F51A7-1982-4B69-8BD3-7D2B86179752}) (Version: 2.3.2161 - Famatech)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0408-0000-0000000FF1CE}_OMUI.el-gr_{08A4BDB3-7A63-4F59-B9FA-EE80ADE88DC2}) (Version:  - Microsoft)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0408-0000-0000000FF1CE}_OMUI.el-gr_{C52A655D-F8AE-485D-908D-62CEC754B6A4}) (Version:  - Microsoft)
ÅíçìåñùìÝíç Ýêäïóç Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0408-0000-0000000FF1CE}_OMUI.el-gr_{054186C0-F351-472E-84E8-D5E16FA08241}) (Version:  - Microsoft)
Applian Director (HKLM-x32\...\Applian Director3.01) (Version: 3.01 - Applian Technologies Inc.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{8E90189A-A5D4-4C0E-A908-06C4236F98EE}) (Version: 2.0.10.102 - ArcSoft)
ArcSoft Print Creations - Album Page (HKLM-x32\...\{E6B4117F-AC59-4B13-9274-EB136E8897EE}) (Version:  - ArcSoft)
ArcSoft Print Creations - Brochures & Flyers (HKLM-x32\...\{01A1A019-E1D8-482A-BE17-5E118D17C0A0}) (Version:  - ArcSoft)
ArcSoft Print Creations - Funhouse (HKLM-x32\...\{9591C049-5CAE-4E89-A8D9-191F1899628B}) (Version:  - ArcSoft)
ArcSoft Print Creations - Funhouse II (HKLM-x32\...\{3CE47E6B-AE27-4E40-AC54-329EED96B933}) (Version:  - ArcSoft)
ArcSoft Print Creations - Greeting Card (HKLM-x32\...\{F04F9557-81A9-4293-BC49-2C216FA325A7}) (Version:  - ArcSoft)
ArcSoft Print Creations - Photo Book (HKLM-x32\...\{56589DFE-0C29-4DFE-8E42-887B771ECD23}) (Version:  - ArcSoft)
ArcSoft Print Creations - Photo Calendar (HKLM-x32\...\{CA9ED5E4-1548-485B-A293-417840060158}) (Version:  - ArcSoft)
ArcSoft Print Creations - Photo Prints (HKLM-x32\...\{95F875CC-1B85-43E6-B3E0-13EA04F3D995}) (Version:  - ArcSoft)
ArcSoft Print Creations - Poster Creator (HKLM-x32\...\{5D1C82E7-7EC0-4404-A8AD-36C3B444BC34}) (Version:  - ArcSoft)
ArcSoft Print Creations - Scrapbook (HKLM-x32\...\{B0D83FCD-9D42-43ED-8315-250326AADA02}) (Version:  - ArcSoft)
ArcSoft Print Creations - Slimline Card (HKLM-x32\...\{007B37D9-0C45-4202-834B-DD5FAAE99D63}) (Version:  - ArcSoft)
ArcSoft Print Creations (HKLM-x32\...\{A3324BBB-3A83-40CE-AA8C-759D849B7EA1}) (Version: 3.0.255.487 - ArcSoft)
ArcSoft WebCam Companion 3 (HKLM-x32\...\{25478065-4CB1-448C-80E4-8C4529017EE3}) (Version: 3.0.32.262 - ArcSoft)
Art Effects for PDR10 (HKLM\...\NewBlue Art Effects for PDR10) (Version: 2.0 - NewBlue)
ATI Catalyst Install Manager (HKLM\...\{64798798-D0C8-4246-56FB-5C5D8A61615C}) (Version: 3.0.774.0 - ATI Technologies, Inc.)
ATI Catalyst Install Manager (HKLM\...\{C2ED6676-B718-D977-B451-30F6EB9674E1}) (Version: 3.0.754.0 - ATI Technologies, Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Auslogics Disk Defrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 3.6 - Auslogics Software Pty Ltd)
Auto Shutdown (HKLM-x32\...\{306037A5-6B16-4FFA-BF63-FBF1322D9139}) (Version: 1.0.0 - www.FreeAutoShutdown.com)
AutoHotkey 1.1.14.03 (HKLM\...\AutoHotkey) (Version: 1.1.14.03 - Lexikos)
Avidemux 2.5 (HKLM-x32\...\Avidemux 2.5 (64-bit)) (Version: 2.5.6.7716 - )
AVS Video Converter 8 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 8.4.1.540 - Online Media Technologies Ltd.)
AVS Video Editor 6 (HKLM-x32\...\AVS Video Editor_is1) (Version: 6.3.2.234 - Online Media Technologies Ltd.)
Bing Bar (HKLM-x32\...\{E588ABEE-F0AE-48A3-BE53-1681A8DB9781}) (Version: 7.1.352.0 - Microsoft Corporation)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.912.401 - Micro-Star International Co., Ltd.)
Camtasia Studio 8 (HKLM-x32\...\{58C8CFA6-BE34-4DFE-91F5-D807F402DFC1}) (Version: 8.2.0.1416 - TechSmith Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2009.1209.2335.42329 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2010.0608.2230.38564 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.1209.2335.42329 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0608.2230.38564 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2009.1209.2335.42329 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2010.0608.2230.38564 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2009.1209.2335.42329 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2010.0608.2230.38564 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.1209.2335.42329 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0608.2230.38564 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.1209.2335.42329 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2010.0608.2230.38564 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2009.1209.2335.42329 - ATI) Hidden
Catalyst Control Center Localization All (x32 Version: 2010.0608.2230.38564 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Czech (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Czech (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Danish (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Danish (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Dutch (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Dutch (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help English (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help English (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Finnish (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Finnish (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help French (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help French (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help German (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help German (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Greek (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Greek (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Italian (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Italian (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Japanese (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Japanese (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Korean (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Korean (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Polish (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Polish (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Russian (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Russian (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Spanish (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Spanish (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Swedish (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Swedish (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Thai (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Thai (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
CCC Help Turkish (x32 Version: 2009.1209.2334.42329 - ATI) Hidden
CCC Help Turkish (x32 Version: 2010.0608.2229.38564 - ATI) Hidden
ccc-core-static (x32 Version: 2009.1209.2335.42329 - ATI) Hidden
ccc-core-static (x32 Version: 2010.0608.2230.38564 - ATI) Hidden
ccc-utility64 (Version: 2009.1209.2335.42329 - ATI) Hidden
ccc-utility64 (Version: 2010.0608.2230.38564 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Comfort On-Screen Keyboard Pro 5.1.4.0 (HKLM\...\{6EB17721-6249-417B-99B9-DAF3FD532955}_is1) (Version: 5.1 - Comfort Software Group)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CoreAAC Audio Decoder (remove only) (HKLM-x32\...\CoreAAC Audio Decoder) (Version:  - )
CyberGhost VPN (HKLM\...\CyberGhost VPN_is1) (Version:  - CyberGhost S.R.L.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.1129b - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.1129b - CyberLink Corp.) Hidden
CyberLink WaveEditor (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1.3320 - CyberLink Corp.)
CyberLink WaveEditor (x32 Version: 1.0.1.3320 - CyberLink Corp.) Hidden
CyberScrub® Privacy Suite™ 5.1 (HKLM-x32\...\CyberScrub® Privacy Suite™ 5.1_is1) (Version:  - CyberScrub LLC)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Debut Video Capture Software (HKLM-x32\...\Debut) (Version:  - NCH Software)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{A3AD381D-848C-4478-80DC-228E37309308}) (Version:  - Microsoft)
Defraggler (HKLM\...\Defraggler) (Version: 2.16 - Piriform)
Dropbox (HKCU\...\Dropbox) (Version: 2.0.22 - Dropbox, Inc.)
EaseUS Data Recovery Wizard 5.6.5 (HKLM-x32\...\EaseUS Data Recovery Wizard 5.6.5_is1) (Version:  - EaseUS)
EaseUS Partition Master 9.2.1 Home Edition (HKLM-x32\...\EaseUS Partition Master Home Edition_is1) (Version:  - EaseUS)
EasyViewer (HKLM-x32\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.9 - MSI)
EasyViewer (x32 Version: 1.3.0.9 - MSI) Hidden
ENE USB Card Reader Driver (HKLM\...\8426FCB8FBFE7DD936977F568A58E018229E5BC1) (Version: 5.89.0.71 - ENE)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Evernote v. 4.5.10 (HKLM-x32\...\{EF7E46B8-1FB7-11E2-B6B3-984BE15F174E}) (Version: 4.5.10.7472 - Evernote Corp.)
Facebook Messenger 2.1.4814.0 (HKLM-x32\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook)
FileZilla Client 3.7.4.1 (HKLM-x32\...\FileZilla Client) (Version: 3.7.4.1 - Tim Kosse)
Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 8.5.6.4 - Sentelic)
FixCleaner (HKLM-x32\...\{76B0EC2C-CB14-422D-AD07-BDAEC0D1BEEB}) (Version: 2.0.5013 - Slimware Utilities, Inc.)
FormatFactory 2.96 (HKLM-x32\...\FormatFactory) (Version: 2.96 - Free Time)
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.1.3.622 - DVDVideoSoft Ltd.)
FreeWebSiteSubmitter 1.0.3 (HKLM-x32\...\Free WebSite Submitter_is1) (Version:  - Nsasoft LLC.)
FXCM Trading Station (HKLM-x32\...\FXCM Trading Station) (Version: 011212 - )
FXCM Trading Station (x32 Version: 011212 - FXCM) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Earth (HKLM-x32\...\{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}) (Version: 7.0.3.8542 - Google)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{91B9368F-6C6F-3DB5-9CBA-6CAD56035B26}) (Version: 3.19.1.13088 - Google)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Hide IP Easy (HKLM-x32\...\HideIPEasy) (Version: 5.1.9.6 - )
HiDownloadPlatinum (HKLM-x32\...\HiDownload Platinum_is1) (Version:  - )
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.212 - SurfRight B.V.)
Hot Keyboard Pro 4 (HKLM-x32\...\Hot Keyboard Pro_is1) (Version: 4.0 - Imposant)
HP Deskjet 2050 J510 series Basic Device Software (HKLM\...\{F2C07BE3-0F88-4D0C-957B-3557699981E9}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Deskjet 2050 J510 series Help (HKLM-x32\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)
Intel® Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2119 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel® Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.01.01.1007 - Intel Corporation)
iWisoft Free Video Converter 1.2 (HKLM-x32\...\iWisoft Free Video Converter_is1) (Version: 1.2 - www.easy-video-converter.com)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
LaCie Desktop Manager 1.5.5 (HKLM\...\{3845209F-142E-4F48-B61A-AA34D2DB54BB}_is1) (Version: 1.5.5 - LaCie)
Live Update 5 (HKLM-x32\...\{36F6E986-D2D1-403C-8BD3-D95EF7BC705D}}_is1) (Version: 5.0.109 - MSI)
Macro Recorder 5.7.2 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.7.2 - Jitbit Software)
Magical Jelly Bean KeyFinder (HKLM-x32\...\KeyFinder_is1) (Version: 2.0.9.8 - Magical Jelly Bean)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.1.2.4000 - Maxthon International Limited)
MediaCoder x64 0.8.22.5525 (HKLM\...\MediaCoder x64) (Version: 0.8.22.5525 - Broad Intelligence)
MediaInfo 0.7.67 (HKLM\...\MediaInfo) (Version: 0.7.67 - MediaArea.net)
MEGATRADER (HKLM-x32\...\MEGATRADER) (Version: 4.00 - MetaQuotes Software Corp.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Expression Blend 3 SDK (HKLM-x32\...\{256E7DAC-9BE8-494E-8DE7-7857BF96B774}) (Version: 1.0.1343.0 - Microsoft Corporation)
Microsoft Expression Blend 4 (HKLM-x32\...\Blend_4.0.20525.0) (Version: 4.0.20525.0 - Microsoft Corporation)
Microsoft Expression Blend 4 (x32 Version: 4.0.20525.0 - Microsoft Corporation) Hidden
Microsoft Expression Blend SDK for .NET 4 (HKLM-x32\...\{9B3A1C97-A361-463E-8817-444F9F88CDFE}) (Version: 2.0.20525.0 - Microsoft Corporation)
Microsoft Expression Blend SDK for Silverlight 4 (HKLM-x32\...\{1C997E1C-5CE9-4AF3-AAA9-DC65E6090827}) (Version: 2.0.20525.0 - Microsoft Corporation)
Microsoft Expression Design 4 (HKLM-x32\...\Design_7.0.20516.0) (Version: 7.0.20516.0 - Microsoft Corporation)
Microsoft Expression Design 4 (x32 Version: 7.0.20516.0 - Microsoft Corporation) Hidden
Microsoft Expression Encoder 4 (HKLM-x32\...\Encoder_4.0.1639.0) (Version: 4.0.1639.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (x32 Version: 4.0.1639.0 - Microsoft Corporation) Hidden
Microsoft Expression Encoder 4 Screen Capture Codec (HKLM-x32\...\{BF127B80-CFD5-4379-9752-E8AF1A5D0141}) (Version: 4.0.1639.0 - Microsoft Corporation)
Microsoft Expression Studio 4 (HKLM-x32\...\ExpressionStudio_4.0.20525.0) (Version: 4.0.20525.0 - Microsoft Corporation)
Microsoft Expression Studio 4 (x32 Version: 4.0.20525.0 - Microsoft Corporation) Hidden
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1303.0) (Version: 4.0.1303.0 - Microsoft Corporation)
Microsoft Expression Web 4 (x32 Version: 4.0.1303.0 - Microsoft Corporation) Hidden
Microsoft Expression Web 4 Service Pack 2 (HKLM-x32\...\{F5993FCC-DF5D-4879-B70D-AA1F379C5C6B}) (Version:  - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0100-0408-0000-0000000FF1CE}_OMUI.el-gr_{F86B508B-F1A2-4841-B906-CDDA3A548A2A}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office 2010 Service Pack 1 (SP1) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2007 - Greek/Ελληνικά (HKLM-x32\...\OMUI.el-gr) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office O MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0408-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Greek) 2007 (x32 Version: 12.0.4518.1029 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Greek) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office SharePoint Designer 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (Greek) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Report Viewer Redistributable 2005 (HKLM-x32\...\Microsoft Report Viewer Redistributable 2005) (Version:  - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2005 (x32 Version: 8.0.56405 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft SharePoint Designer 2010 (HKLM-x32\...\Office14.SharePointDesigner) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft SharePoint Designer 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{A8C80871-125D-4667-BC0A-E3EEE62597E8}) (Version:  - Microsoft)
Microsoft SharePoint Designer 2010 Service Pack 1 (SP1) (x32 Version:  - Microsoft) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM-x32\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (HKLM-x32\...\{801B0DA3-A3FF-46CC-B97F-D76D510AF5AE}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft VC9 runtime libraries (x32 Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
MixPad Audio Mixer (HKLM-x32\...\MixPad) (Version:  - NCH Software)
Motorola Bluetooth (HKLM\...\1DF1F719-D43A-46E8-950F-65A8D96C678A.MBT_is1) (Version: 3.0.02.280 - Motorola, Inc.)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 29.0 (x86 en-US)) (Version: 29.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
msi Software Install (HKLM-x32\...\{07690F1C-04B1-4060-9691-6748ED1826B9}) (Version: 3.0.1004.102 - msi)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero Burning ROM 11 (HKLM-x32\...\{E656D89A-8CBB-497F-918F-8361A4071C26}) (Version: 11.0.10400 - Nero AG)
Nero Burning ROM 11 (x32 Version: 11.0.12200.23.100 - Nero AG) Hidden
Nero Burning ROM 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden
Nero ControlCenter 11 (x32 Version: 11.0.12300.0.23 - Nero AG) Hidden
Nero ControlCenter 11 Help (CHM) (x32 Version: 11.0.10300 - Nero AG) Hidden
Nero Core Components 11 (x32 Version: 11.0.14700.1.9 - Nero AG) Hidden
Nero RescueAgent 11 (x32 Version: 4.0.10600.10.100 - Nero AG) Hidden
Nero RescueAgent 11 Help (CHM) (x32 Version: 11.0.10400 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.10623.22.0 - Nero AG) Hidden
nero.prerequisites.msi (x32 Version: 11.0.20007 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Nmap 6.40 (HKLM-x32\...\Nmap) (Version:  - )
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.0 - )
Office Shuttle Software (HKLM-x32\...\InstallShield_{3F87539C-BD1B-4529-8F13-8B3599A51D6C}) (Version: 12.05.0004 - A4TECH)
Office Shuttle Software (x32 Version: 12.05.0004 - A4TECH) Hidden
Opera Stable 18.0.1284.63 (HKLM-x32\...\Opera 18.0.1284.63) (Version: 18.0.1284.63 - Opera Software ASA)
Opera Stable 20.0.1387.91 (HKLM-x32\...\Opera 20.0.1387.91) (Version: 20.0.1387.91 - Opera Software ASA)
ophcrack 3.6.0 (HKLM-x32\...\ophcrack) (Version: 3.6.0 - OS Objectif Sécurité SA)
Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC)
PC Sleep (HKLM-x32\...\{11BD0F20-27DC-4584-AD10-9E99F32F8501}) (Version: 2.2.0 - www.pc-sleep.com)
PDFill PDF Editor with FREE Writer and FREE Tools (HKLM\...\{D1399216-81B2-457C-A0F7-73B9A2EF6902}) (Version: 9.0 - PlotSoft LLC)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Story 3 for Windows (HKLM-x32\...\{4F41AD68-89F2-4262-A32C-2F70B01FCE9E}) (Version: 3.0.1115.11 - Microsoft Corporation)
Photo! Editor 1.1 (HKLM-x32\...\PhotoToolkit_is1) (Version:  - )
PhotoPad Image Editor (HKLM-x32\...\PhotoPad) (Version:  - NCH Software)
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PicoZip Recovery Tool 1.02 (HKLM-x32\...\PicoZip Recovery Tool 1.02) (Version: 1.02 - Softchitect)
PowerDirector (Version: 10.00.0000 - CyberLink Corp.) Hidden
PowerXpressHybrid (x32 Version: 1.00.0000 - ATI) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Ralink RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.31.0 - Ralink)
RAR Password Recovery v1.1 RC17 (remove only) (HKLM-x32\...\Intelore - RAR Password Recovery) (Version:  - )
RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version:  - Password Unlocker Studio)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.77.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7111 - Realtek Semiconductor Corp.)
RecordPad Sound Recorder (HKLM-x32\...\Recordpad) (Version:  - NCH Software)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Replay Video Capture (HKLM-x32\...\Replay Video Capture3.1B) (Version: 3.1B - Applian Technologies Inc.)
Replay Video Capture 7 (HKLM-x32\...\Replay Video Capture7.2) (Version: 7.2 - Applian Technologies Inc.)
Revo Uninstaller Pro 3.0.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.7 - VS Revo Group, Ltd.)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Slideshow Creator (HKLM-x32\...\{4E1A63B1-F547-4CFC-91F7-F32F1A6BF430}_is1) (Version: 2.2 - Bolide Software)
SlimCleaner (HKLM-x32\...\{6B8D6199-EE44-4FD7-813A-6D8C62C9B384}) (Version: 4.0.30878 - SlimWare Utilities, Inc.)
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.8 - SmartSound Software Inc.) Hidden
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.05.9423 - SoftEther VPN Project)
Speccy (HKLM\...\Speccy) (Version: 1.23 - Piriform)
Spotflux (HKLM-x32\...\Spotflux) (Version: 2.9.20 - Spotflux)
Stellar Phoenix Windows Data Recovery - Professional (HKLM-x32\...\Stellar Phoenix Windows Data Recovery - Professional_is1) (Version: 5.0.0.0 - Stellar Information Systems Ltd)
StrategyRunner Paper Console (HKLM-x32\...\StrategyRunner Paper Console) (Version: 4.0.0.5 - )
Streaming Audio Recorder V2.5.2 (HKLM-x32\...\{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1) (Version: 2.5.2 - Apowersoft)
StreamTransport version: 1.0.2.2171 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
Subtitle Edit 3.2.7 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.2.7 - Nikse)
Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.018 - MSI)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.1.2 - Synaptics Incorporated)
TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.15723 - TeamViewer)
Tixati (HKLM-x32\...\tixati) (Version:  - )
Traffic Travis 4.1.0 (HKLM-x32\...\Traffic Travis 4.1 Setup Wizard_is1) (Version:  - Affilorama Ltd.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0100-0408-0000-0000000FF1CE}_OMUI.el-gr_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{620E77C0-CDFE-4C14-AAEB-830ABB65864C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{525A4A44-8940-40AD-ABA0-14501199D2F0}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8153EC80-C988-4336-8DAF-6D99C0D26E0C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553065) (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{A8686D24-1E89-43A1-973E-05A258D2B3F8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{48E1B6C2-7299-4F3F-AA63-42F0ACE55AA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (HKLM-x32\...\{90140000-006E-0409-0000-0000000FF1CE}_Office14.SharePointDesigner_{73E67A3A-8D61-44EF-90C2-1697C3DBE668}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{14B7142F-D7E2-4FB0-9E3B-7CAA8D7FFC56}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{EFB525A0-E1C0-4E32-9968-FE401BC87363}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{ED31DE9A-3E13-4E2C-9106-E0D8AFFB9FA6}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SharePointDesigner_{C4F26A9B-B121-4135-8084-A0D9C780C7C8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SharePointDesigner_{460FF681-BC66-4C38-99DF-7012E03F1EBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SharePointDesigner_{C633216E-FF30-45B6-B2AB-21922A9353EF}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{B1FA5E8C-2342-45AF-8A62-5E860042F8DF}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{1CBEDB37-C438-473F-8BA0-2535B0D237E2}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SharePointDesigner_{1CBEDB37-C438-473F-8BA0-2535B0D237E2}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{9CFD026D-EB1C-48C2-9DD2-8E8875F251B2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0408-0000-0000000FF1CE}_OMUI.el-gr_{AAF7F2F6-8C8B-428A-BF45-6D3E38C881BC}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817359) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BD6B5D42-37A7-46A0-912C-E7578E1F03C5}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Update for Microsoft SharePoint Designer 2010 (KB2553382) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0000-0000-0000000FF1CE}_Office14.SharePointDesigner_{92D3EF72-D44B-4DF9-86BA-B77FAC664D27}) (Version:  - Microsoft)
Update for Microsoft SharePoint Designer 2010 (KB2553459) 32-Bit Edition (HKLM-x32\...\{90140000-0017-0409-0000-0000000FF1CE}_Office14.SharePointDesigner_{826B9592-E62D-4007-BDBD-7C7B67BE84DB}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SharePointDesigner_{5DA2D071-A54C-47C0-83E5-43C63DBFD936}) (Version:  - Microsoft)
Viber (HKCU\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
VideoGenie (HKLM-x32\...\{FC54FD8D-789C-406D-BB88-F7C4421B7E83}_is1) (Version: 1.0.0.12 - MSI)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 3.24 - NCH Software)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.3.0.0 - Azureus Software, Inc.)
WebM Media Foundation Components (HKLM-x32\...\webmmf) (Version: 1.0.1.0 - WebM Project)
Winamp (HKLM-x32\...\Winamp) (Version: 5.65  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.10 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.2 - win.rar GmbH)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version:  - )
WinX DVD Ripper 5.5.6 (HKLM-x32\...\WinX DVD Ripper_is1) (Version:  - Digiarty Software, Inc.)
WPF Toolkit February 2010 (Version 3.5.50211.1) (HKLM-x32\...\{5EE6E987-1B79-4A93-832B-27472C7D1579}) (Version: 3.5.50211.1 - Microsoft Corporation)
YTD YouTube Downloader & Converter 3.7 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version:  - GreenTree Applications SRL)
ZIP Password Unlocker 3.0.1.9 (HKLM-x32\...\{92C9D8BD-D305-4205-95E1-67F65F4944A8}_is1) (Version:  - Password Unlocker Studio)
Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

13-04-2014 13:36:16 Windows Update
16-04-2014 23:23:31 Windows Update
18-04-2014 21:20:36 Removed FixCleaner
18-04-2014 21:22:35 Restore Operation
19-04-2014 00:27:47 Installed Free Image Converter
20-04-2014 17:54:44 Windows Update
24-04-2014 22:27:11 Windows Update

==================== Hosts content: ==========================

2009-07-14 05:34 - 2014-03-02 22:23 - 00000000 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {02FA2F99-C6D6-457E-8C09-70FED6732C6E} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2965899324-3394625851-2540308716-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {081C5221-C4DB-4218-B5FA-A42CB8C367C3} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2965899324-3394625851-2540308716-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {0F5FE3E0-7DD8-4767-8505-CF214203AD14} - System32\Tasks\SlimCleaner Run => C:\Program Files (x86)\SlimCleaner\SlimCleaner.exe [2013-07-10] (SlimWare Utilities, Inc.)
Task: {106EED0A-7D22-4144-8590-BFDABD6D24DC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001Core => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-14] (Google Inc.)
Task: {48A54F0A-5B5F-4FCC-8418-B36D07E6D5C6} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2014-03-06] (Maxthon International ltd.)
Task: {5672CEE1-9609-4253-8354-1D3AC042BE08} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-03] (Google Inc.)
Task: {58B24364-E280-4BAA-A5FF-280640FB6C70} - System32\Tasks\launchspotflux => C:\Program Files (x86)\Spotflux\spotflux.exe [2014-01-21] ()
Task: {5C893EBF-240B-479E-A49D-B76A130753EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-03] (Google Inc.)
Task: {60530978-D8E1-4C44-8088-90210EB7D61E} - System32\Tasks\Torntv V9.0-updater => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-updater.exe <==== ATTENTION
Task: {7E3FC3CC-0642-41C8-A10F-0F15F2055C3D} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {8ECBC149-E517-4405-ABB9-8547E6D819D7} - System32\Tasks\Torntv V9.0-enabler => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-enabler.exe <==== ATTENTION
Task: {961D97FA-E866-4BA9-BFA8-EE122ABEE382} - System32\Tasks\NCH Software\videopadShakeIcon => C:\Program Files (x86)\NCH Software\VideoPad\VideoPad.exe [2014-04-25] (NCH Software)
Task: {9A38C6C8-3500-4A1F-AFFA-7C8BE8561385} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001Core => C:\Users\msi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: {9B45EAD9-4FE7-45BC-8606-FB05BA4AE6BA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-09] (Adobe Systems Incorporated)
Task: {9D5DE105-14D2-4FDF-B802-309C1C5E93D9} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2965899324-3394625851-2540308716-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
Task: {A45F8B97-D1F8-4636-B8EB-DBB92DD518DB} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2965899324-3394625851-2540308716-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {A5C1CBDD-DE3D-4DEF-A884-52E80FE7F598} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {A9FFA50D-9B0C-43B0-A77E-E89F2A23317D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001UA => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-14] (Google Inc.)
Task: {B3C2B32C-8CD8-4BF9-B328-707BB0F07E13} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2965899324-3394625851-2540308716-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe
Task: {EA216273-F23C-4D42-AC21-014DA9BE2A25} - System32\Tasks\NCH Software\PhotoPadReminder => C:\Program Files (x86)\NCH Software\PhotoPad\PhotoPad.exe
Task: {F8DFF88B-93E1-40F9-8136-102C46C06B64} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001UA => C:\Users\msi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-12] (Facebook Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001Core.job => C:\Users\msi\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001UA.job => C:\Users\msi\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001Core.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2965899324-3394625851-2540308716-1001UA.job => C:\Users\msi\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SidebarExecute.job => C:\Program Files\Windows Sidebar\sidebar.exe
Task: C:\Windows\Tasks\Torntv V9.0-enabler.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\Torntv V9.0-updater.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-updater.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) =============

2013-09-12 14:34 - 2009-10-01 13:08 - 00015360 _____ () C:\Windows\System32\KOAZXJ_L.dll
2013-09-12 14:34 - 2009-11-02 15:19 - 00648704 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\KOAZXJ_O.DLL
2010-01-02 17:42 - 2010-01-02 17:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2013-11-11 18:47 - 2013-09-23 17:48 - 01210672 _____ () C:\Program Files (x86)\Ralink\Common\RaWLAPI.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\temp:list
AlternateDataStreams: C:\temp:pid1
AlternateDataStreams: C:\temp:pid2
AlternateDataStreams: C:\temp:srv
AlternateDataStreams: C:\ProgramData\Temp:B4AF47A7
AlternateDataStreams: C:\ProgramData\Temp:D5FBE8F9

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\75135910.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\75135910.sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: nvUpdatusService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SoftEther VPN Client Manager Startup.lnk => C:\Windows\pss\SoftEther VPN Client Manager Startup.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Trend Micro SafeSync.lnk => C:\Windows\pss\Trend Micro SafeSync.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^msi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\Windows\pss\EvernoteClipper.lnk.Startup
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BTMTrayAgent => rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.1 Home Edition\bin\EpmNews.exe
MSCONFIG\startupreg: Live Update 5 => C:\Program Files (x86)\MSI\Live Update 5\BootStartLiveupdate.exe /reminder
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Java\jre1.6.0\bin\jusched.exe"
MSCONFIG\startupreg: Super-Charger => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft Virtual WiFi Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/25/2014 02:59:36 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x13e8
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:51:06 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x388
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:45:22 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x12b0
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:43:08 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x1320
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:43:00 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x1240
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:42:41 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x113c
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:42:35 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x1068
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:42:27 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0x850
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:42:06 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18229, time stamp: 0x51fb1677
Exception code: 0xc0000005
Fault offset: 0x000000000000c65f
Faulting process id: 0xc84
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (04/25/2014 02:39:27 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (04/25/2014 02:59:37 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 9 time(s).

Error: (04/25/2014 02:51:06 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 8 time(s).

Error: (04/25/2014 02:45:22 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 7 time(s).

Error: (04/25/2014 02:43:08 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 6 time(s).

Error: (04/25/2014 02:43:01 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 5 time(s).

Error: (04/25/2014 02:42:41 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 4 time(s).

Error: (04/25/2014 02:42:36 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 3 time(s).

Error: (04/25/2014 02:42:27 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (04/25/2014 02:42:09 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (04/25/2014 02:35:55 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 117 time(s).


Microsoft Office Sessions:
=========================
Error: (10/09/2013 05:10:09 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 7169 seconds with 4980 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-04-04 15:30:11.711
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-04 15:30:11.321
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-04 15:12:44.265
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-04 15:12:43.780
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-02-19 17:47:09.728
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-02-19 17:47:09.650
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-02-19 12:20:03.085
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-02-19 12:20:03.007
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-02-19 11:48:05.478
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-02-19 11:48:05.400
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\igdpmd64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Percentage of memory in use: 19%
Total physical RAM: 7981.53 MB
Available physical RAM: 6442.29 MB
Total Pagefile: 15961.23 MB
Available Pagefile: 14429.96 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS_Install) (Fixed) (Total:272.2 GB) (Free:100.22 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:181.47 GB) (Free:179.01 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 4E9F2704)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=27)
Partition 3: (Not Active) - (Size=272 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=181 GB) - (Type=07 NTFS)

==================== End Of Log ============================


Edited by neroman00, 24 April 2014 - 07:14 PM.


#7 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:52 AM

Posted 25 April 2014 - 08:37 AM

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
SearchScopes: HKCU - {E03CA5AB-1A81-4FC2-9CF3-0A83A91FFBAF} URL =
BHO-x32: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -  No File
BHO-x32: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.1 - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: Ask
CHR DefaultSearchURL: http://www.ask.com/web?q={searchTerms}
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Java Platform SE 7 U5) - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll No File
AlternateDataStreams: C:\temp:list
AlternateDataStreams: C:\temp:pid1
AlternateDataStreams: C:\temp:pid2
AlternateDataStreams: C:\temp:srv
AlternateDataStreams: C:\ProgramData\Temp:B4AF47A7
AlternateDataStreams: C:\ProgramData\Temp:D5FBE8F9
C:\Users\msi\AppData\Local\Temp\6_Offer_3.exe
C:\Users\msi\AppData\Local\Temp\BackupSetup.exe
C:\Users\msi\AppData\Local\Temp\i4jdel0.exe
C:\Users\msi\AppData\Local\Temp\instract.exe
C:\Users\msi\AppData\Local\Temp\ntdll_dump.dll
C:\Windows\Tasks\Torntv V9.0-enabler.job
C:\Program Files (x86)\Torntv V9.0

End

Save the files as fixlist.txt in to the same folder as FRST

Run FRST and click Fix only once and wait

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Uncheck the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
Please post the logs and let me know of any remaining issues.

#8 neroman00

neroman00
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 25 April 2014 - 03:28 PM

FRST other FRST64.exe is located and saved at my desktop. I created fixlist.txt and I saved it to my desktop as well.

 

 

 

 

 

Fixlog.txt file which automatically created after I click Fix and before I restarted my computer:

 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 24-04-2014
Ran by msi at 2014-04-25 23:31:49 Run:1
Running from C:\Users\msi\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
SearchScopes: HKCU - {E03CA5AB-1A81-4FC2-9CF3-0A83A91FFBAF} URL =
BHO-x32: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -  No File
BHO-x32: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
FF Plugin-x32: @java.com/JavaPlugin,version=10.5.1 - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
CHR DefaultSearchKeyword: ask.com
CHR DefaultSearchProvider: Ask
CHR DefaultSearchURL: http://www.ask.com/web?q={searchTerms}
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Java Platform SE 7 U5) - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll No File
AlternateDataStreams: C:\temp:list
AlternateDataStreams: C:\temp:pid1
AlternateDataStreams: C:\temp:pid2
AlternateDataStreams: C:\temp:srv
AlternateDataStreams: C:\ProgramData\Temp:B4AF47A7
AlternateDataStreams: C:\ProgramData\Temp:D5FBE8F9
C:\Users\msi\AppData\Local\Temp\6_Offer_3.exe
C:\Users\msi\AppData\Local\Temp\BackupSetup.exe
C:\Users\msi\AppData\Local\Temp\i4jdel0.exe
C:\Users\msi\AppData\Local\Temp\instract.exe
C:\Users\msi\AppData\Local\Temp\ntdll_dump.dll
C:\Windows\Tasks\Torntv V9.0-enabler.job
C:\Program Files (x86)\Torntv V9.0

End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E03CA5AB-1A81-4FC2-9CF3-0A83A91FFBAF} => Key deleted successfully.
HKCR\CLSID\{E03CA5AB-1A81-4FC2-9CF3-0A83A91FFBAF} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Value deleted successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => Key deleted successfully.
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1 => Key deleted successfully.
C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll not found.
HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin => Key deleted successfully.
C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll not found.
HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin => Key deleted successfully.
C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll not found.
HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin => Key deleted successfully.
C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll not found.
CHR DefaultSearchKeyword: ask.com ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchProvider: Ask ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSearchURL: http://www.ask.com/web?q={searchTerms} ==> The Chrome "Settings" can be used to fix the entry.
C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll not found.
C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll not found.
C:\Users\msi\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll not found.
C:\Users\msi\AppData\Roaming\Mozilla\plugins\npo1d.dll not found.
C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL not found.
C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL not found.
C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll not found.
C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll not found.
C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll not found.
C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll not found.
C:\temp => ":list" ADS removed successfully.
C:\temp => ":pid1" ADS removed successfully.
C:\temp => ":pid2" ADS removed successfully.
C:\temp => ":srv" ADS removed successfully.
C:\ProgramData\Temp => ":B4AF47A7" ADS removed successfully.
C:\ProgramData\Temp => ":D5FBE8F9" ADS removed successfully.
C:\Users\msi\AppData\Local\Temp\6_Offer_3.exe => Moved successfully.
C:\Users\msi\AppData\Local\Temp\BackupSetup.exe => Moved successfully.
C:\Users\msi\AppData\Local\Temp\i4jdel0.exe => Moved successfully.
C:\Users\msi\AppData\Local\Temp\instract.exe => Moved successfully.
C:\Users\msi\AppData\Local\Temp\ntdll_dump.dll => Moved successfully.
C:\Windows\Tasks\Torntv V9.0-enabler.job => Moved successfully.
"C:\Program Files (x86)\Torntv V9.0" => File/Directory not found.

==== End of Fixlog ====

 

 

 

I run AdwCleaner.exe and then I clicked the Clean button after Scan process

 

 

# AdwCleaner v3.202 - Report created 25/04/2014 at 23:53:23
# Updated 23/04/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : msi - MSI-MSI
# Running from : C:\Users\msi\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\msi\.android
Folder Deleted : C:\Users\msi\AppData\Local\Mobogenie
Folder Deleted : C:\Users\msi\AppData\Local\Temp\OCS
Folder Deleted : C:\Users\msi\Documents\Mobogenie
Folder Deleted : C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna
File Deleted : C:\Users\msi\daemonprocess.txt
File Deleted : C:\Users\msi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torch.lnk
File Deleted : C:\Windows\System32\Tasks\Torntv V9.0-enabler
File Deleted : C:\Windows\Tasks\Torntv V9.0-updater.job
File Deleted : C:\Windows\System32\Tasks\Torntv V9.0-updater

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\Applications\Torch.exe
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO
Key Deleted : HKLM\SOFTWARE\Classes\ShopperPro.ShopperProBHO.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-BE58-8E6109410995}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\OCS
Key Deleted : HKLM\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0 (en-US)

[ File : C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\prefs.js ]


-\\ Google Chrome v34.0.1847.116

[ File : C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Extension] : icpgjfneehieebagbmdbhnlpiopdcmna

*************************

AdwCleaner[R1].txt - [2541 octets] - [25/04/2014 23:48:57]
AdwCleaner[S0].txt - [8831 octets] - [18/04/2014 03:15:04]
AdwCleaner[S1].txt - [2436 octets] - [25/04/2014 23:53:23]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2496 octets] ##########
 

 

 

NOW, I HAVE TO RUN HITMAN PRO AND CHECK IF THE VIRUS IS STILL ON MY COMPUTER


Edited by neroman00, 25 April 2014 - 04:33 PM.


#9 neroman00

neroman00
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 25 April 2014 - 04:33 PM

Trojan.Win32.Pincav.cryr is still on my computer

 

Screenshot BEFORE reboot:

 

1398461539825.jpg

 

 

 

HITMAN PRO LOG FILE BEFORE REBOOT:

HitmanPro 3.7.9.212
www.hitmanpro.com

   Computer name . . . . : MSI-MSI
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : msi-msi\msi
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Paid (255 days left)

   Scan date . . . . . . : 2014-04-26 00:05:54
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 13m 39s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : Yes

   Threats . . . . . . . : 1
   Traces  . . . . . . . : 24

   Objects scanned . . . : 2,040,407
   Files scanned . . . . : 107,189
   Remnants scanned  . . : 631,048 files / 1,302,170 keys

Malware _____________________________________________________________________

   C:\ProgramData\googleupdate\gtqadjqbe.exe -> PendingDelete
      Size . . . . . . . : 220,392 bytes
      Age  . . . . . . . : 19.4 days (2014-04-06 13:41:16)
      Entropy  . . . . . : 6.1
      SHA-256  . . . . . : 45AB3A9C98ECEAA560F5E6A918B920C4C3908951491C00DA2CEAC163F37A9D22
      Product  . . . . . : Cisco PEAP Module
      Publisher  . . . . : Cisco PEAP Module
      Description  . . . : Cisco PEAP Module
      Version  . . . . . : 14.1.6.0
      Copyright  . . . . : Copyright (C) 2006-2009
    > Kaspersky  . . . . : Trojan.Win32.Pincav.cryr
      Fuzzy  . . . . . . : 106.0


Suspicious files ____________________________________________________________

   C:\Program Files (x86)\Ralink\Common\RaUI.exe
      Size . . . . . . . : 15,661,872 bytes
      Age  . . . . . . . : 165.2 days (2013-11-11 18:47:29)
      Entropy  . . . . . : 5.4
      SHA-256  . . . . . : F79E3FD7F5582FEB8FE51B37E37DFC4AB58000E90AA049A5C7C6876E057153CF
      Product  . . . . . : RaUI Application
      Publisher  . . . . : Ralink Technology, Corp.
      Description  . . . : Ralink Wireless LAN Card Utility
      Version  . . . . . : 5.0.8.0
      Copyright  . . . . : (c) Copyright 2013, Ralink Technology, Inc.  All rights reserved.
      RSA Key Size . . . : 2048
      Gossip . . . . . . : Ralink Wireless Utility
      Parent Name  . . . : C:\Windows\Explorer.EXE
      Authenticode . . . : Invalid
      Running processes  : 4040
      Fuzzy  . . . . . . : 24.0
         Program is altered or corrupted since it was code signed by its author. This is typical for malware and pirated software.
         Uses the Startup folder in the Start Menu to run each time the user logs on.
         Program is running but currently exposes no human-computer interface (GUI).
         Program starts automatically without user intervention.
         The file is in use by one or more active processes.
         The file appears to be part of an installation package or setup program. This is typical for most programs.
      Startup
         C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk
      References
         C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ralink Wireless\Ralink Wireless Utility.lnk


Cookies _____________________________________________________________________

   C:\Users\msi\AppData\Local\Google\Chrome\User Data\Default\Cookies:survey.g.doubleclick.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:2o7.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:canwestglobal.112.2o7.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:dmtracker.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:doubleclick.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:hearstdigital.122.2o7.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:in.getclicky.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:microsoftsto.112.2o7.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:pornhub.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:premiumtv.122.2o7.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:statcounter.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:statse.webtrendslive.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:survey.g.doubleclick.net
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:uk.sitestat.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:www.googleadservices.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:www.youporn.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:xiti.com
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:yadro.ru
   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:youporn.com

Screenshot AFTER reboot:

 

1398463818256.jpg

 

 

 

 

 

Hitman Pro results AFTER reboot:

HitmanPro 3.7.9.212
www.hitmanpro.com

   Computer name . . . . : MSI-MSI
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : msi-msi\msi
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Paid (255 days left)

   Scan date . . . . . . : 2014-04-26 00:44:03
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 17m 37s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : Yes

   Threats . . . . . . . : 1
   Traces  . . . . . . . : 6

   Objects scanned . . . : 2,041,664
   Files scanned . . . . : 107,474
   Remnants scanned  . . : 631,807 files / 1,302,383 keys

Malware _____________________________________________________________________

   C:\ProgramData\googleupdate\gtqadjqbe.exe -> PendingDelete
      Size . . . . . . . : 220,392 bytes
      Age  . . . . . . . : 19.5 days (2014-04-06 13:41:16)
      Entropy  . . . . . : 6.1
      SHA-256  . . . . . : 45AB3A9C98ECEAA560F5E6A918B920C4C3908951491C00DA2CEAC163F37A9D22
      Product  . . . . . : Cisco PEAP Module
      Publisher  . . . . : Cisco PEAP Module
      Description  . . . : Cisco PEAP Module
      Version  . . . . . : 14.1.6.0
      Copyright  . . . . : Copyright (C) 2006-2009
    > Kaspersky  . . . . : Trojan.Win32.Pincav.cryr
      Fuzzy  . . . . . . : 106.0


Suspicious files ____________________________________________________________

   C:\Program Files (x86)\Ralink\Common\RaUI.exe
      Size . . . . . . . : 15,661,872 bytes
      Age  . . . . . . . : 165.2 days (2013-11-11 18:47:29)
      Entropy  . . . . . : 5.4
      SHA-256  . . . . . : F79E3FD7F5582FEB8FE51B37E37DFC4AB58000E90AA049A5C7C6876E057153CF
      Product  . . . . . : RaUI Application
      Publisher  . . . . : Ralink Technology, Corp.
      Description  . . . : Ralink Wireless LAN Card Utility
      Version  . . . . . : 5.0.8.0
      Copyright  . . . . : (c) Copyright 2013, Ralink Technology, Inc.  All rights reserved.
      RSA Key Size . . . : 2048
      Gossip . . . . . . : Ralink Wireless Utility
      Parent Name  . . . : C:\Windows\Explorer.EXE
      Authenticode . . . : Invalid
      Running processes  : 3908
      Fuzzy  . . . . . . : 24.0
         Program is altered or corrupted since it was code signed by its author. This is typical for malware and pirated software.
         Uses the Startup folder in the Start Menu to run each time the user logs on.
         Program is running but currently exposes no human-computer interface (GUI).
         Program starts automatically without user intervention.
         The file is in use by one or more active processes.
         The file appears to be part of an installation package or setup program. This is typical for most programs.
      Startup
         C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk
      References
         C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ralink Wireless\Ralink Wireless Utility.lnk


Cookies _____________________________________________________________________

   C:\Users\msi\AppData\Roaming\Mozilla\Firefox\Profiles\cu81qoj4.default\cookies.sqlite:doubleclick.net

Edited by neroman00, 25 April 2014 - 05:19 PM.


#10 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:52 AM

Posted 26 April 2014 - 07:22 AM

Delete the file in bold is still present.
C:\ProgramData\googleupdate\gtqadjqbe.exe

Restart the computer normally.

DoubleClick tracking cookies can be deleted when present.

This type of tracking cookies will no longer be installed if you get get this MVPs Hosts file.

Download HostsXpert

Screen image:
HostsXpert4.jpg
  • Unzip HostsXpert to it's own folder.
  • Run HostsXpert.exe
  • Click: Make Writable? in the upper left corner.
  • Click: Download
  • Click: MVPs Hosts
  • Click: Replace
  • Click: OK
  • Click: Make ReadOnly
  • Close HostsXpert.
Note: If a custom Hosts file was in place, also edit those entries back in.

I suggest that you update the new version of the Hosts file, every 6 weeks. I Do.

All you need to know about the hosts file.
http://www.mvps.org/winhelp2002/hosts.htm
===

How is it now?

#11 neroman00

neroman00
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 26 April 2014 - 03:28 PM

I delete the malware by installing kaspersky pure 3.0 (trial) and by doing a full scan BEFORE I saw your reply!

 

 

These are the kaspersky log files:

 

1. Kaspersky Detected objects

 

Deleted    PlatinumHideIP-3.0.7.8.Setup.exe    C:\Documents and Settings\msi\Desktop\ALL FOLDERS\OCTOBER 2012\DESKTOP-NEW\WWW.EXPRESSHARE.COM_Platinum Hide IP 3.0.7.8.rar//?     26/4/2014 8:17:25 PM    HEUR:Trojan.Win32.Generic    
Disinfected    WWW.EXPRESSHARE.COM_Platinum Hide IP 3.0.7.8.rar    C:\Documents and Settings\msi\Desktop\ALL FOLDERS\OCTOBER 2012\DESKTOP-NEW\?     26/4/2014 8:17:25 PM    WWW.EXPRESSHARE.COM_Platinum Hide IP 3.0.7.8.rar    
Deleted    gtqadjqbe.exe    C:\Documents and Settings\All Users\googleupdate\?     26/4/2014 6:47:23 PM    Trojan.Win32.Pincav.cryr    

 

==============================================

 

 

2. kaspersky Scan Repot - LOG FILE HAS BEEN ATTACHED

 

 

==============================================

 

What do you suggest next?

 

Thanks

Attached Files


Edited by neroman00, 26 April 2014 - 03:33 PM.


#12 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:52 AM

Posted 27 April 2014 - 08:24 AM

Nice work.

Any remaining issues with this computer?

#13 neroman00

neroman00
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:08:52 AM

Posted 30 April 2014 - 04:27 AM

Nice work.

Any remaining issues with this computer?

 

Actually no. Thanks for your support!



#14 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:52 AM

Posted 30 April 2014 - 08:19 AM

If all is well:

Please consider using these ideas to help secure your computer. While there is no way to guarantee safety when you use a computer, these steps will make it much less likely that you will need to endure another infection. While we really like to help people, we would rather help you protect yourself so that you won't need that help in the future.

Please either enable Automatic Updates under Start -> Control Panel -> Automatic Updates or get into the habit of checking Windows Update regularly. They usually have security updates every month. You can set Windows to notify you of Updates so that you can choose, but only do this if you believe you are able to understand which ones are needed. This is a crucial security measure.

Having an effective antivirus is a must for everyone.
In addition to many excellent commercial products there are plenty of good free antivirus programs available. I can recommend:

If you are satisfied with your current protection programs you can ignore the instructions on Antivirus or Firewall listed below.In addition to an antivirus I recommend using a firewall. A software firewall is a software program that helps screen out hackers, viruses, and worms that try to reach your computer over the Internet. I can recommend one of the following free products:Please note: Many installer offer third-party downloads that are installed automatically when you do not uncheck certain checkboxes. While most of the time not being malicious you usually do not want these on your computer. Be careful during the installation process and you will avoid seeing tons of new unwanted toolbars in your favorite web browser.

Please consider installing and running some of the following programs; they are either free or have free versions of commercial programs:

Malwarebytes Anti-Malware (MBAM)
The free version of MBAM can be used to scan the system for traces of malware. Scanning your system regularly will make it harder for malware to reside on your system.
A tutorial on using MBAM can be found here.
Please Note: Only the paid for version has real time capabilities.

SpywareBlaster
A tutorial on using SpywareBlaster to prevent malware from ever installing on your computer may be found here.

Please keep these programs up-to-date and run them whenever you suspect a problem to prevent malware problems. A number of programs have resident protection and it is a good idea to run the resident protection of one of each type of program to maintain protection. However, it is important to run only one resident program of each type since they can conflict and become less effective. That means only one antivirus, firewall and scanning anti-spyware program at a time. Passive protectors, like SpywareBlaster can be run with any of them.

Note that there are a lot of rogue programs out there that want to scare you into giving them your money and some malware actually claims to be security programs. If you get a popup for a security program that you did not install yourself, do NOT click on it and ask for help immediately. It is very important to run an antivirus and firewall, but you can't always rely on reviews and ads for information. Ask in a security forum that you trust if you are not sure. If you are unsure and looking for anti-spyware programs, you can find out if it is a rogue here:A similar category of programs is now called "scareware." Scareware programs are active infections that will pop-up on your computer and tell you that you are infected. If you look closely, it will usually have a name that looks like it might be legitimate, but it is NOT one of the programs you installed. It tells you to click and install it right away. If you click on any part of it, including the 'X' to close it, you may actually help it infect your computer further. Keeping protection updated and running resident protection can help prevent these infections. If it happens anyway, get offline as quickly as you can. Pull the internet connection cable or shut down the computer if you have to. Contact someone to help by using another computer if possible. These programs are also sometimes called 'rogues', but they are different than the older version of rogues mentioned above.

Please keep your programs up to date. This applies to Java, Adobe Flashplayer, Adobe Reader and your Internet Browsers in particular. Vulnerabilities in these programs are often exploited in order to install malware on your PC. Visiting a prepared web page suffices to infect your system.

In general Firefox, Opera and Google Chrome are considered to be more secure than Internet Explorer. In addition there are many useful add-ons that can protect you from possible risks:
  • WOT will warn you when you try to visit sites with poor reputation. The reputation is based on user ratings and is usually very accurate.
  • Script Blocker can help blocking many attempts to infect your system via malicious websites by only allowing scripts at sites you trust.
  • NoScript is a popular Firefox addon,
  • ScriptNo a popular Google Chrome addon.
For much more useful information, please also read Tony Klein's excellent article: How did I get infected in the first place

Hopefully these steps will help to keep you error free. If you run into more difficulty, we will certainly do what we can to help.
===

#15 nasdaq

nasdaq

  • Malware Response Team
  • 38,779 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:52 AM

Posted 06 May 2014 - 09:46 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users