Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Continuation of a previous topic (details inside)


  • This topic is locked This topic is locked
197 replies to this topic

#1 Smashbro29

Smashbro29

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 07 June 2014 - 10:10 PM

This was my previous topic: http://www.bleepingcomputer.com/forums/t/536604/service-host-local-systemservice-taking-too-much-memory/?p=3389049

I was instructed to make a new post here with the following information:

DDS:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.60.2
Run by Elliot at 23:04:44 on 2014-06-07
Microsoft Windows 8 Pro 6.2.9200.0.1252.1.1033.18.16367.10820 [GMT -4:00]
.
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
C:\Windows\system32\AdminService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\dashost.exe
D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Windows\system32\IProsetMonitor.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\taskhostex.exe
D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
D:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\Explorer.EXE
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
D:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
D:\Program Files (x86)\puush\puush.exe
C:\Users\Elliot\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
D:\Program Files (x86)\Steam\Steam.exe
D:\Utilities\Zemana AntiLogger Free\AntiLogger Free.exe
D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
D:\Utilities\AudioSwitcher\switcher.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
C:\Users\Elliot\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
D:\Program Files (x86)\Pidgin\pidgin.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
D:\Utilities\Better DS3\Better DS3.exe
D:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Windows\system32\SndVol.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
D:\Program Files (x86)\foobar2000\foobar2000.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Evernote extension: {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - D:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
BHO: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
uRun: [AdobeBridge]
mRun: [EaseUS EPM tray] D:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe
mRun: [VirtualCloneDrive] "D:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
mRun: [ZALFree] "D:\Utilities\Zemana AntiLogger Free\AntiLogger Free.exe" /MINIMIZED
mRun: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
StartupFolder: C:\Users\Elliot\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DISPLA~1.LNK - D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
StartupFolder: C:\Users\Elliot\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Elliot\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\BETTER~1.LNK - D:\Utilities\Better DS3\Better DS3.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\CONTEN~1.LNK - C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\SWITCH~1.LNK - D:\Utilities\AudioSwitcher\switcher.exe
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Clip Image - D:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Clip selection - D:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
IE: Clip this page - D:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
IE: Clip URL - D:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: New Note - D:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.html
TCP: NameServer = 167.206.254.1 167.206.254.2 167.206.13.180
TCP: Interfaces\{9518CD83-703C-4C08-9D17-44EBFE01DA44} : DHCPNameServer = 167.206.254.1 167.206.254.2 167.206.13.180
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: WebCheck -
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll",CreateReaderUserSettings
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: Logitech SetPoint: {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Run: [IgfxTray] "C:\Windows\System32\igfxtray.exe"
x64-Run: [HotKeysCmds] "C:\Windows\System32\hkcmd.exe"
x64-Run: [Persistence] "C:\Windows\System32\igfxpers.exe"
x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
x64-mPolicies-System: PromptOnSecureDesktop = dword:0
x64-mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} -
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
x64-Notify: igfxcui - igfxdev.dll
x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
x64-SSODL: WebCheck -
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default\
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Users\Elliot\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: C:\Users\Elliot\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Users\Elliot\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
FF - plugin: C:\Users\Elliot\AppData\Roaming\Mozilla\plugins\npo1d.dll
FF - plugin: C:\Users\Elliot\AppData\Roaming\raidcall\plugins\nprcplugin.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
FF - plugin: D:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: D:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
FF - plugin: D:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2013-2-28 645952]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\Drivers\PxHlpa64.sys [2013-2-28 56208]
R1 mbamchameleon;mbamchameleon;C:\Windows\System32\Drivers\mbamchameleon.sys [2014-4-16 91352]
R2 asComSvc;ASUS Com Service;C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2013-6-7 920736]
R2 asHmComSvc;ASUS HM Com Service;C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [2013-6-7 951936]
R2 AsSysCtrlService;ASUS System Control Service;C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [2013-6-7 149120]
R2 AsusFanControlService;AsusFanControlService;C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [2013-6-7 1632256]
R2 AtherosSvc;AtherosSvc;C:\Windows\System32\AdminService.exe [2012-8-29 208384]
R2 DisplayFusionService;DisplayFusionService;D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [2014-4-1 1375600]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;C:\Windows\System32\IPROSetMonitor.exe [2012-7-31 170824]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-6-7 166680]
R2 MBAMScheduler;MBAMScheduler;D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-4-16 1809720]
R2 MBAMService;MBAMService;D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-4-16 860472]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-7-31 15125280]
R2 RzKLService;RzKLService;D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [2014-1-18 105448]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-5-30 413128]
R2 TeamViewer9;TeamViewer 9;C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2014-4-17 4972864]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-6-7 366360]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\Drivers\asmthub3.sys [2012-8-20 138568]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\Drivers\asmtxhci.sys [2013-9-27 419544]
R3 BthHFSrv;Bluetooth Handsfree Service;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2013-3-2 29696]
R3 CompFilter64;UVCCompositeFilter;C:\Windows\System32\Drivers\lvbflt64.sys [2012-10-26 26784]
R3 CY3014.X64;CY3014 USB, Service X64;C:\Windows\System32\Drivers\CY3014.X64.SYS [2013-9-27 3149184]
R3 dvdfab;dvdfab;C:\Windows\System32\Drivers\dvdfab.sys [2013-10-26 79232]
R3 EuMusDesignVirtualAudioCableWdm;@oem73.inf,%DeviceName% (WDM);Virtual Audio Cable (WDM);C:\Windows\System32\Drivers\vrtaucbl.sys [2013-8-30 66728]
R3 ICCWDT;Intel® Watchdog Timer Driver (Intel® WDT);C:\Windows\System32\Drivers\ICCWDT.sys [2013-6-7 26136]
R3 keycrypt;keycrypt;C:\Windows\System32\Drivers\KeyCrypt64.sys [2014-6-4 25568]
R3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\Drivers\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem3.inf,%PID_0826_DD%(UVC);Logitech HD Webcam C525(UVC);C:\Windows\System32\Drivers\lvuvc64.sys [2012-10-26 4758176]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\Drivers\mbam.sys [2013-2-28 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\Drivers\MBAMSwissArmy.sys [2014-4-16 122584]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\Drivers\mwac.sys [2014-4-16 64216]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\System32\Drivers\MijXfilt.sys [2012-10-12 121416]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\Drivers\nvvad64v.sys [2013-10-29 39200]
R3 rusb3hub;Renesas Electronics USB 3.0 Hub Driver (Version 3.0);C:\Windows\System32\Drivers\rusb3hub.sys [2012-8-27 114568]
R3 rusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver (Version 3.0);C:\Windows\System32\Drivers\rusb3xhc.sys [2012-8-27 230280]
R3 VBAudioVACAMME;@oem67.inf,%DeviceName% (WDM);VB-Audio Cable A (WDM);C:\Windows\System32\Drivers\vbaudio_cablea64_win7.sys [2013-8-17 41192]
R3 VBAudioVACBMME;@oem68.inf,%DeviceName% (WDM);VB-Audio Cable B (WDM);C:\Windows\System32\Drivers\vbaudio_cableb64_win7.sys [2013-8-17 41192]
R3 VBAudioVACMME;@oem40.inf,%DeviceName% (WDM);VB-Audio Virtual Cable (WDM);C:\Windows\System32\Drivers\vbaudio_cable64_win7.sys [2013-8-17 41192]
R3 VBAudioVMVAIOMME;@oem39.inf,%DeviceName% (WDM);VB-Audio VoiceMeeter VAIO (WDM);C:\Windows\System32\Drivers\vbaudio_vmvaio64_win7.sys [2013-8-17 41192]
R3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-25 198656]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AthDfu;Atheros Valkyrie USB BootROM;C:\Windows\System32\Drivers\AthDfu.sys [2012-8-22 55336]
S3 AVer330;AVer330;C:\Windows\System32\Drivers\AVer330.sys [2013-10-13 1503744]
S3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2012-8-29 565760]
S3 BthHFAud;Bluetooth Hands-Free;C:\Windows\System32\Drivers\BthHfAud.sys [2013-3-12 30720]
S3 Desura Install Service;Desura Install Service;C:\Program Files (x86)\Common Files\Desura\desura_service.exe [2013-4-26 131912]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudbus.sys [2014-1-22 108800]
S3 epmntdrv;epmntdrv;C:\Windows\System32\epmntdrv.sys [2014-3-2 17480]
S3 EuGdiDrv;EuGdiDrv;C:\Windows\System32\EuGdiDrv.sys [2014-3-2 9800]
S3 ffusb2audio;Focusrite USB 2.0 Audio Driver;C:\Windows\System32\Drivers\ffusb2audio.sys [2013-11-13 127280]
S3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [2013-6-7 169752]
S3 IntcDAud;Intel® Display Audio;C:\Windows\System32\Drivers\IntcDAud.sys [2013-7-1 342528]
S3 ivusb;Initio Driver for USB Default Controller;C:\Windows\System32\Drivers\ivusb.sys [2010-7-29 29720]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\Drivers\LGBusEnum.sys [2009-11-23 22408]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;C:\Windows\System32\Drivers\LGSHidFilt.Sys [2013-5-30 64280]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\Drivers\LGVirHid.sys [2009-11-23 16008]
S3 rspLLL;rspLLL;C:\Windows\System32\Drivers\rspLLL64.sys [2014-1-14 24672]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudmdm.sys [2014-1-22 206080]
S3 ssudrmnet;SAMSUNG Mobile USB RMNET Drivers;C:\Windows\System32\Drivers\ssudrmnet.sys [2013-10-28 68888]
S3 ssudrmnetmp;SAMSUNG Mobile USB RMNET Network Adapter Drivers;C:\Windows\System32\Drivers\ssudrmnetmp.sys [2013-10-28 92952]
S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);C:\Windows\System32\Drivers\ssudserd.sys [2013-10-28 204568]
S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
S3 vmbusr;Virtual Machine Bus Provider;C:\Windows\System32\Drivers\vmbusr.sys [2012-7-25 117248]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\System32\Drivers\wdcsam64.sys [2008-5-6 14464]
S3 xusb22;Xbox 360 Wireless Receiver Driver Service 22;C:\Windows\System32\Drivers\xusb22.sys [2012-7-25 89088]
.
=============== File Associations ===============
.
FileExt: .txt: Applications\notepad++.exe="D:\Program Files (x86)\Notepad++\notepad++.exe" "%1" [UserChoice]
ShellExec: dreamweaver.exe: Open="D:\Program Files\Adobe\Adobe Dreamweaver CS6\dreamweaver.exe", "%1"
.
=============== Created Last 30 ================
.
2014-06-08 02:48:39 -------- d-----w- C:\ProgramData\BrilliantInstaller
2014-06-07 22:51:13 -------- d-----w- C:\Users\Elliot\AppData\Roaming\foobar2000
2014-06-07 22:35:19 -------- d-----w- C:\Users\Elliot\AppData\Roaming\dBpoweramp
2014-06-07 21:58:03 4949952 ----a-w- C:\Windows\SysWow64\SpoonUninstall.exe
2014-06-07 21:58:01 -------- d-----w- C:\Program Files\dBpoweramp
2014-06-07 16:29:49 111016 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
2014-06-07 16:27:19 98216 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-06-07 16:24:43 -------- d-----w- C:\ProgramData\Oracle
2014-06-06 22:28:27 10702536 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{75104327-E6E7-45FA-B054-F42474246580}\mpengine.dll
2014-06-06 18:18:40 -------- d-----w- C:\Program Files (x86)\Chromium Updater
2014-06-06 17:53:47 -------- d-----w- C:\Windows\ERUNT
2014-06-06 06:52:04 536576 ----a-w- C:\Windows\SysWow64\sqlite3.dll
2014-06-05 19:06:20 10702536 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2014-06-05 04:59:07 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-05 00:59:51 12872 ----a-w- C:\Windows\System32\bootdelete.exe
2014-06-05 00:49:03 -------- d-----w- C:\Program Files\HitmanPro
2014-06-05 00:48:24 -------- d-----w- C:\ProgramData\HitmanPro
2014-06-05 00:46:06 25568 ----a-w- C:\Windows\System32\drivers\KeyCrypt64.sys
2014-06-05 00:46:06 -------- d-----w- C:\Program Files (x86)\KeyCryptSDK
2014-06-05 00:46:04 -------- d-----w- C:\Users\Elliot\AppData\Local\AntiLogger Free
2014-05-30 23:56:24 601432 ----a-w- C:\Windows\SysWow64\nvStreaming.exe
2014-05-30 23:54:54 -------- d-----w- C:\Windows\LastGood.Tmp
2014-05-30 07:04:52 -------- d-----w- C:\Users\Elliot\VirtualBox VMs
2014-05-30 07:00:42 -------- d-----w- C:\Users\Elliot\.VirtualBox
2014-05-30 06:56:57 254240 ----a-w- C:\Windows\System32\drivers\VBoxDrv.sys
2014-05-30 06:56:51 128288 ----a-w- C:\Windows\System32\drivers\VBoxUSBMon.sys
2014-05-20 07:07:08 18760 ----a-w- C:\Windows\SysWow64\QQVistaHelper.dll
2014-05-17 09:42:00 -------- d-----w- C:\Program Files\Speccy
2014-05-16 18:03:30 156448 ----a-w- C:\Windows\System32\drivers\VBoxNetFlt.sys
2014-05-16 18:03:30 141600 ----a-w- C:\Windows\System32\drivers\VBoxNetAdp.sys
2014-05-16 18:01:18 204064 ----a-w- C:\Windows\System32\VBoxNetFltNobj.dll
2014-05-16 10:47:53 1031560 ------w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1DADEE2D-5DEF-4ED6-83B2-32B43B48B465}\gapaengine.dll
2014-05-16 10:46:54 619008 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-05-16 10:46:54 328024 ----a-w- C:\Windows\System32\drivers\Classpnp.sys
2014-05-16 10:46:53 309760 ----a-w- C:\Windows\System32\wusa.exe
2014-05-16 10:46:53 305152 ----a-w- C:\Windows\SysWow64\wusa.exe
2014-05-11 22:03:11 2813544 ----a-w- C:\Windows\System32\RtkAPO64.dll
2014-05-11 03:52:28 -------- d-----w- C:\Users\Elliot\AppData\Local\RECentral
2014-05-11 03:52:28 -------- d-----w- C:\Program Files (x86)\Common Files\AVerMedia
2014-05-10 18:56:32 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2014-05-09 09:52:51 -------- d-----w- C:\Users\Elliot\AppData\Roaming\Subversion
.
==================== Find3M ====================
.
2014-06-08 00:39:48 122584 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-05-20 01:25:42 6769096 ----a-w- C:\Windows\System32\nvcpl.dll
2014-05-20 01:25:42 3514144 ----a-w- C:\Windows\System32\nvsvc64.dll
2014-05-20 01:25:39 927520 ----a-w- C:\Windows\System32\nvvsvc.exe
2014-05-20 01:25:38 62808 ----a-w- C:\Windows\System32\nvshext.dll
2014-05-20 01:25:38 387528 ----a-w- C:\Windows\System32\nvmctray.dll
2014-05-14 23:49:42 3774821 ----a-w- C:\Windows\System32\nvcoproc.bin
2014-05-12 11:26:14 64216 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-05-12 11:26:00 91352 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-05-12 11:25:56 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-05-06 03:37:50 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2014-05-06 03:26:53 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-05-01 20:37:50 78296 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-01 20:37:50 694240 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-19 09:39:36 628024 ----a-w- C:\Windows\System32\NotificationUI.exe
2014-04-19 08:45:39 693760 ----a-w- C:\Windows\System32\WSShared.dll
2014-04-19 08:45:39 163840 ----a-w- C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-19 06:57:49 566784 ----a-w- C:\Windows\SysWow64\WSShared.dll
2014-04-19 06:57:49 124928 ----a-w- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-14 21:26:27 1391104 ----a-w- C:\apploc.msi
2014-04-12 09:27:03 172888 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 09:10:31 578048 ----a-w- C:\Windows\System32\winlogon.exe
2014-04-12 09:09:43 208896 ----a-w- C:\Windows\System32\wdigest.dll
2014-04-12 09:09:39 1043968 ----a-w- C:\Windows\System32\usercpl.dll
2014-04-12 09:09:34 94720 ----a-w- C:\Windows\System32\TSpkg.dll
2014-04-12 09:09:19 588288 ----a-w- C:\Windows\System32\SHCore.dll
2014-04-12 09:08:37 318464 ----a-w- C:\Windows\System32\msv1_0.dll
2014-04-12 09:08:17 439808 ----a-w- C:\Windows\System32\lsm.dll
2014-04-12 09:08:17 1281536 ----a-w- C:\Windows\System32\lsasrv.dll
2014-04-12 09:08:10 827904 ----a-w- C:\Windows\System32\kerberos.dll
2014-04-12 09:07:36 20480 ----a-w- C:\Windows\System32\credssp.dll
2014-04-12 07:23:59 178688 ----a-w- C:\Windows\SysWow64\wdigest.dll
2014-04-12 07:23:52 961536 ----a-w- C:\Windows\SysWow64\usercpl.dll
2014-04-12 07:23:49 76800 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2014-04-12 07:23:40 452608 ----a-w- C:\Windows\SysWow64\SHCore.dll
2014-04-12 07:23:14 273920 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2014-04-12 07:22:58 666624 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-04-12 07:22:33 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
2014-04-12 06:58:06 14848 ----a-w- C:\Windows\System32\workerdd.dll
2014-03-28 19:19:38 35856 ----a-w- C:\Windows\System32\drivers\WdBoot.sys
2014-03-28 08:23:00 1287168 ----a-w- C:\Windows\System32\schedsvc.dll
2014-03-27 12:45:52 1890080 ----a-w- C:\Windows\System32\nvdispco6433750.dll
2014-03-27 12:45:52 1539416 ----a-w- C:\Windows\System32\nvdispgenco6433750.dll
2014-03-23 22:11:52 269592 ----a-w- C:\Windows\System32\drivers\WdFilter.sys
2014-03-11 03:32:43 6987096 ----a-w- C:\Windows\System32\ntoskrnl.exe
2014-03-11 03:25:51 100184 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-03-11 00:41:55 323072 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-03-11 00:41:51 559104 ----a-w- C:\Windows\SysWow64\objsel.dll
2014-03-11 00:41:24 38400 ----a-w- C:\Windows\SysWow64\dimsroam.dll
2014-03-11 00:39:12 35840 ----a-w- C:\Windows\System32\lsass.exe
2014-03-11 00:38:58 27648 ----a-w- C:\Windows\System32\sspisrv.dll
2014-03-11 00:38:58 164864 ----a-w- C:\Windows\System32\sspicli.dll
2014-03-11 00:38:53 419328 ----a-w- C:\Windows\System32\schannel.dll
2014-03-11 00:38:47 684032 ----a-w- C:\Windows\System32\objsel.dll
2014-03-11 00:38:31 982016 ----a-w- C:\Windows\System32\KernelBase.dll
2014-03-11 00:38:23 45056 ----a-w- C:\Windows\System32\dimsroam.dll
2014-03-11 00:38:23 179712 ----a-w- C:\Windows\System32\dpapisrv.dll
2014-03-10 03:05:14 668160 ----a-w- C:\Windows\SysWow64\KernelBase.dll
.
============= FINISH: 23:04:56.71 ===============

Edited by Smashbro29, 07 June 2014 - 10:54 PM.


BC AdBot (Login to Remove)

 


#2 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,030 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:50 AM

Posted 10 June 2014 - 02:50 AM

Hello and Welcome on board Smashbro29 :welcome:,

my Name is Machiavelli and I will assist you with your problem.
If you booted into safe mode on your computer then print my instructions!
I'm in the 'Malware Staff Team' and will provide you with advice:

To remove Malware on a computer can be very complicated. Malware (malicious software) is able to hide and so I may not be able to find it so easily. In order to remove Malware from you Computer, you need to follow my instructions carefully. Don't be worried if you don't know what to do. just ask me! Please stay in contact with me until the problem is fixed.

Below are a few tips:
  • Removing Malware is usually very difficult.
    We need to search and analyse a lot of files. As this is done in our free time, please be patient especially if I don't answer every day!
  • Please follow these instructions
    If you don't follow the instructions your computer may crash. If you fix your PC by yourself, this can be very risky!
  • Please stay in contact with me until your problem is resolved
    As Malware may not be totally removed in one session or in one day, please stay in contact with me until the problem is resolved.
  • Please don't run any other tools without consulting with me as this can complicate finding and removing all Malware
    Don't run any tools while I'm fixing your PC. That is counter productive and again, will only complicate finding and removing all Malware!
  • Read my post completely
    If you don't do so, you may make mistakes that could result in your System crashing by your own actions!
 

Please download FRST (by Farbar) from the link below and save it to your Desktop.

Download Mirror #1

If you are unsure whether you have 32-Bit or 64-Bit Windows, see here
  • Disable all anti-virus and anti-malware software to prevent them inhibiting FRST in any way. If you are unsure how to do this, see THIS.
  • Double-click FRST.exe/FRST64.exe (depending on which version you downloaded) to run it. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • When the disclaimer appears, click Yes.
  • Click Scan to start FRST.
  • When FRST finishes scanning, two logs, FRST.txt and Addition.txt will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of both of these logs into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#3 Smashbro29

Smashbro29
  • Topic Starter

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 10 June 2014 - 03:32 AM

Thanks, I hope we can get it out! It's getting a lot worse and I have made no changes.



FRST:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-06-2014
Ran by Elliot (administrator) on PLAYSATURN64 on 10-06-2014 04:29:57
Running from C:\Users\Elliot\Desktop
Platform: Windows 8 Pro (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Razer Inc.) D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\logishrd\KHAL3\KHALMNPR.exe
() D:\Program Files (x86)\puush\puush.exe
(Flux Software LLC) C:\Users\Elliot\AppData\Local\FluxSoftware\Flux\flux.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Zemana Ltd.) D:\Utilities\Zemana AntiLogger Free\AntiLogger Free.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
() D:\Utilities\AudioSwitcher\switcher.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(Dropbox, Inc.) C:\Users\Elliot\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(The Pidgin developer community) D:\Program Files (x86)\Pidgin\pidgin.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(Slackerhome Productions) D:\Utilities\Better DS3\Better DS3.exe
(Mozilla Corporation) D:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Piotr Pawlowski) D:\Program Files (x86)\foobar2000\foobar2000.exe
(Don HO don.h@free.fr) D:\Program Files (x86)\Notepad++\notepad++.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
() D:\Console and Handheld\Wii\Utilities\ocarina_code_manager\pc\codemgr.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(MPC-BE Team) D:\Program Files (x86)\MPC-BE\mpc-be.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1064224 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM-x32\...\Run: [EaseUS EPM tray] => D:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe [2081792 2013-03-29] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [VirtualCloneDrive] => D:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [ZALFree] => D:\Utilities\Zemana AntiLogger Free\AntiLogger Free.exe [12746616 2014-03-19] (Zemana Ltd.)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Wisdom-soft ScreenHunter 6.0 Free] => 0
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [C3] => C:\Program Files (x86)\Vivox\C3\c3.exe [2848312 2012-10-22] (Vivox)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Google Update] => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-28] (Google Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [uTorrent] => C:\Users\Elliot\AppData\Roaming\uTorrent\uTorrent.exe [1130576 2013-08-17] (BitTorrent Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [puush] => D:\Program Files (x86)\puush\puush.exe [567880 2013-09-12] ()
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [f.lux] => C:\Users\Elliot\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-15] (Flux Software LLC)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [DisplayFusion] => D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [1753280 2014-06-09] (Valve Corporation)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\MountPoints2: {8a3d454d-c92a-11e3-bf17-0026833b2ff7} - "F:\TL_Bootstrap.exe"
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\MountPoints2: {d666ac74-f7e0-11e2-bea8-c8600036c503} - "I:\autorun.exe"
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Wisdom-soft ScreenHunter 6.0 Free] => 0
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [C3] => C:\Program Files (x86)\Vivox\C3\c3.exe [2848312 2012-10-22] (Vivox)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Google Update] => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-28] (Google Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [uTorrent] => C:\Users\Elliot\AppData\Roaming\uTorrent\uTorrent.exe [1130576 2013-08-17] (BitTorrent Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [1753280 2014-06-09] (Valve Corporation)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [puush] => D:\Program Files (x86)\puush\puush.exe [567880 2013-09-12] ()
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [f.lux] => C:\Users\Elliot\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-15] (Flux Software LLC)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [DisplayFusion] => D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\MountPoints2: {8a3d454d-c92a-11e3-bf17-0026833b2ff7} - "F:\TL_Bootstrap.exe"
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\MountPoints2: {d666ac74-f7e0-11e2-bea8-c8600036c503} - "I:\autorun.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Better DS3.exe - Shortcut.lnk
ShortcutTarget: Better DS3.exe - Shortcut.lnk -> D:\Utilities\Better DS3\Better DS3.exe (Slackerhome Productions)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Content Manager Assistant for PlayStation®.lnk
ShortcutTarget: Content Manager Assistant for PlayStation®.lnk -> C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe (Sony Computer Entertainment Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\switcher.exe - Shortcut.lnk
ShortcutTarget: switcher.exe - Shortcut.lnk -> D:\Utilities\AudioSwitcher\switcher.exe ()
Startup: C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DisplayFusion.lnk
ShortcutTarget: DisplayFusion.lnk -> D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (Binary Fortress Software)
Startup: C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Elliot\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xAA6D8554636DCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US,en;q=0.8,he;q=0.5,ja;q=0.3
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - D:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 167.206.254.1 167.206.254.2 167.206.13.180

FireFox:
========
FF ProfilePath: C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 - D:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - D:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.34 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - D:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - D:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @qq.com/npchrome - C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll No File
FF Plugin-x32: @qq.com/npqscall - C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll No File
FF Plugin-x32: @qq.com/TXSSO - C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\Bin\npSSOAxCtrlForPTLogin.dll No File
FF Plugin-x32: @raidcall.en/RCplugin - C:\Users\Elliot\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - D:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Elliot\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Elliot\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Elliot\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Elliot\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Elliot\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Elliot\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Elliot\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: Stylish - C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2014-04-03]
FF Extension: Adblock Plus - C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-05-09]
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-02-14]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - D:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-10-31]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-02-14]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Nightly\firefox.exe

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-09-11] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-09-11] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-09-11] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2012-11-09] (ASUSTeK Computer Inc.) [File not signed]
R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations)
R3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [331776 2012-07-25] (Microsoft Corporation)
R2 DisplayFusionService; D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [1375600 2013-11-27] (Binary Fortress Software)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166680 2012-05-03] (Intel Corporation)
S2 MBAMScheduler; D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-08-26] ()
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2013-08-26] ()
R2 RzKLService; D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2012-04-19] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-09-11] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-14] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
S3 AVer330; C:\Windows\system32\DRIVERS\AVer330.sys [1503744 2013-06-04] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [30720 2013-02-02] (Microsoft Corporation)
R3 CY3014.X64; C:\Windows\SYSTEM32\DRIVERS\CY3014.X64.SYS [3149184 2013-09-27] ()
R3 dvdfab; C:\Windows\System32\drivers\dvdfab.sys [79232 2011-08-15] (Fengtao Software Inc.)
S3 e1cexpress; C:\Windows\system32\DRIVERS\e1c63x64.sys [452432 2013-04-30] (Intel Corporation)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
S3 ffusb2audio; C:\Windows\system32\DRIVERS\ffusb2audio.sys [127280 2013-10-07] (Focusrite Audio Engineering Limited.)
R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [25568 2014-03-19] (Zemana Ltd.)
S3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R1 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-09-27] (NVIDIA Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 rspLLL; C:\Windows\System32\DRIVERS\rspLLL64.sys [24672 2012-07-22] (Resplendence Software Projects Sp.)
R3 rusb3hub; C:\Windows\system32\DRIVERS\rusb3hub.sys [114568 2012-08-27] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\system32\DRIVERS\rusb3xhc.sys [230280 2012-08-27] (Renesas Electronics Corporation)
S3 ssudrmnet; C:\Windows\system32\DRIVERS\ssudrmnet.sys [68888 2013-10-28] (DEVGURU Co., LTD.)
S3 ssudrmnetmp; C:\Windows\system32\DRIVERS\ssudrmnetmp.sys [92952 2013-10-28] (DEVGURU Co., LTD.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [204568 2013-10-28] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 VBAudioVACAMME; C:\Windows\system32\DRIVERS\vbaudio_cablea64_win7.sys [41192 2013-07-22] (Windows ® Win 7 DDK provider)
R3 VBAudioVACBMME; C:\Windows\system32\DRIVERS\vbaudio_cableb64_win7.sys [41192 2013-07-22] (Windows ® Win 7 DDK provider)
R3 VBAudioVACMME; C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows ® Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\Windows\system32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2013-08-17] (Windows ® Win 7 DDK provider)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-25] (Microsoft Corporation)
S3 cpuz136; \??\C:\Users\Elliot\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X]
S3 GPU-Z; \??\C:\Users\Elliot\AppData\Local\Temp\GPU-Z.sys [X]
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-10 04:29 - 2014-06-10 04:30 - 00027456 _____ () C:\Users\Elliot\Desktop\FRST.txt
2014-06-10 04:29 - 2014-06-10 04:30 - 00000000 ____D () C:\FRST
2014-06-10 04:28 - 2014-06-10 04:28 - 02080768 _____ (Farbar) C:\Users\Elliot\Desktop\FRST64.exe
2014-06-09 07:23 - 2014-06-09 07:23 - 00000000 ____D () C:\Windows\LastGood
2014-06-07 23:04 - 2014-06-07 23:04 - 00029951 _____ () C:\Users\Elliot\Desktop\dds.txt
2014-06-07 23:04 - 2014-06-07 23:04 - 00009609 _____ () C:\Users\Elliot\Desktop\attach.txt
2014-06-07 23:03 - 2014-06-07 23:03 - 00688992 ____R (Swearware) C:\Users\Elliot\Desktop\dds.com
2014-06-07 20:39 - 2014-06-07 20:39 - 00297984 _____ () C:\Windows\Minidump\060714-54281-01.dmp
2014-06-07 18:51 - 2014-06-07 22:20 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\foobar2000
2014-06-07 18:51 - 2014-06-07 18:51 - 00000810 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2014-06-07 18:35 - 2014-06-07 18:35 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 04949952 _____ () C:\Windows\SysWOW64\SpoonUninstall.exe
2014-06-07 17:58 - 2014-06-07 17:58 - 00015932 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00013434 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp DSP Effects.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00000863 _____ () C:\Users\Elliot\Desktop\dBpoweramp Batch Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000858 _____ () C:\Users\Elliot\Desktop\dBpoweramp Music Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000816 _____ () C:\Users\Elliot\Desktop\dBpoweramp CD Ripper.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\Program Files\dBpoweramp
2014-06-07 12:29 - 2014-06-07 12:29 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-07 12:24 - 2014-06-07 12:27 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-06 14:18 - 2014-06-06 14:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chromium Updater
2014-06-06 14:18 - 2014-06-06 14:19 - 00000000 ____D () C:\Program Files (x86)\Chromium Updater
2014-06-06 14:18 - 2014-06-06 14:18 - 00733596 _____ (logicPwn ) C:\Users\Elliot\Downloads\cu_1600_installer.exe
2014-06-06 13:58 - 2014-06-06 13:58 - 00000831 _____ () C:\Users\Elliot\Desktop\JRT.txt
2014-06-06 13:53 - 2014-06-06 13:53 - 00000000 ____D () C:\Windows\ERUNT
2014-06-06 13:51 - 2014-06-06 13:51 - 01016261 _____ (Thisisu) C:\Users\Elliot\Desktop\JRT.exe
2014-06-06 02:52 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-06 02:47 - 2014-06-06 02:47 - 01333465 _____ () C:\Users\Elliot\Desktop\adwcleaner_3.212.exe
2014-06-06 02:40 - 2014-06-06 02:40 - 00448512 _____ (OldTimer Tools) C:\Users\Elliot\Desktop\TFC.exe
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\2C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C04
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0816
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0804
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0424
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041F
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0419
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0416
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0415
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0414
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0413
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0412
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0411
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0410
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040C
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0409
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0408
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0407
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0406
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0405
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0404
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0401
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-06-05 01:16 - 2014-06-05 01:16 - 01940216 _____ (Bleeping Computer, LLC) C:\Users\Elliot\Desktop\rkill.exe
2014-06-05 01:16 - 2014-06-05 01:16 - 00003852 _____ () C:\Users\Elliot\Desktop\Rkill.txt
2014-06-05 00:59 - 2014-06-05 01:08 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-04 23:34 - 2014-06-04 23:33 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Elliot\Desktop\mbar-1.07.0.1009.exe
2014-06-04 20:59 - 2014-06-04 20:59 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2014-06-04 20:49 - 2014-06-04 20:49 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-04 20:48 - 2014-06-04 21:00 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Users\Elliot\AppData\Local\AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Program Files (x86)\KeyCryptSDK
2014-06-04 20:46 - 2014-03-19 13:38 - 00025568 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\KeyCrypt64.sys
2014-05-30 19:56 - 2014-05-19 19:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-30 19:54 - 2014-06-05 17:46 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-05-30 19:53 - 2014-05-19 22:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-30 19:53 - 2014-05-19 22:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00416712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00382240 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00335704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-30 03:04 - 2014-05-30 03:28 - 00000000 ____D () C:\Users\Elliot\VirtualBox VMs
2014-05-30 03:00 - 2014-05-30 03:27 - 00000000 ____D () C:\Users\Elliot\.VirtualBox
2014-05-30 02:57 - 2014-05-30 02:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2014-05-30 02:56 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-05-30 02:56 - 2014-05-16 14:03 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\Users\Public\Desktop\Double Dragon Neon.lnk
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Double Dragon Neon.lnk
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-20 03:52 - 2014-05-20 03:52 - 00000000 ____D () C:\Users\Elliot\Documents\Tencent Files
2014-05-20 03:11 - 2014-05-20 03:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2014-05-20 03:07 - 2009-02-18 02:51 - 00018760 _____ () C:\Windows\SysWOW64\QQVistaHelper.dll
2014-05-20 00:21 - 2014-05-20 00:21 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Sun
2014-05-18 16:38 - 2014-05-18 16:38 - 00298232 _____ () C:\Windows\Minidump\051814-39906-01.dmp
2014-05-17 05:42 - 2014-05-17 05:42 - 00000796 _____ () C:\Users\Public\Desktop\Speccy.lnk
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\Program Files\Speccy
2014-05-17 04:43 - 2014-05-17 04:43 - 00000918 _____ () C:\Users\Elliot\Desktop\WBFS Manager 3.0.lnk
2014-05-16 14:03 - 2014-05-16 14:03 - 00156448 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetFlt.sys
2014-05-16 14:03 - 2014-05-16 14:03 - 00141600 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp.sys
2014-05-16 14:01 - 2014-05-16 14:01 - 00204064 _____ (Oracle Corporation) C:\Windows\system32\VBoxNetFltNobj.dll
2014-05-16 06:46 - 2014-04-03 07:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-05-16 06:46 - 2014-04-02 23:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-05-16 06:46 - 2014-03-31 18:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-05-16 06:46 - 2014-03-24 19:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-05-16 06:46 - 2014-03-24 18:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-05-14 06:11 - 2014-05-06 01:14 - 19274752 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 06:11 - 2014-05-06 01:14 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 06:11 - 2014-05-05 23:48 - 14367232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 06:11 - 2014-05-05 23:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 06:11 - 2014-05-05 23:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 06:11 - 2014-05-05 23:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 06:11 - 2014-04-12 05:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 06:11 - 2014-04-12 05:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 06:11 - 2014-04-12 05:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-05-14 06:11 - 2014-04-12 05:09 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-05-14 06:11 - 2014-04-12 05:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 06:11 - 2014-04-12 05:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 06:11 - 2014-04-12 05:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 06:11 - 2014-04-12 03:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 06:11 - 2014-04-12 03:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 06:11 - 2014-04-12 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-05-14 06:11 - 2014-03-28 15:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-05-14 06:11 - 2014-03-28 04:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 06:11 - 2014-03-28 04:23 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-05-14 06:11 - 2014-03-28 02:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 06:11 - 2014-03-23 18:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-05-14 06:11 - 2014-03-10 23:32 - 06987096 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 06:11 - 2014-03-10 23:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 06:11 - 2014-03-10 20:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 06:11 - 2014-03-10 20:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 06:11 - 2014-03-10 20:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 06:11 - 2014-03-10 20:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 06:11 - 2014-03-10 20:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 06:11 - 2014-03-09 23:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-14 06:11 - 2014-03-09 21:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 06:11 - 2014-03-03 19:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-05-14 05:20 - 2014-05-14 05:20 - 00299672 _____ () C:\Windows\Minidump\051414-31468-01.dmp
2014-05-14 03:42 - 2014-05-14 03:42 - 00298160 _____ () C:\Windows\Minidump\051414-20718-01.dmp
2014-05-11 22:46 - 2014-05-11 22:46 - 00000692 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-05-11 22:46 - 2014-05-11 22:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-11 18:03 - 2014-05-11 18:03 - 00003416 _____ () C:\Windows\System32\Tasks\{CB255633-EA23-4530-B825-A0313DEF20E1}
2014-05-11 18:03 - 2010-11-18 15:01 - 02813544 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-05-11 17:19 - 2014-05-14 03:40 - 00140839 ____N () C:\Windows\Minidump\051414-11890-01.dmp

==================== One Month Modified Files and Folders =======

2014-06-10 04:30 - 2014-06-10 04:29 - 00027456 _____ () C:\Users\Elliot\Desktop\FRST.txt
2014-06-10 04:30 - 2014-06-10 04:29 - 00000000 ____D () C:\FRST
2014-06-10 04:30 - 2013-02-28 05:50 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Temp
2014-06-10 04:29 - 2013-02-28 06:10 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Skype
2014-06-10 04:29 - 2013-02-28 06:07 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\.purple
2014-06-10 04:28 - 2014-06-10 04:28 - 02080768 _____ (Farbar) C:\Users\Elliot\Desktop\FRST64.exe
2014-06-10 04:00 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\sru
2014-06-10 03:50 - 2013-04-19 18:04 - 00000938 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001UA.job
2014-06-10 03:40 - 2013-12-07 23:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-10 03:29 - 2013-02-28 05:51 - 01088308 _____ () C:\Windows\WindowsUpdate.log
2014-06-10 03:23 - 2013-02-28 05:58 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2549689781-2079618573-4062338913-1001
2014-06-10 01:50 - 2013-04-19 18:04 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001Core.job
2014-06-10 00:23 - 2013-03-28 19:02 - 00417088 _____ () C:\Windows\system32\perfh00D.dat
2014-06-10 00:23 - 2013-03-28 19:02 - 00065090 _____ () C:\Windows\system32\perfc00D.dat
2014-06-10 00:23 - 2012-07-26 03:28 - 01320710 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-09 19:32 - 2013-08-12 18:00 - 00217600 _____ () C:\Users\Elliot\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-09 07:23 - 2014-06-09 07:23 - 00000000 ____D () C:\Windows\LastGood
2014-06-09 07:23 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-09 07:23 - 2012-07-26 03:21 - 00151085 _____ () C:\Windows\setupact.log
2014-06-09 03:58 - 2014-04-16 22:34 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-08 19:40 - 2013-03-20 20:57 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-07 23:04 - 2014-06-07 23:04 - 00029951 _____ () C:\Users\Elliot\Desktop\dds.txt
2014-06-07 23:04 - 2014-06-07 23:04 - 00009609 _____ () C:\Users\Elliot\Desktop\attach.txt
2014-06-07 23:03 - 2014-06-07 23:03 - 00688992 ____R (Swearware) C:\Users\Elliot\Desktop\dds.com
2014-06-07 22:20 - 2014-06-07 18:51 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\foobar2000
2014-06-07 20:41 - 2013-02-28 17:31 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Dropbox
2014-06-07 20:40 - 2014-05-04 16:23 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\DropboxMaster
2014-06-07 20:39 - 2014-06-07 20:39 - 00297984 _____ () C:\Windows\Minidump\060714-54281-01.dmp
2014-06-07 20:39 - 2013-03-26 18:08 - 00000000 ____D () C:\Windows\Minidump
2014-06-07 20:38 - 2013-02-28 06:47 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-07 20:38 - 2013-02-28 05:45 - 00068330 _____ () C:\Windows\PFRO.log
2014-06-07 20:38 - 2012-07-26 03:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-07 18:51 - 2014-06-07 18:51 - 00000810 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2014-06-07 18:46 - 2014-01-01 03:03 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\deluge
2014-06-07 18:35 - 2014-06-07 18:35 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 04949952 _____ () C:\Windows\SysWOW64\SpoonUninstall.exe
2014-06-07 17:58 - 2014-06-07 17:58 - 00015932 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00013434 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp DSP Effects.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00000863 _____ () C:\Users\Elliot\Desktop\dBpoweramp Batch Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000858 _____ () C:\Users\Elliot\Desktop\dBpoweramp Music Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000816 _____ () C:\Users\Elliot\Desktop\dBpoweramp CD Ripper.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\Program Files\dBpoweramp
2014-06-07 12:29 - 2014-06-07 12:29 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-07 12:27 - 2014-06-07 12:24 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-07 10:50 - 2013-02-28 06:30 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Mozilla
2014-06-07 00:29 - 2012-07-26 01:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-06-07 00:18 - 2013-02-28 06:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-06 20:50 - 2014-02-07 22:57 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-06 20:50 - 2013-02-28 06:10 - 00000000 ____D () C:\ProgramData\Skype
2014-06-06 14:19 - 2014-06-06 14:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chromium Updater
2014-06-06 14:19 - 2014-06-06 14:18 - 00000000 ____D () C:\Program Files (x86)\Chromium Updater
2014-06-06 14:19 - 2013-12-09 18:29 - 00002262 _____ () C:\Users\Elliot\Desktop\Chromium.lnk
2014-06-06 14:19 - 2013-12-09 15:44 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Chromium
2014-06-06 14:18 - 2014-06-06 14:18 - 00733596 _____ (logicPwn ) C:\Users\Elliot\Downloads\cu_1600_installer.exe
2014-06-06 13:58 - 2014-06-06 13:58 - 00000831 _____ () C:\Users\Elliot\Desktop\JRT.txt
2014-06-06 13:53 - 2014-06-06 13:53 - 00000000 ____D () C:\Windows\ERUNT
2014-06-06 13:51 - 2014-06-06 13:51 - 01016261 _____ (Thisisu) C:\Users\Elliot\Desktop\JRT.exe
2014-06-06 13:42 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-06 02:52 - 2013-11-05 16:51 - 00000000 ____D () C:\AdwCleaner
2014-06-06 02:47 - 2014-06-06 02:47 - 01333465 _____ () C:\Users\Elliot\Desktop\adwcleaner_3.212.exe
2014-06-06 02:40 - 2014-06-06 02:40 - 00448512 _____ (OldTimer Tools) C:\Users\Elliot\Desktop\TFC.exe
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\2C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C04
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0816
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0804
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0424
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041F
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0419
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0416
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0415
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0414
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0413
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0412
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0411
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0410
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040C
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0409
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0408
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0407
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0406
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0405
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0404
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0401
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-06-05 17:51 - 2013-02-28 07:21 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-05 17:46 - 2014-05-30 19:54 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-06-05 15:05 - 2013-05-22 23:52 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Temp
2014-06-05 01:16 - 2014-06-05 01:16 - 01940216 _____ (Bleeping Computer, LLC) C:\Users\Elliot\Desktop\rkill.exe
2014-06-05 01:16 - 2014-06-05 01:16 - 00003852 _____ () C:\Users\Elliot\Desktop\Rkill.txt
2014-06-05 01:08 - 2014-06-05 00:59 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-04 23:33 - 2014-06-04 23:34 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Elliot\Desktop\mbar-1.07.0.1009.exe
2014-06-04 21:00 - 2014-06-04 20:48 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-04 20:59 - 2014-06-04 20:59 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2014-06-04 20:49 - 2014-06-04 20:49 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Users\Elliot\AppData\Local\AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Program Files (x86)\KeyCryptSDK
2014-06-04 10:48 - 2014-01-27 22:02 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Logitech
2014-06-04 10:48 - 2013-04-22 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-06-03 02:10 - 2014-04-16 22:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-01 02:08 - 2014-04-05 19:58 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\tixati
2014-05-31 20:57 - 2013-07-20 13:58 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Trine2
2014-05-31 08:06 - 2013-02-28 12:25 - 00883891 _____ () C:\Windows\DirectX.log
2014-05-31 07:49 - 2013-02-28 06:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-30 20:00 - 2013-02-28 05:50 - 00000000 ____D () C:\Users\Elliot
2014-05-30 19:56 - 2013-02-28 05:56 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-30 19:46 - 2013-02-28 06:44 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Notepad++
2014-05-30 03:28 - 2014-05-30 03:04 - 00000000 ____D () C:\Users\Elliot\VirtualBox VMs
2014-05-30 03:27 - 2014-05-30 03:00 - 00000000 ____D () C:\Users\Elliot\.VirtualBox
2014-05-30 02:57 - 2014-05-30 02:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2014-05-29 21:44 - 2014-01-11 11:19 - 00000000 ____D () C:\ProgramData\Steam
2014-05-29 21:44 - 2013-08-13 13:23 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Wayforward Technologies
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\Users\Public\Desktop\Double Dragon Neon.lnk
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Double Dragon Neon.lnk
2014-05-29 16:01 - 2013-12-14 02:29 - 00001024 _____ () C:\Users\Elliot\Desktop\Dropbox.lnk
2014-05-29 16:01 - 2013-12-14 02:23 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-29 16:01 - 2013-02-28 05:51 - 00000000 ___RD () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-24 18:49 - 2013-09-29 06:06 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\DisplayFusion
2014-05-24 15:09 - 2013-02-21 18:22 - 00000000 ____D () C:\Users\Elliot\Documents\SEGA
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-23 16:52 - 2013-07-04 15:03 - 00000132 _____ () C:\Users\Elliot\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-05-22 19:15 - 2014-02-16 17:03 - 00000000 ____D () C:\Program Files\OBS
2014-05-21 12:01 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\rescache
2014-05-20 03:52 - 2014-05-20 03:52 - 00000000 ____D () C:\Users\Elliot\Documents\Tencent Files
2014-05-20 03:11 - 2014-05-20 03:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2014-05-20 00:21 - 2014-05-20 00:21 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Sun
2014-05-19 22:44 - 2014-05-30 19:53 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-19 22:44 - 2014-05-30 19:53 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00416712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00382240 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00335704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-19 22:44 - 2014-01-25 16:00 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-05-19 22:44 - 2013-10-27 15:08 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2014-05-19 22:44 - 2012-07-25 16:22 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-05-19 21:25 - 2013-04-23 21:49 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-05-19 19:10 - 2014-05-30 19:56 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-18 16:38 - 2014-05-18 16:38 - 00298232 _____ () C:\Windows\Minidump\051814-39906-01.dmp
2014-05-18 03:19 - 2013-04-05 21:44 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\RenPy
2014-05-17 07:14 - 2014-02-02 21:59 - 00041984 ___SH () C:\Users\Elliot\Downloads\Thumbs.db
2014-05-17 05:42 - 2014-05-17 05:42 - 00000796 _____ () C:\Users\Public\Desktop\Speccy.lnk
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\Program Files\Speccy
2014-05-17 04:44 - 2013-03-05 16:53 - 00000000 ____D () C:\Users\Elliot\AppData\Local\WBFSManager
2014-05-17 04:43 - 2014-05-17 04:43 - 00000918 _____ () C:\Users\Elliot\Desktop\WBFS Manager 3.0.lnk
2014-05-17 04:43 - 2013-03-05 16:52 - 00000000 ____D () C:\Users\Elliot\Documents\WBFS Manager Covers
2014-05-16 14:04 - 2014-05-30 02:56 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-05-16 14:03 - 2014-05-30 02:56 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2014-05-16 14:03 - 2014-05-16 14:03 - 00156448 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetFlt.sys
2014-05-16 14:03 - 2014-05-16 14:03 - 00141600 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp.sys
2014-05-16 14:01 - 2014-05-16 14:01 - 00204064 _____ (Oracle Corporation) C:\Windows\system32\VBoxNetFltNobj.dll
2014-05-16 10:27 - 2013-02-28 07:14 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\vlc
2014-05-16 06:47 - 2012-07-26 03:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-05-16 06:43 - 2013-02-28 05:51 - 00000000 ___RD () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\ToastData
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\he-IL
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-14 19:49 - 2013-04-23 21:49 - 03774821 _____ () C:\Windows\system32\nvcoproc.bin
2014-05-14 09:40 - 2013-08-16 08:20 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 05:20 - 2014-05-14 05:20 - 00299672 _____ () C:\Windows\Minidump\051414-31468-01.dmp
2014-05-14 03:42 - 2014-05-14 03:42 - 00298160 _____ () C:\Windows\Minidump\051414-20718-01.dmp
2014-05-14 03:40 - 2014-05-11 17:19 - 00140839 ____N () C:\Windows\Minidump\051414-11890-01.dmp
2014-05-13 14:40 - 2013-12-07 23:03 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-12 07:26 - 2014-04-16 22:34 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-04-16 22:34 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2013-02-28 06:27 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-11 23:04 - 2014-03-18 20:05 - 04965360 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-11 22:46 - 2014-05-11 22:46 - 00000692 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-05-11 22:46 - 2014-05-11 22:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-11 18:07 - 2013-03-01 02:44 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-05-11 18:03 - 2014-05-11 18:03 - 00003416 _____ () C:\Windows\System32\Tasks\{CB255633-EA23-4530-B825-A0313DEF20E1}
2014-05-11 18:03 - 2013-02-28 07:17 - 00001769 _____ () C:\Windows\Language_trs.ini
2014-05-11 17:19 - 2012-07-26 01:37 - 00000000 ____D () C:\Windows\servicing
2014-05-11 17:18 - 2012-07-26 04:12 - 00000000 __RHD () C:\Users\Public\Libraries
2014-05-11 17:18 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\WinStore
2014-05-11 17:18 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-05-11 17:18 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-05-11 17:18 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-05-11 17:17 - 2013-09-12 22:23 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\puush
2014-05-11 17:17 - 2013-08-03 16:27 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\IrfanView
2014-05-11 17:17 - 2013-05-07 03:55 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\OBS
2014-05-11 17:16 - 2014-05-07 22:46 - 00000000 ____D () C:\ProgramData\MFAData
2014-05-11 17:16 - 2013-04-25 23:49 - 00000000 ____D () C:\Program Files\Bonjour
2014-05-11 17:16 - 2013-04-25 23:49 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-05-11 17:16 - 2013-04-09 03:25 - 00000000 ____D () C:\Program Files (x86)\BandiMPEG1
2014-05-11 17:16 - 2012-07-26 04:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2014-05-11 17:15 - 2014-05-10 23:52 - 00000000 ____D () C:\Users\Elliot\AppData\Local\RECentral
2014-05-11 17:15 - 2014-05-10 23:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVerMedia
2014-05-11 17:15 - 2014-05-09 05:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oni AE
2014-05-11 17:14 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\registration
2014-05-11 17:13 - 2013-03-28 19:02 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Web
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Vss
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\WindowsPowerShell
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\spp
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\Speech
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\networklist
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\MsDtc
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\Licenses
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\InstallShield
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\IME
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\he-IL
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\Com
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\spp
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\spool
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\Speech
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\networklist
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\MUI
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\MsDtc
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\migwiz
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\Licenses
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\IME
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\Com
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Speech
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\security
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\schemas
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Resources
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\PLA
2014-05-11 17:13 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Performance
2014-05-11 17:13 - 2012-07-26 03:53 - 00000000 ____D () C:\Windows\SKB
2014-05-11 17:13 - 2012-07-26 03:50 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-05-11 17:13 - 2012-07-26 03:50 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-05-11 17:13 - 2012-07-26 03:50 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-05-11 17:13 - 2012-07-26 03:50 - 00000000 ____D () C:\Windows\system32\winrm
2014-05-11 17:13 - 2012-07-26 03:50 - 00000000 ____D () C:\Windows\system32\slmgr
2014-05-11 17:13 - 2012-07-26 03:50 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-05-11 17:13 - 2012-07-26 03:20 - 00000000 ____D () C:\Windows\Setup
2014-05-11 17:13 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-05-11 17:13 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-05-11 17:13 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\system32\Sysprep
2014-05-11 17:13 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\system32\SMI
2014-05-11 17:13 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\system32\oobe
2014-05-11 17:13 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\system32\Dism
2014-05-11 17:12 - 2014-05-06 21:31 - 00000000 ____D () C:\Program Files (x86)\VideoKeeper2
2014-05-11 17:12 - 2014-04-17 01:21 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-05-11 17:12 - 2014-02-16 17:03 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-05-11 17:12 - 2014-02-14 02:56 - 00000000 ____D () C:\Program Files\Logitech
2014-05-11 17:12 - 2014-02-07 22:57 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Skype
2014-05-11 17:12 - 2014-01-25 22:24 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\FLEXnet
2014-05-11 17:12 - 2014-01-25 22:13 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-05-11 17:12 - 2014-01-23 20:18 - 00000000 ____D () C:\Users\Elliot\Documents\Image-Line
2014-05-11 17:12 - 2014-01-23 20:18 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\FlowStone
2014-05-11 17:12 - 2014-01-23 20:18 - 00000000 ____D () C:\Program Files\Image-Line
2014-05-11 17:12 - 2014-01-23 20:18 - 00000000 ____D () C:\Program Files (x86)\DSPRobotics
2014-05-11 17:12 - 2014-01-23 20:14 - 00000000 ____D () C:\Program Files (x86)\Image-Line
2014-05-11 17:12 - 2014-01-18 16:19 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Razer_Inc
2014-05-11 17:12 - 2014-01-18 16:18 - 00000000 ____D () C:\ProgramData\Razer
2014-05-11 17:12 - 2014-01-18 16:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-11 17:12 - 2013-12-04 16:55 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-05-11 17:12 - 2013-11-26 21:27 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\GameMaker-Studio
2014-05-11 17:12 - 2013-11-26 21:26 - 00000000 ____D () C:\Users\Elliot\AppData\Local\YoYo_Games_Ltd
2014-05-11 17:12 - 2013-10-30 22:35 - 00000000 __HDC () C:\ProgramData\{6C59654A-D729-48A4-B2F9-52C5190F9947}
2014-05-11 17:12 - 2013-10-30 22:35 - 00000000 ____D () C:\ProgramData\FlashFXP
2014-05-11 17:12 - 2013-10-19 11:21 - 00000000 ____D () C:\Users\Elliot\AppData\Local\FluxSoftware
2014-05-11 17:12 - 2013-10-13 18:51 - 00000000 ____D () C:\Program Files (x86)\AVerMedia
2014-05-11 17:12 - 2013-09-20 21:24 - 00000000 ____D () C:\Users\Elliot\Documents\Dolphin Emulator
2014-05-11 17:12 - 2013-09-06 03:33 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab
2014-05-11 17:12 - 2013-09-06 03:33 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2014-05-11 17:12 - 2013-08-27 11:20 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\raidcall
2014-05-11 17:12 - 2013-08-26 18:57 - 00000000 ____D () C:\Users\Elliot\Documents\EA Games
2014-05-11 17:12 - 2013-08-19 04:24 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Orekaria
2014-05-11 17:12 - 2013-08-17 07:37 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio
2014-05-11 17:12 - 2013-08-17 07:37 - 00000000 ____D () C:\Program Files\VB
2014-05-11 17:12 - 2013-08-17 07:37 - 00000000 ____D () C:\Program Files (x86)\VB
2014-05-11 17:12 - 2013-07-29 23:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2014-05-11 17:12 - 2013-07-17 06:03 - 00000000 ____D () C:\Users\Elliot\AppData\Local\CAPCOM
2014-05-11 17:12 - 2013-07-15 00:44 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\mIRC
2014-05-11 17:12 - 2013-07-03 18:50 - 00000000 ____D () C:\Users\Elliot\Documents\NIGORO
2014-05-11 17:12 - 2013-06-30 05:17 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Rockstar Games
2014-05-11 17:12 - 2013-06-29 01:37 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Unity
2014-05-11 17:12 - 2013-06-25 23:03 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\uTorrent
2014-05-11 17:12 - 2013-06-21 10:37 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\offspringfling
2014-05-11 17:12 - 2013-06-16 13:09 - 00000000 ____D () C:\Users\Elliot\AppData\Local\dantarion.com
2014-05-11 17:12 - 2013-06-07 00:56 - 00000000 ____D () C:\Program Files\ASUS
2014-05-11 17:12 - 2013-06-07 00:55 - 00000000 ____D () C:\Program Files (x86)\ASM104xUSB3
2014-05-11 17:12 - 2013-06-07 00:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2014-05-11 17:12 - 2013-06-07 00:30 - 00000000 ____D () C:\ProgramData\ASUS
2014-05-11 17:12 - 2013-06-07 00:27 - 00000000 ____D () C:\ProgramData\Intel
2014-05-11 17:12 - 2013-06-05 16:51 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\REAPER
2014-05-11 17:12 - 2013-06-05 16:51 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2014-05-11 17:12 - 2013-06-04 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novation
2014-05-11 17:12 - 2013-06-04 19:55 - 00000000 ____D () C:\Users\Elliot\Documents\Ableton
2014-05-11 17:12 - 2013-06-04 19:55 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Ableton
2014-05-11 17:12 - 2013-06-04 19:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ableton
2014-05-11 17:12 - 2013-06-04 19:04 - 00000000 ____D () C:\Program Files\DIFX
2014-05-11 17:12 - 2013-06-04 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Focusrite
2014-05-11 17:12 - 2013-05-28 21:57 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2014-05-11 17:12 - 2013-05-22 23:52 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Macromedia
2014-05-11 17:12 - 2013-05-22 23:50 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Downloaded Installations
2014-05-11 17:12 - 2013-05-22 23:50 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-05-11 17:12 - 2013-05-09 10:02 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Mozilla
2014-05-11 17:12 - 2013-04-30 19:11 - 00000000 ____D () C:\Program Files\Intel
2014-05-11 17:12 - 2013-04-26 19:24 - 00000000 ____D () C:\ProgramData\Desura
2014-05-11 17:12 - 2013-04-22 18:32 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Logitech® Webcam Software
2014-05-11 17:12 - 2013-04-22 18:32 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-05-11 17:12 - 2013-04-12 15:01 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\StepMania 5
2014-05-11 17:12 - 2013-04-09 03:26 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\BANDISOFT
2014-05-11 17:12 - 2013-04-03 13:38 - 00000000 ____D () C:\Program Files (x86)\Vivox
2014-05-11 17:12 - 2013-04-01 21:16 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\MotioninJoy
2014-05-11 17:12 - 2013-03-25 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
2014-05-11 17:12 - 2013-03-25 14:57 - 00000000 ____D () C:\Users\Elliot\.swt
2014-05-11 17:12 - 2013-03-05 16:28 - 00000000 ____D () C:\NVIDIA
2014-05-11 17:12 - 2013-03-05 03:37 - 00000000 ____D () C:\Users\Elliot\AppData\Local\join.me
2014-05-11 17:12 - 2013-03-03 03:02 - 00000000 ____D () C:\ProgramData\Apple
2014-05-11 17:12 - 2013-03-02 15:22 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-05-11 17:12 - 2013-03-02 07:00 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Criterion Games
2014-05-11 17:12 - 2013-03-01 05:42 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Microsoft_Corporation
2014-05-11 17:12 - 2013-03-01 02:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-05-11 17:12 - 2013-03-01 01:40 - 00000000 ____D () C:\ProgramData\Sony
2014-05-11 17:12 - 2013-03-01 01:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-05-11 17:12 - 2013-03-01 01:40 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-05-11 17:12 - 2013-03-01 00:50 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Sony
2014-05-11 17:12 - 2013-03-01 00:48 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Sony
2014-05-11 17:12 - 2013-03-01 00:30 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\LibreOffice
2014-05-11 17:12 - 2013-02-28 23:28 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Dxtory Software
2014-05-11 17:12 - 2013-02-28 18:19 - 00000000 ____D () C:\Users\Elliot\AppData\Local\NVIDIA
2014-05-11 17:12 - 2013-02-28 17:43 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2014-05-11 17:12 - 2013-02-28 17:30 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-05-11 17:12 - 2013-02-28 17:30 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-05-11 17:12 - 2013-02-28 12:30 - 00000000 ____D () C:\Windows\Driver Cache
2014-05-11 17:12 - 2013-02-28 12:24 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-11 17:12 - 2013-02-28 12:22 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\SplitMediaLabs
2014-05-11 17:12 - 2013-02-28 12:22 - 00000000 ____D () C:\Users\Elliot\AppData\Local\SplitMediaLabs
2014-05-11 17:12 - 2013-02-28 12:22 - 00000000 ____D () C:\ProgramData\SplitMediaLabs
2014-05-11 17:12 - 2013-02-28 11:53 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-05-11 17:12 - 2013-02-28 11:53 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-05-11 17:12 - 2013-02-28 11:53 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-11 17:12 - 2013-02-28 11:46 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-11 17:12 - 2013-02-28 07:22 - 00000000 ____D () C:\Program Files (x86)\ASUS
2014-05-11 17:12 - 2013-02-28 07:21 - 00000000 ____D () C:\ProgramData\InstallShield
2014-05-11 17:12 - 2013-02-28 07:21 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-05-11 17:12 - 2013-02-28 07:10 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Macromedia
2014-05-11 17:12 - 2013-02-28 06:47 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-05-11 17:12 - 2013-02-28 06:30 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Thunderbird
2014-05-11 17:12 - 2013-02-28 06:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-11 17:12 - 2013-02-28 06:22 - 00000000 ____D () C:\Users\Elliot\Documents\my games
2014-05-11 17:12 - 2013-02-28 06:20 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-05-11 17:12 - 2013-02-28 06:20 - 00000000 ____D () C:\Program Files\MSBuild
2014-05-11 17:12 - 2013-02-28 06:20 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies
2014-05-11 17:12 - 2013-02-28 06:20 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-05-11 17:12 - 2013-02-28 06:00 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Google
2014-05-11 17:12 - 2013-02-28 05:56 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-05-11 17:12 - 2013-02-28 05:52 - 00000000 ____D () C:\Program Files\Common Files\logishrd
2014-05-11 17:12 - 2013-02-28 05:51 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Adobe
2014-05-11 17:12 - 2013-02-28 05:51 - 00000000 ____D () C:\Users\Elliot\AppData\Local\VirtualStore
2014-05-11 17:12 - 2013-02-28 05:51 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Packages
2014-05-11 17:12 - 2013-02-21 18:22 - 00000000 ____D () C:\Users\Elliot\Documents\WB Games
2014-05-11 17:12 - 2013-02-21 18:22 - 00000000 ____D () C:\Users\Elliot\Documents\Square Enix
2014-05-11 17:12 - 2013-02-21 18:22 - 00000000 ____D () C:\Users\Elliot\Documents\SavedGames
2014-05-11 17:12 - 2013-02-21 18:22 - 00000000 ____D () C:\Users\Elliot\Documents\PCSX2
2014-05-11 17:12 - 2013-02-21 18:21 - 00000000 ____D () C:\Users\Elliot\Documents\CAPCOM
2014-05-11 17:12 - 2013-02-21 18:21 - 00000000 ____D () C:\Users\Elliot\Documents\Amnesia
2014-05-11 17:12 - 2013-02-21 18:21 - 00000000 ____D () C:\Users\Elliot\Documents\Almost Human
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\DesktopTileResources
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\IME
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Help
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Globalization
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\Branding
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\AppCompat
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows NT
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Common Files\System
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-05-11 17:12 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows NT
2014-05-11 17:12 - 2012-07-26 03:53 - 00000000 ____D () C:\Program Files\Windows Journal
2014-05-11 17:12 - 2012-07-26 01:37 - 00000000 __RHD () C:\Users\Default
2014-05-11 00:07 - 2014-05-07 23:02 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Avg2013
2014-05-11 00:07 - 2012-07-26 04:12 - 00000000 ___HD () C:\Windows\ELAMBKUP

Some content of TEMP:
====================
C:\Users\Elliot\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzd6m_1.dll
C:\Users\Elliot\AppData\Local\Temp\geek_x64.exe
C:\Users\Elliot\AppData\Local\Temp\InstHelper.exe
C:\Users\Elliot\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-06 14:26

==================== End Of Log ============================

Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-06-2014
Ran by Elliot at 2014-06-10 04:30:24
Running from C:\Users\Elliot\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.3.1.30017 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Ableton Live 8 (HKLM\...\{9960E64F-4FFD-429C-9739-03CAEA8C30E3}) (Version: 8.0.0.0 - Ableton)
Action Replay Code Manager (HKLM-x32\...\Action Replay Code Manager_is1) (Version: - )
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.6 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.02) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.01.01 - ASUSTeK Computer Inc.)
Anonymous Agony FILE #0 (HKLM-x32\...\Anonymous Agony FILE #0) (Version: 1.00 - Coded Emotion)
Anonymous Agony FILE #1 (HKLM-x32\...\Anonymous Agony FILE #1) (Version: 1.00 - Coded Emotion)
AntiLogger Free version 1.7.2.364 (HKLM-x32\...\{A80DB23D-0618-405B-89D9-28F99814E287}_is1) (Version: 1.7.2.364 - Zemana Ltd.)
Aquaria (HKLM-x32\...\Steam App 24420) (Version: - Bit Blot, LLC)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
AVerMedia Live Gamer HD Series 3.3.64.42 (HKLM-x32\...\AVerMedia Live Gamer HD Series) (Version: 3.3.64.42 - AVerMedia TECHNOLOGIES, Inc.)
Backyard Soccer MLS Edition (HKLM-x32\...\Backyard Soccer MLS Edition) (Version: - )
Bandicam (HKLM-x32\...\Bandicam) (Version: - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - )
Bass Station 1.7 (HKLM-x32\...\{ABAF1232-6213-4062-9D52-04E04A730CEA}_is1) (Version: 1.7 - Novation Digital Music Systems Ltd.)
BattleBlock Theater (HKLM-x32\...\Steam App 238460) (Version: - The Behemoth)
BigRigs over the road Racing (HKLM-x32\...\BigRigs over the road Racing_is1) (Version: - Stellar Stone Group)
Bionic Commando Rearmed (HKLM-x32\...\Steam App 21680) (Version: - GRIN)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
C3 (HKLM-x32\...\{EAB5AC2D-BDD5-4864-8380-904B3EB4B1E7}) (Version: 0.4.1506 - Vivox Inc.)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Cap'n Crunch's Crunchling Adventure™ (HKLM-x32\...\{30AF8281-7FF5-11D3-83D9-00400541A8A5}) (Version: - )
Cave Story+ (HKLM-x32\...\Steam App 200900) (Version: - Nicalis)
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
Chromium (HKCU\...\Chromium) (Version: 37.0.2031.0 - Chromium)
Chromium Updater version 1.6.1 (HKLM-x32\...\{78A4570F-617E-4443-87AB-0E0C86F5D63C}_is1) (Version: 1.6.1 - logicPwn)
Content Manager Assistant for PlayStation® (HKLM-x32\...\{32C46540-7693-49E1-A81E-121B09C8303B}) (Version: 3.00.7187.47 - Sony Computer Entertainment Inc.)
CPUID CPU-Z 1.63.0 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Crayon Physics Deluxe (HKLM-x32\...\Steam App 26900) (Version: - Kloonigames)
CrystalDiskMark 3.0.3a Shizuku Edition (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.3a - Crystal Dew World)
dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 15 - Illustrate)
dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 10 - Illustrate)
Deluge 1.3.6 (HKLM-x32\...\Deluge) (Version: - )
Desura (HKLM-x32\...\Desura) (Version: 100.53 - Desura)
Desura: Cute Things Dying Violently (HKLM-x32\...\Desura_73826192850976) (Version: Full - ApathyWorks)
Devil May Cry 4 (HKLM-x32\...\Steam App 45700) (Version: - Capcom)
DisplayFusion 5.1.1 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 5.1.1.0 - Binary Fortress Software)
Divekick (HKLM-x32\...\Steam App 244730) (Version: - Iron Galaxy Studios)
Double Dragon: Neon (HKLM-x32\...\RG91YmxlRHJhZ29uTmVvbg==_is1) (Version: 1 - )
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Dustforce (HKLM-x32\...\Steam App 65300) (Version: - Hitbox Team)
DVDFab Passkey 8.1.0.2 (12/07/2013) (HKLM-x32\...\DVDFab Passkey 8_is1) (Version: - Fengtao Software Inc.)
EaseUS Partition Master 9.3.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Evernote v. 4.6.6 (HKLM-x32\...\{6146B9DC-C33D-11E2-BDE1-984BE15F174E}) (Version: 4.6.6.8360 - Evernote Corp.)
f.lux (HKCU\...\Flux) (Version: - )
FAHClient (HKLM-x32\...\FAHClient) (Version: 7.3.6 - Stanford University)
FF7 XBox 360 Controller Fix (Steam) 1.0 (HKLM-x32\...\{094FB3FA-FF50-4B70-9762-3F3199C3F020}_is1) (Version: 1.0 - Johnny "ThunderPeel2001" Walker)
FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version: - )
FFsplit version 0.7 (HKLM-x32\...\{82458834-6226-4A34-AE96-6907354F9F36}_is1) (Version: 0.7 - FFsplit Team)
FFsplit version Alpha (HKLM-x32\...\{4AA62353-C8D9-4A05-A425-D9DFC4646B99}_is1) (Version: Alpha - Taqveer Doha)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlashFXP 4 (HKLM-x32\...\FlashFXP 4) (Version: 4.4.2.2013 - OpenSight Software LLC)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Focusrite USB 2.0 Audio Driver 2.5b4 (HKLM\...\Focusrite USB 2.0 Audio Driver_is1) (Version: 2.5b4 - Focusrite Audio Engineering Limited.)
foobar2000 v1.3.2 (HKLM-x32\...\foobar2000) (Version: 1.3.2 - Peter Pawlowski)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Freedom Planet (HKLM-x32\...\Steam App 248310) (Version: - )
GameFly (HKLM-x32\...\GameFly) (Version: 1.2.364 - GameFly, Inc.)
GameMaker-Studio 1.2 (HKCU\...\GameMaker-Studio12) (Version: - YoYo Games Ltd.)
Gamers Window Relocator (HKLM\...\{0E1669A2-1B12-48C5-B5CE-41B425667045}) (Version: 3.5.64 - Orekaria)
GCT to TXT (HKLM-x32\...\{89D86886-A5D1-4BE5-8446-56D902C5F36D}) (Version: 1.0.0 - Default Company Name)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Giana Sisters: Twisted Dreams (HKLM-x32\...\Steam App 223220) (Version: - Black Forest Games)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.07) (Version: 9.07 - Artifex Software Inc.)
Gundemonium Recollection (HKLM-x32\...\Steam App 92200) (Version: - Platine Dispositif)
HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - )
HashCalc 2.02 (HKLM-x32\...\HashCalc_is1) (Version: - SlavaSoft Inc.)
Hell Yeah! (HKLM-x32\...\Steam App 205230) (Version: - Arkedo)
HitFilm 2 Ultimate (HKLM\...\{B395DF2F-6AFF-4FDB-93E6-7755D9640FEA}) (Version: 2.0.1115.35250 - FXhome)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1191 - Intel Corporation)
Intel® Network Connections 17.3.57.0 (HKLM\...\PROSetDX) (Version: 17.3.57.0 - Intel)
Intel® Network Connections 17.3.57.0 (Version: 17.3.57.0 - Intel) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.36 - Irfan Skiljan)
Java 7 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417060FF}) (Version: 7.0.600 - Oracle)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Jet Set Radio (HKLM-x32\...\Steam App 205950) (Version: - Blit Software)
join.me (HKCU\...\JoinMe) (Version: 1.12.2.140 - LogMeIn, Inc.)
Katawa Shoujo (HKLM-x32\...\Katawa Shoujo) (Version: - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LatencyMon 4.02 (HKLM\...\LatencyMon_is1) (Version: - Resplendence Software Projects Sp.)
LAV Filters 0.59.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.59.0 - Hendrik Leppkes)
LibreOffice 4.0.0.3 (HKLM-x32\...\{8EA569F1-97AF-4C3E-A0CB-4846C2D35A81}) (Version: 4.0.0.3 - The Document Foundation)
LIMBO of the LOST 1.0 (HKLM-x32\...\LIMBO of the LOST) (Version: 1.0 - Majestic Studios)
Live 8.0.9 (HKLM-x32\...\Live 8.0.9) (Version: - )
Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
LWS Facebook (x32 Version: 13.50.854.0 - Logitech) Hidden
LWS Gallery (x32 Version: 13.51.827.0 - Logitech) Hidden
LWS Help_main (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Launcher (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Motion Detection (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Pictures And Video (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Twitter (x32 Version: 13.30.1346.0 - Logitech) Hidden
LWS Webcam Software (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS WLM Plugin (x32 Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (x32 Version: 13.31.1038.0 - Logitech) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
METAL GEAR RISING: REVENGEANCE (HKLM-x32\...\Steam App 235460) (Version: - PlatinumGames)
Metal Slug 3 (HKLM-x32\...\Steam App 250180) (Version: - DotEmu)
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft AppLocale (HKLM-x32\...\{394BE3D9-7F57-4638-A8D1-1D88671913B7}) (Version: 1.0.0 - MS)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Windows Application Compatibility Database (HKLM\...\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb) (Version: - )
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
mIRC (HKLM-x32\...\mIRC) (Version: 7.32 - mIRC Co. Ltd.)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0a1 - Mozilla)
Mozilla Thunderbird 17.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 17.0.3 (x86 en-US)) (Version: 17.0.3 - Mozilla)
Mozilla Thunderbird 24.5.0 (x86 en-US) (HKCU\...\Mozilla Thunderbird 24.5.0 (x86 en-US)) (Version: 24.5.0 - Mozilla)
MPC-BE 1.2.0.3.2938 (HKLM-x32\...\{903D098F-DD50-4342-AD23-DA868FCA3126}_is1) (Version: 1.2.0.3.2938 - MPC-BE Team)
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Mumble 1.2.4 (HKLM-x32\...\{E0955568-4353-4C85-8988-285A8C0F5E87}) (Version: 1.2.4 - Thorvald Natvig)
My Game Long Name (HKLM\...\UDK-9f2fa778-3546-411c-84df-1666de388948) (Version: - Epic Games, Inc.)
Nightly 32.0a1 (x86 en-US) (HKLM-x32\...\Nightly 32.0a1 (x86 en-US)) (Version: 32.0a1 - Mozilla)
NiGHTS into Dreams... (HKLM-x32\...\Steam App 219950) (Version: - SEGA)
NirSoft VideoCacheView (HKLM-x32\...\NirSoft VideoCacheView) (Version: - )
Noitu Love 2 Devolution (HKLM-x32\...\Steam App 207530) (Version: - Joakim Sandberg)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.3 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Control Panel 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 1.7.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.7.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.154.1168 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.9 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.9 - NVIDIA Corporation)
Offspring Fling! (HKLM-x32\...\Steam App 211360) (Version: - Kyle Pulver)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Oracle VM VirtualBox 4.3.12 (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.1.4482 - Electronic Arts, Inc.)
PandoraRecovery (Remove Only) (HKLM-x32\...\PandoraRecovery) (Version: - )
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Peggle Deluxe (HKLM-x32\...\Peggle Deluxe) (Version: - PopCap Games)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.7 - )
Pinball FX2 (HKLM-x32\...\Steam App 226980) (Version: - Zen Studios)
Populous (HKLM-x32\...\{476CD9DE-C45F-4443-BFA7-E51C58B7E455}) (Version: 1.0.0.0 - Electronic Arts)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
QQ International (HKLM-x32\...\{3CA54984-A14B-42FE-9FF1-7EA90151D725}) (Version: 1.91.1369.0 - Tencent Technology(Shenzhen) Company Limited)
QuickTime Alternative 3.2.2 (HKLM-x32\...\QuicktimeAlt_is1) (Version: 3.2.2 - )
RaidCall (HKLM-x32\...\RaidCall) (Version: 7.2.8-1.0.8500.20 - raidcall.com)
Razer Game Booster (HKLM-x32\...\Razer Game Booster_is1) (Version: 4.1.59.0 - Razer Inc.)
REAPER (x64) (HKLM\...\REAPER) (Version: - )
ReClock (HKLM-x32\...\ReClock) (Version: - SlySoft, Inc.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 3.0.23.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller 1.94 (HKLM-x32\...\Revo Uninstaller) (Version: 1.94 - VS Revo Group)
RGSS-RTP Standard (HKLM-x32\...\RGSS-RTP Standard_is1) (Version: 1.04 - Enterbrain)
RPG MAKER VX Ace RTP (HKLM-x32\...\RPGVXAce_RTP_is1) (Version: 1.00 - Enterbrain)
RPG Maker VX RTP (HKLM-x32\...\RPG Maker VX RTP_is1) (Version: 1.02 - Enterbrain)
Rush Bros (HKLM-x32\...\Steam App 234490) (Version: - XYLA Entertainment)
Scarlett MixControl 1.7b1 (HKLM-x32\...\Saffire USB 26_is1) (Version: 1.7b1 - Focusrite Audio Engineering Limited)
Serious Sam HD: The First Encounter (HKLM-x32\...\Steam App 41000) (Version: - Croteam)
Shatter (HKLM-x32\...\Steam App 20820) (Version: - Sidhe)
SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden
ShiftWindow 1.02 (HKLM-x32\...\ShiftWindow_is1) (Version: - Grismar)
Skullgirls (HKLM-x32\...\Steam App 245170) (Version: - Lab Zero Games)
Skype 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Sonic & All-Stars Racing Transformed (HKLM-x32\...\Steam App 212480) (Version: - Sumo Digital)
SONIC ADVENTURE DX-Director's Cut (HKLM-x32\...\SONICADVDX) (Version: - )
Sonic Adventure 2 (HKLM-x32\...\Steam App 213610) (Version: - SEGA)
Sonic CD (HKLM-x32\...\Steam App 200940) (Version: - Blit Software)
Sonic Colors WMP Visualization (HKLM-x32\...\{694CF890-93DA-4CC5-B0FE-742EDE3FF109}) (Version: 1.0.0 - angryzor)
Sonic Generations (HKLM-x32\...\Steam App 71340) (Version: - Devil's Details)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Street Fighter X Tekken (HKLM-x32\...\Steam App 209120) (Version: - Capcom U.S.A., Inc.)
Super Lemonade Factory (HKLM-x32\...\SuperLemonadeFactory) (Version: 1.0.1 - UNKNOWN)
Super Lemonade Factory (x32 Version: 1.0.1 - UNKNOWN) Hidden
Super Mario Fusion Revival v0.4.1 (HKCU\...\Super Mario Fusion Revival v0.4.1) (Version: - )
Super Street Fighter IV: Arcade Edition (HKLM-x32\...\Steam App 45760) (Version: - Capcom)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{E362724E-9320-4946-AF34-874E7B6B2927}) (Version: 6.0.7.0 - Husdawg, LLC)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
TikiOne Steam Cleaner (HKLM-x32\...\TikiOneSteamCleaner) (Version: - Jonathan Lermitage)
Tiny and Big: Grandpa's Leftovers (HKLM-x32\...\Steam App 205910) (Version: - Black Pants Game Studio)
Tixati (HKLM-x32\...\tixati) (Version: - )
Trine 2 (HKLM-x32\...\Steam App 35720) (Version: - Frozenbyte)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for Japanese Microsoft IME Postal Code Dictionary (HKLM-x32\...\{121C874E-5797-40B2-86CE-CE6624F2711A}) (Version: 15.0.1376 - Microsoft Corporation)
Update for Japanese Microsoft IME Standard Dictionary (HKLM-x32\...\{7DB71278-9AD7-4480-AB08-8649C5010B17}) (Version: 15.0.1215 - Microsoft Corporation)
Update for Japanese Microsoft IME Standard Extended Dictionary (HKLM-x32\...\{78CE66A9-85AF-4BD8-8FB7-35B5F3846C00}) (Version: 15.0.1215 - Microsoft Corporation)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VBCABLE-A, The Virtual Audio Cable (HKLM\...\VB:VBCABLEA {87459874-1236-4469}) (Version: - VB-Audio Software)
VBCABLE-B, The Virtual Audio Cable (HKLM\...\VB:VBCABLEB {87459874-1236-4469}) (Version: - VB-Audio Software)
Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
VideoKeeper2 (HKLM-x32\...\{16088E3F-DBB8-424D-9344-F0F08D26BA9B}) (Version: 1.1.0.124 - Multimedia)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version: - )
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
Volgarr the Viking (HKLM-x32\...\Steam App 247240) (Version: - Crazy Viking Studios)
VVVVVV (HKLM-x32\...\Steam App 70300) (Version: - Terry Cavanagh)
WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP)
WBFS to ISO (HKLM-x32\...\{55F0E086-2E1C-4478-B52E-DA6025A46434}_is1) (Version: - wbfstoiso.com)
Windows Driver Package - Focusrite USB 2.0 Audio Driver (05/21/2013 2.5.64.2) (HKLM\...\567E9B3391201C8FD4F17F8C139598186BF94212) (Version: 05/21/2013 2.5.64.2 - Focusrite)
Windows Driver Package - Focusrite USB 2.0 Audio Driver (07/15/2013 2.5.64.3) (HKLM\...\E1921D2872496F314BA8B6657EBBC9A683A489E7) (Version: 07/15/2013 2.5.64.3 - Focusrite)
Windows Driver Package - Focusrite USB 2.0 Audio Driver (08/09/2013 2.5.64.4) (HKLM\...\648E1CA857879337D6B24BCCD5506FDAAF8D8DB2) (Version: 08/09/2013 2.5.64.4 - Focusrite)
Windows Driver Package - Focusrite USB 2.0 Audio Driver (09/10/2012 2.4.128.0) (HKLM\...\4214A1CFC1A368A5078729BFD4B211F0CDB5CEC5) (Version: 09/10/2012 2.4.128.0 - Focusrite)
Windows Driver Package - Focusrite USB 2.0 Audio Driver (09/25/2013 2.5.128.1) (HKLM\...\CF1FC201D237269A9CD51A3A6B14ADBF67175C32) (Version: 09/25/2013 2.5.128.1 - Focusrite)
Windows Driver Package - Focusrite USB 2.0 Audio Driver (10/07/2013 2.5.128.1) (HKLM\...\DE12246CC9223CC6AB9691DCA7F7ED7F43DF9195) (Version: 10/07/2013 2.5.128.1 - Focusrite)
Windows Driver Package - Focusrite USB 2.0 Audio Driver (10/13/2011 2.2.128.0) (HKLM\...\5EBE05A38E0ED7FB7DC4171215DC5B0266DA1D51) (Version: 10/13/2011 2.2.128.0 - Focusrite)
Windows Driver Package - MICOMSOFT Co.,LTD. (CY3014.X64) MEDIA (09/27/2013 1.1.0.123) (HKLM\...\3B483C42DD0DA7269E9D4000216780D151B7AD7C) (Version: 09/27/2013 1.1.0.123 - MICOMSOFT Co.,LTD.)
WinImage (HKCU\...\WinImage) (Version: - )
WinImage (HKLM\...\WinImage) (Version: - )
World Gone Sour (HKLM-x32\...\World Gone Sour) (Version: 1.0.0.0 - Capcom)
XSplit (HKLM-x32\...\{8BD89760-6B5D-4A3C-8B0D-CDB93BEFC0F6}) (Version: 1.2.1303.0101 - SplitMediaLabs)
xy-VSFilter 3.0.0.211 (HKLM-x32\...\xy-VSFilter_is1) (Version: 3.0.0.211 - xy-VSFilter Team)
Ys I (HKLM-x32\...\Steam App 223810) (Version: - Nihon Falcom)
Ys Origin (HKLM-x32\...\Steam App 207350) (Version: - Nihon Falcom)

==================== Restore Points =========================

07-06-2014 04:27:51 Removed ESET NOD32 Antivirus

==================== Hosts content: ==========================

2012-07-26 01:26 - 2013-03-02 16:42 - 00005794 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 ereg.adobe.com
127.0.0.1 ereg.wip.adobe.com
127.0.0.1 ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.wip4.adobe.com

There are 108 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {6220DE1E-3D1C-4557-8410-61F20D7F585E} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2014-04-19] (Microsoft Corporation)
Task: {68C9791B-3F96-43DE-8DB0-57C3A24444EE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001UA => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {95D1FFFF-072F-4AEB-BA1E-71BF40DB0C70} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13] (Adobe Systems Incorporated)
Task: {A335FA8C-75E5-43F6-B02E-709B7C29E558} - System32\Tasks\ASUS\ASUS AI Suite II Execute => D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {C8FC9B3B-9127-45DE-A21A-78543D9220EE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001Core => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe [2013-02-28] (Google Inc.)
Task: {CDFE4851-C358-47A7-9052-A131DF320583} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {D082F89B-B9A3-4FCF-9AE8-364A038774E9} - System32\Tasks\ASUS\ASUS DigiPowerControl Help => D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe [2012-08-14] (ASUSTeK Computer Inc.)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001Core.job => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001UA.job => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-04-23 21:49 - 2014-05-19 21:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-06-07 00:30 - 2012-09-11 16:54 - 00920736 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2013-08-26 22:29 - 2013-08-26 22:29 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-08-26 22:29 - 2013-08-26 22:29 - 00189248 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-04-14 20:23 - 2014-04-14 20:23 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-01-10 14:41 - 2013-09-12 22:24 - 00567880 _____ () D:\Program Files (x86)\puush\puush.exe
2013-01-22 02:34 - 2011-11-18 20:12 - 00129536 _____ () D:\Utilities\AudioSwitcher\switcher.exe
2013-04-16 22:56 - 2008-07-30 14:32 - 00331264 _____ () D:\Console and Handheld\Wii\Utilities\ocarina_code_manager\pc\codemgr.exe
2014-05-12 05:49 - 2014-05-12 05:49 - 00222720 _____ () D:\Program Files (x86)\Notepad++\NppShell_06.dll
2013-06-07 00:30 - 2014-06-07 20:38 - 00025600 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2013-06-07 00:30 - 2012-09-11 16:52 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2012-07-01 00:05 - 2011-07-12 19:14 - 00147456 ____N () D:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2012-07-01 00:05 - 2010-10-05 08:22 - 00253952 ____N () D:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2012-07-30 23:55 - 2011-09-26 19:36 - 00869376 ____N () D:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll
2012-07-01 00:05 - 2012-03-21 12:07 - 00972288 ____N () D:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2013-06-07 00:32 - 2012-08-01 10:51 - 01040896 _____ () D:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2013-06-07 00:48 - 2012-06-19 12:56 - 01305600 _____ () D:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2012-07-30 23:58 - 2012-07-20 09:39 - 01047040 _____ () D:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll
2012-07-01 00:05 - 2012-05-25 10:33 - 00883712 ____N () D:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2012-07-01 00:05 - 2012-05-28 21:27 - 01622528 ____N () D:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2012-07-01 00:05 - 2011-09-19 20:18 - 01243136 ____N () D:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2012-07-01 00:05 - 2011-07-21 09:06 - 00846848 ____N () D:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2012-07-01 00:05 - 2011-10-14 20:03 - 00885248 ____N () D:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2013-06-07 00:30 - 2012-09-11 16:52 - 00662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2012-07-01 00:05 - 2010-10-05 08:22 - 00208896 ____N () D:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2012-07-01 00:05 - 2009-08-12 20:15 - 00253952 ____N () D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2013-01-22 02:34 - 2011-11-18 12:32 - 00029184 _____ () D:\Utilities\AudioSwitcher\EndPointController.dll
2014-06-07 20:40 - 2014-06-07 20:40 - 00043008 _____ () c:\users\elliot\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzd6m_1.dll
2013-08-23 15:01 - 2013-08-23 15:01 - 25100288 _____ () C:\Users\Elliot\AppData\Roaming\Dropbox\bin\libcef.dll
2013-06-07 00:27 - 2012-05-03 14:45 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2013-02-13 00:44 - 2013-02-13 00:44 - 00028160 _____ () D:\Program Files (x86)\Pidgin\libssp-0.dll
2013-02-13 00:44 - 2013-02-13 00:44 - 00671031 _____ () D:\Program Files (x86)\Pidgin\exchndl.dll
2013-02-28 06:05 - 2013-02-28 06:05 - 00904525 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2013-02-28 06:05 - 2013-02-28 06:05 - 00100352 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2013-02-28 06:05 - 2013-02-28 06:05 - 00279059 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2013-02-28 06:05 - 2013-02-28 06:05 - 00553382 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2013-02-28 06:05 - 2013-02-28 06:05 - 00216992 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 01274655 _____ () D:\Program Files (x86)\Pidgin\libxml2-2.dll
2013-02-28 06:05 - 2013-02-28 06:05 - 00177586 _____ () D:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2013-02-13 00:44 - 2013-02-13 00:44 - 00475580 _____ () D:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00020997 _____ () D:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00013253 _____ () D:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00024924 _____ () D:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00015702 _____ () D:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00014147 _____ () D:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00018882 _____ () D:\Program Files (x86)\Pidgin\plugins\history.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00012865 _____ () D:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00019043 _____ () D:\Program Files (x86)\Pidgin\plugins\idle.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00018555 _____ () D:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00015074 _____ () D:\Program Files (x86)\Pidgin\plugins\libaim.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00310491 _____ () D:\Program Files (x86)\Pidgin\liboscar.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00092874 _____ () D:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00209619 _____ () D:\Program Files (x86)\Pidgin\plugins\libgg.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00016005 _____ () D:\Program Files (x86)\Pidgin\plugins\libicq.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00105620 _____ () D:\Program Files (x86)\Pidgin\plugins\libirc.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00190464 _____ () D:\Program Files (x86)\Pidgin\libsasl.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00373657 _____ () D:\Program Files (x86)\Pidgin\plugins\libmsn.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00149933 _____ () D:\Program Files (x86)\Pidgin\plugins\libmxit.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00106670 _____ () D:\Program Files (x86)\Pidgin\plugins\libmyspace.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00123540 _____ () D:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00116583 _____ () D:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00152852 _____ () D:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00171090 _____ () D:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 02097721 _____ () D:\Program Files (x86)\Pidgin\libsilc-1-1-2.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00818985 _____ () D:\Program Files (x86)\Pidgin\libsilcclient-1-1-3.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00055758 _____ () D:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00021337 _____ () D:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00415553 _____ () D:\Program Files (x86)\Pidgin\libjabber.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00022832 _____ () D:\Program Files (x86)\Pidgin\plugins\libyahoo.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00228908 _____ () D:\Program Files (x86)\Pidgin\libymsg.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00019793 _____ () D:\Program Files (x86)\Pidgin\plugins\libyahoojp.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00047391 _____ () D:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00021795 _____ () D:\Program Files (x86)\Pidgin\plugins\markerline.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00013456 _____ () D:\Program Files (x86)\Pidgin\plugins\newline.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00029225 _____ () D:\Program Files (x86)\Pidgin\plugins\notify.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00017023 _____ () D:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00029256 _____ () D:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00015380 _____ () D:\Program Files (x86)\Pidgin\plugins\psychic.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00015429 _____ () D:\Program Files (x86)\Pidgin\plugins\relnot.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00015045 _____ () D:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00069575 _____ () D:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00027811 _____ () D:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00012004 _____ () D:\Program Files (x86)\Pidgin\plugins\ssl.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00015978 _____ () D:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00030353 _____ () D:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00032020 _____ () D:\Program Files (x86)\Pidgin\plugins\ticker.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00018399 _____ () D:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00023305 _____ () D:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00029791 _____ () D:\Program Files (x86)\Pidgin\plugins\win2ktrans.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00030771 _____ () D:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00037191 _____ () D:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2013-02-13 00:45 - 2013-02-13 00:45 - 00044494 _____ () D:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00102400 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslANONYMOUS.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00115712 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslCRAMMD5.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00140288 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslDIGESTMD5.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00102912 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslLOGIN.dll
2013-02-13 00:43 - 2013-02-13 00:43 - 00102912 _____ () D:\Program Files (x86)\Pidgin\sasl2\saslPLAIN.dll
2013-02-13 00:44 - 2013-02-13 00:44 - 00425984 _____ () D:\Program Files (x86)\Pidgin\sqlite3.dll
2013-02-28 06:05 - 2013-02-28 06:05 - 00090496 _____ () D:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2013-12-09 21:09 - 2013-12-06 23:29 - 00903168 _____ () C:\Users\Elliot\AppData\Local\Chromium\Application\libglesv2.dll
2013-12-09 21:09 - 2013-12-06 23:29 - 00102912 _____ () C:\Users\Elliot\AppData\Local\Chromium\Application\libegl.dll
2013-12-09 21:09 - 2013-12-06 23:30 - 00455168 _____ () C:\Users\Elliot\AppData\Local\Chromium\Application\ppGoogleNaClPluginChrome.dll
2013-12-09 21:09 - 2013-12-06 23:29 - 00883200 _____ () C:\Users\Elliot\AppData\Local\Chromium\Application\ffmpegsumo.dll
2014-04-30 05:23 - 2014-04-30 05:23 - 03019888 _____ () D:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2014-04-30 05:23 - 2014-04-30 05:23 - 00158832 _____ () D:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2014-04-30 05:23 - 2014-04-30 05:23 - 00023152 _____ () D:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2013-05-04 07:57 - 2013-05-04 07:57 - 00095712 _____ () D:\Program Files (x86)\foobar2000\zlib1.dll
2014-04-11 05:51 - 2014-04-11 05:51 - 00156624 _____ () D:\Program Files (x86)\foobar2000\shared.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00350720 _____ () D:\Program Files (x86)\foobar2000\components\foo_albumlist.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00304640 _____ () D:\Program Files (x86)\foobar2000\components\foo_cdda.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00199680 _____ () D:\Program Files (x86)\foobar2000\components\foo_dsp_std.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00353280 _____ () D:\Program Files (x86)\foobar2000\components\foo_rgscan.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00299520 _____ () D:\Program Files (x86)\foobar2000\components\foo_freedb2.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00501248 _____ () D:\Program Files (x86)\foobar2000\components\foo_converter.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00199168 _____ () D:\Program Files (x86)\foobar2000\components\foo_dsp_eq.dll
2014-04-11 05:51 - 2014-04-11 05:51 - 01391080 _____ () D:\Program Files (x86)\foobar2000\components\foo_input_std.dll
2014-04-11 05:48 - 2014-04-11 05:48 - 00173056 _____ () D:\Program Files (x86)\foobar2000\components\foo_unpack.dll
2014-04-11 05:51 - 2014-04-11 05:51 - 00945128 _____ () D:\Program Files (x86)\foobar2000\components\foo_ui_std.dll
2014-04-11 05:49 - 2014-04-11 05:49 - 00285696 _____ () D:\Program Files (x86)\foobar2000\components\foo_fileops.dll
2011-07-18 17:07 - 2011-07-18 17:07 - 00014336 _____ () D:\Program Files (x86)\Notepad++\plugins\NppExport.dll
2014-01-06 19:42 - 2014-01-06 19:42 - 01611264 _____ () D:\Program Files (x86)\Notepad++\plugins\NppFTP.dll
2013-03-21 06:34 - 2013-03-21 06:34 - 00393304 _____ () D:\Program Files (x86)\ReClock\ReClock.dll
2013-03-21 06:33 - 2013-03-21 06:33 - 00131072 _____ () D:\Program Files (x86)\ReClock\Timestretch.dll
2013-03-21 06:33 - 2013-03-21 06:33 - 00081920 _____ () D:\Program Files (x86)\ReClock\Compressor.dll
2013-03-21 06:33 - 2013-03-21 06:33 - 00200704 _____ () D:\Program Files (x86)\ReClock\AC3Lib.dll
2014-05-19 03:45 - 2014-05-30 21:27 - 01116672 _____ () D:\Program Files (x86)\Steam\libavcodec-55.dll
2014-05-19 03:45 - 2014-05-30 21:27 - 00399360 _____ () D:\Program Files (x86)\Steam\libavformat-55.dll
2014-05-11 22:47 - 2014-05-30 21:27 - 00331264 _____ () D:\Program Files (x86)\Steam\libavresample-1.dll
2014-05-11 22:47 - 2014-05-30 21:27 - 00438784 _____ () D:\Program Files (x86)\Steam\libavutil-53.dll
2014-05-11 22:47 - 2014-06-05 00:24 - 00756736 _____ () D:\Program Files (x86)\Steam\SDL2.dll
2014-05-19 03:45 - 2014-06-09 19:41 - 02141376 _____ () D:\Program Files (x86)\Steam\video.dll
2014-05-19 03:45 - 2014-04-28 20:37 - 00519168 _____ () D:\Program Files (x86)\Steam\libswscale-2.dll
2014-05-11 22:47 - 2014-06-09 19:41 - 01116864 _____ () D:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-05-11 22:47 - 2014-05-01 19:35 - 20628160 _____ () D:\Program Files (x86)\Steam\bin\libcef.dll
2014-05-11 22:47 - 2013-06-14 19:49 - 01100800 _____ () D:\Program Files (x86)\Steam\bin\avcodec-53.dll
2014-05-11 22:47 - 2013-06-14 19:49 - 00124416 _____ () D:\Program Files (x86)\Steam\bin\avutil-51.dll
2014-05-11 22:47 - 2013-06-14 19:49 - 00192000 _____ () D:\Program Files (x86)\Steam\bin\avformat-53.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Elliot\Local Settings:CorH5CkUfFWT5Yg1Dt6gI5s
AlternateDataStreams: C:\Users\Elliot\AppData\Local:CorH5CkUfFWT5Yg1Dt6gI5s
AlternateDataStreams: C:\Users\Elliot\AppData\Local\Application Data:CorH5CkUfFWT5Yg1Dt6gI5s
AlternateDataStreams: C:\Users\Elliot\AppData\Local\nE1Uw8h31d7gh:gDPqrmsfUQr9CBQIsgDSC4q
AlternateDataStreams: C:\Users\Elliot\AppData\Local\Temporary Internet Files:M0oZmzExhdR6hbTCUQEIsec

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: VirtualBox Host-Only Ethernet Adapter
Description: VirtualBox Host-Only Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetAdp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Unknown USB Device (Invalid Device Descriptor)
Description: Unknown USB Device (Invalid Device Descriptor)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

Name: PCI Device
Description: PCI Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/10/2014 04:24:29 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program firefox.exe version 32.0.0.5273 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 4244

Start Time: 01cf84634018c2fa

Termination Time: 4294967295

Application Path: D:\Program Files (x86)\Nightly\firefox.exe

Report Id: a3809e37-f078-11e3-bf3d-0026833b2ff7

Faulting package full name:

Faulting package-relative application ID:

Error: (06/10/2014 04:24:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: plugin-container.exe, version: 32.0.0.5273, time stamp: 0x5395b2f6
Faulting module name: mozalloc.dll, version: 32.0.0.5273, time stamp: 0x53958dd4
Exception code: 0x80000003
Fault offset: 0x000012cb
Faulting process id: 0x3390
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (06/10/2014 03:27:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Skype.exe version 6.16.59.105 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 804

Start Time: 01cf847d486291d9

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Skype\Phone\Skype.exe

Report Id: b28bb94a-f070-11e3-bf3d-0026833b2ff7

Faulting package full name:

Faulting package-relative application ID:

Error: (06/10/2014 03:18:09 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Explorer.EXE version 6.2.9200.16628 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1284

Start Time: 01cf82b225897890

Termination Time: 918

Application Path: C:\Windows\Explorer.EXE

Report Id: 5bff53da-f06f-11e3-bf3d-0026833b2ff7

Faulting package full name:

Faulting package-relative application ID:

Error: (06/09/2014 11:34:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: chrome.exe, version: 37.0.2031.0, time stamp: 0x539046c6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x24124855
Faulting process id: 0x22fc
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
Faulting package full name: chrome.exe4
Faulting package-relative application ID: chrome.exe5

Error: (06/09/2014 11:09:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: chrome.exe, version: 37.0.2031.0, time stamp: 0x539046c6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x2d5a30f3
Faulting process id: 0x4278
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
Faulting package full name: chrome.exe4
Faulting package-relative application ID: chrome.exe5

Error: (06/09/2014 11:06:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: chrome.exe, version: 37.0.2031.0, time stamp: 0x539046c6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x2f3b2c13
Faulting process id: 0xe44
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
Faulting package full name: chrome.exe4
Faulting package-relative application ID: chrome.exe5

Error: (06/09/2014 11:05:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: chrome.exe, version: 37.0.2031.0, time stamp: 0x539046c6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x1dbb8673
Faulting process id: 0x3ec8
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
Faulting package full name: chrome.exe4
Faulting package-relative application ID: chrome.exe5

Error: (06/09/2014 10:57:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: chrome.exe, version: 37.0.2031.0, time stamp: 0x539046c6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x17ac3ab5
Faulting process id: 0x3810
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
Faulting package full name: chrome.exe4
Faulting package-relative application ID: chrome.exe5

Error: (06/09/2014 06:51:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: chrome.exe, version: 37.0.2031.0, time stamp: 0x539046c6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x270ab113
Faulting process id: 0x377c
Faulting application start time: 0xchrome.exe0
Faulting application path: chrome.exe1
Faulting module path: chrome.exe2
Report Id: chrome.exe3
Faulting package full name: chrome.exe4
Faulting package-relative application ID: chrome.exe5


System errors:
=============
Error: (06/09/2014 10:57:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (06/09/2014 10:57:39 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (06/07/2014 08:39:15 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000010d (0x0000000000000005, 0x0000000000000000, 0x0000000000001202, 0xfffffa80121616d0)C:\Windows\MEMORY.DMP060714-54281-01

Error: (06/07/2014 08:38:33 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 8:29:37 PM on ‎6/‎7/‎2014 was unexpected.

Error: (06/07/2014 00:18:02 AM) (Source: DCOM) (EventID: 10010) (User: PLAYSATURN64)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (06/07/2014 00:17:32 AM) (Source: DCOM) (EventID: 10010) (User: PLAYSATURN64)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (06/07/2014 00:17:02 AM) (Source: DCOM) (EventID: 10010) (User: PLAYSATURN64)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (06/07/2014 00:16:32 AM) (Source: DCOM) (EventID: 10010) (User: PLAYSATURN64)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (06/07/2014 00:16:02 AM) (Source: DCOM) (EventID: 10010) (User: PLAYSATURN64)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (06/07/2014 00:15:32 AM) (Source: DCOM) (EventID: 10010) (User: PLAYSATURN64)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}


Microsoft Office Sessions:
=========================
Error: (06/10/2014 04:24:29 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe32.0.0.5273424401cf84634018c2fa4294967295D:\Program Files (x86)\Nightly\firefox.exea3809e37-f078-11e3-bf3d-0026833b2ff7

Error: (06/10/2014 04:24:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe32.0.0.52735395b2f6mozalloc.dll32.0.0.527353958dd480000003000012cb339001cf848556c829fcD:\Program Files (x86)\Nightly\plugin-container.exeD:\Program Files (x86)\Nightly\mozalloc.dlla3d7ba3f-f078-11e3-bf3d-0026833b2ff7

Error: (06/10/2014 03:27:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe6.16.59.10580401cf847d486291d94294967295C:\Program Files (x86)\Skype\Phone\Skype.exeb28bb94a-f070-11e3-bf3d-0026833b2ff7

Error: (06/10/2014 03:18:09 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Explorer.EXE6.2.9200.16628128401cf82b225897890918C:\Windows\Explorer.EXE5bff53da-f06f-11e3-bf3d-0026833b2ff7

Error: (06/09/2014 11:34:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe37.0.2031.0539046c6unknown0.0.0.000000000c00000052412485522fc01cf845ccfbe7dc4C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exeunknown11ed476b-f050-11e3-bf3d-0026833b2ff7

Error: (06/09/2014 11:09:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe37.0.2031.0539046c6unknown0.0.0.000000000c00000052d5a30f3427801cf8458fb5f973bC:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exeunknown92cdcc91-f04c-11e3-bf3d-0026833b2ff7

Error: (06/09/2014 11:06:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe37.0.2031.0539046c6unknown0.0.0.000000000c00000052f3b2c13e4401cf8458cf957aaaC:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exeunknown330cd25c-f04c-11e3-bf3d-0026833b2ff7

Error: (06/09/2014 11:05:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe37.0.2031.0539046c6unknown0.0.0.000000000c00000051dbb86733ec801cf8457d1b6ad1fC:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exeunknown0b4ccdb5-f04c-11e3-bf3d-0026833b2ff7

Error: (06/09/2014 10:57:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe37.0.2031.0539046c6unknown0.0.0.000000000c000000517ac3ab5381001cf8457be0a6e7eC:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exeunknown011f046a-f04b-11e3-bf3d-0026833b2ff7

Error: (06/09/2014 06:51:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe37.0.2031.0539046c6unknown0.0.0.000000000c0000005270ab113377c01cf843548571fc4C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exeunknown868a18a3-f028-11e3-bf3d-0026833b2ff7


==================== Memory info ===========================

Percentage of memory in use: 78%
Total physical RAM: 16367.13 MB
Available physical RAM: 3582 MB
Total Pagefile: 34799.13 MB
Available Pagefile: 16114.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:14.61 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Stuff/Things) (Fixed) (Total:1397.16 GB) (Free:549.71 GB) NTFS
Drive k: (SONIC_DISC_1) (CDROM) (Total:7.57 GB) (Free:0 GB) UDF
Drive v: (Video) (Fixed) (Total:2794.39 GB) (Free:848.26 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397 GB) (Disk ID: 7C3EB518)
Partition 1: (Not Active) - (Size=-698829766656) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 2795 GB) (Disk ID: 0F246E47)

Partition: GPT Partition Type.

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: 5F7328DF)
Partition 1: (Active) - (Size=119 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Edited by Smashbro29, 10 June 2014 - 03:33 AM.


#4 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,030 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:50 AM

Posted 10 June 2014 - 04:45 AM

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 ereg.adobe.com
127.0.0.1 ereg.wip.adobe.com
127.0.0.1 ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.wip4.adobe.com


Can you explain me why are you using illegal software?

Download CKScanner from here

Important : Save it to your desktop.
  • Doubleclick CKScanner.exe and click Search For Files.(If you have Windows Vista / Windows 7 / Windows 8 please do a Right click on CKScanner.exe and select Run as Administrator)
  • After a very short time, when the cursor hourglass disappears, click Save List To File.
  • A message box will verify that the file is saved.
  • Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#5 Smashbro29

Smashbro29
  • Topic Starter

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 10 June 2014 - 07:13 PM

It's illegal? Man, I had no idea. How can you tell if software is illegal? I'll have to ask the guy I bought it from. If it's not part of the problem though I'll sideline it until I can fix my PC.

EDIT: Actually I bought a lot of software, what did I get that's illegal? I guess something adobe.

CKFiles:

CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
c:\users\elliot\documents\ableton\library\presets\audio effects\vinyl distortion\crack.adv
c:\users\elliot\documents\image-line\data\drumaxx\drum patches\sound fx\crack.dmpatch
hosts 127.0.0.1 lmlicenses.wip4.adobe.com
hosts 127.0.0.1 lm.licenses.adobe.com
hosts 127.0.0.1 activate.adobe.com
hosts 127.0.0.1 practivate.adobe.com
hosts 127.0.0.1 3dns.adobe.com
hosts 127.0.0.1 3dns-1.adobe.com
hosts 127.0.0.1 3dns-2.adobe.com
hosts 127.0.0.1 3dns-3.adobe.com
hosts 127.0.0.1 3dns-4.adobe.com
hosts 127.0.0.1 3dns-5.adobe.com
hosts 127.0.0.1 activate.adobe.com
hosts 127.0.0.1 activate.wip1.adobe.com
hosts 127.0.0.1 activate.wip2.adobe.com
hosts 127.0.0.1 activate.wip3.adobe.com
hosts 127.0.0.1 activate.wip4.adobe.com
hosts 127.0.0.1 activate-sea.adobe.com
hosts 127.0.0.1 activate-sjc0.adobe.com
hosts 127.0.0.1 adobe-dns.adobe.com
hosts 127.0.0.1 adobe-dns-1.adobe.com
hosts 127.0.0.1 adobe-dns-2.adobe.com
hosts 127.0.0.1 adobe-dns-3.adobe.com
hosts 127.0.0.1 adobe-dns-4.adobe.com
hosts 127.0.0.1 adobeereg.com
hosts 127.0.0.1 ereg.adobe.com
hosts 127.0.0.1 ereg.wip.adobe.com
hosts 127.0.0.1 ereg.wip1.adobe.com
hosts 127.0.0.1 ereg.wip2.adobe.com
hosts 127.0.0.1 ereg.wip3.adobe.com
hosts 127.0.0.1 ereg.wip4.adobe.com
hosts 127.0.0.1 hl2rcv.adobe.com
hosts 127.0.0.1 practivate.adobe.com
hosts 127.0.0.1 wip.adobe.com
hosts 127.0.0.1 wip1.adobe.com
hosts 127.0.0.1 wip2.adobe.com
hosts 127.0.0.1 wip3.adobe.com
hosts 127.0.0.1 wip4.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip100.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip101.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip102.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip103.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip104.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip105.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip106.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip107.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip108.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip109.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip110.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip111.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip112.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip113.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip114.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip115.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip116.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip117.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip118.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip119.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip120.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip121.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip122.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip123.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip124.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip125.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip30.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip31.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip32.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip33.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip34.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip35.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip36.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip37.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip38.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip39.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip40.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip41.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip42.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip43.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip44.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip45.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip46.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip47.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip48.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip49.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip50.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip51.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip52.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip53.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip54.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip55.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip56.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip57.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip58.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip59.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip61.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip62.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip63.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip64.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip65.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip66.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip67.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip68.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip69.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip70.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip71.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip72.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip73.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip74.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip75.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip76.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip77.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip78.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip79.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip80.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip81.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip82.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip83.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip84.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip85.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip86.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip87.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip88.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip89.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip90.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip91.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip92.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip93.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip94.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip95.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip96.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip97.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip98.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip99.adobe.com
scanner sequence 3.ZZ.11.SONAJZ
----- EOF -----

Edited by Smashbro29, 11 June 2014 - 01:16 AM.


#6 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,030 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:50 AM

Posted 11 June 2014 - 03:09 AM

Yes, it seems that a Adobe Product is illegal.

Step 1: Adwarecleaner

Please download AdwCleaner (by Xplode) from the link below and save it to your Desktop:

Download Mirror #1
  • Right-click on AdwCleaner.exe and select Run as administrator. (If you have Windows XP the just run it)
  • Click Scan and let the scan run.
  • When it finishes, click Clean, following the on screen prompts
  • After your computer reboots, a log will open. Please Copy (Ctrl+C) and Paste (Ctrl+V) this into your next post.
Note: The log can also be found in here: C:\AdwCleaner\

Step 2: Malwarebytes

Please download Malwarebytes Anti-Malware to your desktop Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings.JPG

Go back to the Dashboard and select Scan Now

MBAMScan.JPG

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot.JPG

MBAMLog.JPG

On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop
Attach/Post that log

Step 3: Junkware Removal Tool

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 4: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#7 Smashbro29

Smashbro29
  • Topic Starter

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 11 June 2014 - 07:46 AM

Oh well, I'll look into it after this.

ADW didn't find anything:

# AdwCleaner v3.212 - Report created 11/06/2014 at 08:25:41
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8 Pro (64 bits)
# Username : Elliot - PLAYSATURN64
# Running from : C:\Users\Elliot\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Mozilla Firefox v

[ File : C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default\prefs.js ]


-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [2442 octets] - [05/11/2013 16:51:16]
AdwCleaner[R1].txt - [1378 octets] - [06/06/2014 02:51:44]
AdwCleaner[R2].txt - [748 octets] - [11/06/2014 08:25:41]
AdwCleaner[S0].txt - [2481 octets] - [05/11/2013 17:25:58]
AdwCleaner[S1].txt - [1414 octets] - [06/06/2014 02:52:22]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [927 octets] ##########

I use Malware Bytes daily running 3 different scans every day with those settings turned on.

It only found a non Malware thing I know for a fact is not anything malicious, just unknown to it.

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/11/2014
Scan Time: 1:28:28 AM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.11.01
Rootkit Database: v2014.06.02.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled

OS: Windows 8
CPU: x64
File System: NTFS
User: Elliot

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 317897
Time Elapsed: 5 min, 21 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 Pro x64
Ran by Elliot on Wed 06/11/2014 at 8:35:04.68
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160}



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 06/11/2014 at 8:41:46.75
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-06-2014 01
Ran by Elliot (administrator) on PLAYSATURN64 on 11-06-2014 08:45:00
Running from C:\Users\Elliot\Desktop
Platform: Windows 8 Pro (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Razer Inc.) D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\DIGI+ VRM\PowerControlHelp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) D:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
() D:\Program Files (x86)\puush\puush.exe
(Flux Software LLC) C:\Users\Elliot\AppData\Local\FluxSoftware\Flux\flux.exe
(Logitech, Inc.) C:\Program Files\Common Files\logishrd\KHAL3\KHALMNPR.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(Slackerhome Productions) D:\Utilities\Better DS3\Better DS3.exe
(Zemana Ltd.) D:\Utilities\Zemana AntiLogger Free\AntiLogger Free.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
() D:\Utilities\AudioSwitcher\switcher.exe
(Dropbox, Inc.) C:\Users\Elliot\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(Binary Fortress Software) D:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(The Pidgin developer community) D:\Program Files (x86)\Pidgin\pidgin.exe
(Mozilla Corporation) D:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Don HO don.h@free.fr) D:\Program Files (x86)\Notepad++\notepad++.exe
(Valve Corporation) D:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Thisisu) C:\Users\Elliot\Desktop\JRT.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(The Chromium Authors) C:\Users\Elliot\AppData\Local\Chromium\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1064224 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.)
HKLM-x32\...\Run: [EaseUS EPM tray] => D:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe [2081792 2013-03-29] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM-x32\...\Run: [VirtualCloneDrive] => D:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [ZALFree] => D:\Utilities\Zemana AntiLogger Free\AntiLogger Free.exe [12746616 2014-03-19] (Zemana Ltd.)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Wisdom-soft ScreenHunter 6.0 Free] => 0
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [C3] => C:\Program Files (x86)\Vivox\C3\c3.exe [2848312 2012-10-22] (Vivox)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Google Update] => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-28] (Google Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [uTorrent] => C:\Users\Elliot\AppData\Roaming\uTorrent\uTorrent.exe [1130576 2013-08-17] (BitTorrent Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [puush] => D:\Program Files (x86)\puush\puush.exe [567880 2013-09-12] ()
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [f.lux] => C:\Users\Elliot\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-15] (Flux Software LLC)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [DisplayFusion] => D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [1753280 2014-06-09] (Valve Corporation)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\MountPoints2: {8a3d454d-c92a-11e3-bf17-0026833b2ff7} - "F:\TL_Bootstrap.exe"
HKU\S-1-5-21-2549689781-2079618573-4062338913-1001\...\MountPoints2: {d666ac74-f7e0-11e2-bea8-c8600036c503} - "I:\autorun.exe"
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Wisdom-soft ScreenHunter 6.0 Free] => 0
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [C3] => C:\Program Files (x86)\Vivox\C3\c3.exe [2848312 2012-10-22] (Vivox)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Google Update] => C:\Users\Elliot\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-02-28] (Google Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [uTorrent] => C:\Users\Elliot\AppData\Roaming\uTorrent\uTorrent.exe [1130576 2013-08-17] (BitTorrent Inc.)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [1753280 2014-06-09] (Valve Corporation)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [puush] => D:\Program Files (x86)\puush\puush.exe [567880 2013-09-12] ()
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [f.lux] => C:\Users\Elliot\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-15] (Flux Software LLC)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\Run: [DisplayFusion] => D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [7952224 2013-11-27] (Binary Fortress Software)
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\MountPoints2: {8a3d454d-c92a-11e3-bf17-0026833b2ff7} - "F:\TL_Bootstrap.exe"
HKU\S-1-5-21-2549689781-2079618573-4062338913-1006\...\MountPoints2: {d666ac74-f7e0-11e2-bea8-c8600036c503} - "I:\autorun.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Better DS3.exe - Shortcut.lnk
ShortcutTarget: Better DS3.exe - Shortcut.lnk -> D:\Utilities\Better DS3\Better DS3.exe (Slackerhome Productions)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Content Manager Assistant for PlayStation®.lnk
ShortcutTarget: Content Manager Assistant for PlayStation®.lnk -> C:\Program Files (x86)\Sony\Content Manager Assistant\CMA.exe (Sony Computer Entertainment Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\switcher.exe - Shortcut.lnk
ShortcutTarget: switcher.exe - Shortcut.lnk -> D:\Utilities\AudioSwitcher\switcher.exe ()
Startup: C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DisplayFusion.lnk
ShortcutTarget: DisplayFusion.lnk -> D:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (Binary Fortress Software)
Startup: C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Elliot\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xAA6D8554636DCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US,en;q=0.8,he;q=0.5,ja;q=0.3
BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - D:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 167.206.254.1 167.206.254.2 167.206.13.180

FireFox:
========
FF ProfilePath: C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 - D:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - D:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.34 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - D:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - D:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @qq.com/npchrome - C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll No File
FF Plugin-x32: @qq.com/npqscall - C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll No File
FF Plugin-x32: @qq.com/TXSSO - C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\Bin\npSSOAxCtrlForPTLogin.dll No File
FF Plugin-x32: @raidcall.en/RCplugin - C:\Users\Elliot\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - D:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Elliot\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Elliot\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Elliot\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Elliot\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Elliot\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Elliot\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Elliot\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF Extension: Stylish - C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2014-04-03]
FF Extension: Adblock Plus - C:\Users\Elliot\AppData\Roaming\Mozilla\Firefox\Profiles\cvogirnf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-05-09]
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-02-14]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - D:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-10-31]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-02-14]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF StartMenuInternet: FIREFOX.EXE - D:\Program Files (x86)\Nightly\firefox.exe

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2012-09-11] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2012-09-11] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120 2012-09-11] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2012-11-09] (ASUSTeK Computer Inc.) [File not signed]
R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations)
R3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [331776 2012-07-25] (Microsoft Corporation)
R2 DisplayFusionService; D:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [1375600 2013-11-27] (Binary Fortress Software)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166680 2012-05-03] (Intel Corporation)
S2 MBAMScheduler; D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; D:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2013-08-26] ()
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2013-08-26] ()
R2 RzKLService; D:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2012-04-19] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-09-11] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-14] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
S3 AVer330; C:\Windows\system32\DRIVERS\AVer330.sys [1503744 2013-06-04] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [30720 2013-02-02] (Microsoft Corporation)
R3 CY3014.X64; C:\Windows\SYSTEM32\DRIVERS\CY3014.X64.SYS [3149184 2013-09-27] ()
R3 dvdfab; C:\Windows\System32\drivers\dvdfab.sys [79232 2011-08-15] (Fengtao Software Inc.)
S3 e1cexpress; C:\Windows\system32\DRIVERS\e1c63x64.sys [452432 2013-04-30] (Intel Corporation)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
S3 ffusb2audio; C:\Windows\system32\DRIVERS\ffusb2audio.sys [127280 2013-10-07] (Focusrite Audio Engineering Limited.)
R3 keycrypt; C:\Windows\System32\DRIVERS\KeyCrypt64.sys [25568 2014-03-19] (Zemana Ltd.)
S3 LGSHidFilt; C:\Windows\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R1 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-09-27] (NVIDIA Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S3 rspLLL; C:\Windows\System32\DRIVERS\rspLLL64.sys [24672 2012-07-22] (Resplendence Software Projects Sp.)
R3 rusb3hub; C:\Windows\system32\DRIVERS\rusb3hub.sys [114568 2012-08-27] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\system32\DRIVERS\rusb3xhc.sys [230280 2012-08-27] (Renesas Electronics Corporation)
S3 ssudrmnet; C:\Windows\system32\DRIVERS\ssudrmnet.sys [68888 2013-10-28] (DEVGURU Co., LTD.)
S3 ssudrmnetmp; C:\Windows\system32\DRIVERS\ssudrmnetmp.sys [92952 2013-10-28] (DEVGURU Co., LTD.)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [204568 2013-10-28] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 VBAudioVACAMME; C:\Windows\system32\DRIVERS\vbaudio_cablea64_win7.sys [41192 2013-07-22] (Windows ® Win 7 DDK provider)
R3 VBAudioVACBMME; C:\Windows\system32\DRIVERS\vbaudio_cableb64_win7.sys [41192 2013-07-22] (Windows ® Win 7 DDK provider)
R3 VBAudioVACMME; C:\Windows\system32\DRIVERS\vbaudio_cable64_win7.sys [41192 2013-07-11] (Windows ® Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\Windows\system32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2013-08-17] (Windows ® Win 7 DDK provider)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [89088 2012-07-25] (Microsoft Corporation)
S3 cpuz136; \??\C:\Users\Elliot\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X]
S3 GPU-Z; \??\C:\Users\Elliot\AppData\Local\Temp\GPU-Z.sys [X]
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-11 08:44 - 2014-06-11 08:44 - 00000000 ____D () C:\Users\Elliot\Desktop\FRST-OlderVersion
2014-06-11 08:41 - 2014-06-11 08:41 - 00000728 _____ () C:\Users\Elliot\Desktop\JRT.txt
2014-06-11 08:34 - 2014-06-11 08:34 - 01016261 _____ (Thisisu) C:\Users\Elliot\Desktop\JRT.exe
2014-06-11 08:24 - 2014-06-11 08:24 - 01333465 _____ () C:\Users\Elliot\Desktop\AdwCleaner.exe
2014-06-10 20:07 - 2014-06-10 20:07 - 00005954 _____ () C:\Users\Elliot\Desktop\ckfiles.txt
2014-06-10 19:58 - 2014-06-10 19:58 - 00468480 _____ () C:\Users\Elliot\Desktop\CKScanner.exe
2014-06-10 04:30 - 2014-06-10 04:31 - 00060994 _____ () C:\Users\Elliot\Desktop\Addition.txt
2014-06-10 04:29 - 2014-06-11 08:45 - 00027145 _____ () C:\Users\Elliot\Desktop\FRST.txt
2014-06-10 04:29 - 2014-06-11 08:45 - 00000000 ____D () C:\FRST
2014-06-10 04:28 - 2014-06-11 08:44 - 02081792 _____ (Farbar) C:\Users\Elliot\Desktop\FRST64.exe
2014-06-07 23:04 - 2014-06-07 23:04 - 00029951 _____ () C:\Users\Elliot\Desktop\dds.txt
2014-06-07 23:04 - 2014-06-07 23:04 - 00009609 _____ () C:\Users\Elliot\Desktop\attach.txt
2014-06-07 23:03 - 2014-06-07 23:03 - 00688992 ____R (Swearware) C:\Users\Elliot\Desktop\dds.com
2014-06-07 20:39 - 2014-06-07 20:39 - 00297984 _____ () C:\Windows\Minidump\060714-54281-01.dmp
2014-06-07 18:51 - 2014-06-07 22:20 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\foobar2000
2014-06-07 18:51 - 2014-06-07 18:51 - 00000810 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2014-06-07 18:35 - 2014-06-07 18:35 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 04949952 _____ () C:\Windows\SysWOW64\SpoonUninstall.exe
2014-06-07 17:58 - 2014-06-07 17:58 - 00015932 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00013434 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp DSP Effects.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00000863 _____ () C:\Users\Elliot\Desktop\dBpoweramp Batch Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000858 _____ () C:\Users\Elliot\Desktop\dBpoweramp Music Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000816 _____ () C:\Users\Elliot\Desktop\dBpoweramp CD Ripper.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\Program Files\dBpoweramp
2014-06-07 12:29 - 2014-06-07 12:29 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-07 12:24 - 2014-06-07 12:27 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-06 14:18 - 2014-06-06 14:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chromium Updater
2014-06-06 14:18 - 2014-06-06 14:19 - 00000000 ____D () C:\Program Files (x86)\Chromium Updater
2014-06-06 14:18 - 2014-06-06 14:18 - 00733596 _____ (logicPwn ) C:\Users\Elliot\Downloads\cu_1600_installer.exe
2014-06-06 13:53 - 2014-06-06 13:53 - 00000000 ____D () C:\Windows\ERUNT
2014-06-06 02:52 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-06-06 02:47 - 2014-06-06 02:47 - 01333465 _____ () C:\Users\Elliot\Desktop\adwcleaner_3.212.exe
2014-06-06 02:40 - 2014-06-06 02:40 - 00448512 _____ (OldTimer Tools) C:\Users\Elliot\Desktop\TFC.exe
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\2C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C04
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0816
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0804
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0424
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041F
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0419
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0416
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0415
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0414
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0413
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0412
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0411
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0410
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040C
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0409
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0408
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0407
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0406
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0405
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0404
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0401
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-06-05 01:16 - 2014-06-05 01:16 - 01940216 _____ (Bleeping Computer, LLC) C:\Users\Elliot\Desktop\rkill.exe
2014-06-05 01:16 - 2014-06-05 01:16 - 00003852 _____ () C:\Users\Elliot\Desktop\Rkill.txt
2014-06-05 00:59 - 2014-06-05 01:08 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-04 23:34 - 2014-06-04 23:33 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Elliot\Desktop\mbar-1.07.0.1009.exe
2014-06-04 20:59 - 2014-06-04 20:59 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2014-06-04 20:49 - 2014-06-04 20:49 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-04 20:48 - 2014-06-04 21:00 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Users\Elliot\AppData\Local\AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Program Files (x86)\KeyCryptSDK
2014-06-04 20:46 - 2014-03-19 13:38 - 00025568 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\KeyCrypt64.sys
2014-05-30 19:56 - 2014-05-19 19:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-30 19:53 - 2014-05-19 22:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-30 19:53 - 2014-05-19 22:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00416712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00382240 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00335704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-30 19:53 - 2014-05-19 22:44 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-30 03:04 - 2014-05-30 03:28 - 00000000 ____D () C:\Users\Elliot\VirtualBox VMs
2014-05-30 03:00 - 2014-05-30 03:27 - 00000000 ____D () C:\Users\Elliot\.VirtualBox
2014-05-30 02:57 - 2014-05-30 02:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2014-05-30 02:56 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-05-30 02:56 - 2014-05-16 14:03 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\Users\Public\Desktop\Double Dragon Neon.lnk
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Double Dragon Neon.lnk
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-20 03:52 - 2014-05-20 03:52 - 00000000 ____D () C:\Users\Elliot\Documents\Tencent Files
2014-05-20 03:11 - 2014-05-20 03:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2014-05-20 03:07 - 2009-02-18 02:51 - 00018760 _____ () C:\Windows\SysWOW64\QQVistaHelper.dll
2014-05-20 00:21 - 2014-05-20 00:21 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Sun
2014-05-18 16:38 - 2014-05-18 16:38 - 00298232 _____ () C:\Windows\Minidump\051814-39906-01.dmp
2014-05-17 05:42 - 2014-05-17 05:42 - 00000796 _____ () C:\Users\Public\Desktop\Speccy.lnk
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\Program Files\Speccy
2014-05-17 04:43 - 2014-05-17 04:43 - 00000918 _____ () C:\Users\Elliot\Desktop\WBFS Manager 3.0.lnk
2014-05-16 14:03 - 2014-05-16 14:03 - 00156448 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetFlt.sys
2014-05-16 14:03 - 2014-05-16 14:03 - 00141600 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp.sys
2014-05-16 14:01 - 2014-05-16 14:01 - 00204064 _____ (Oracle Corporation) C:\Windows\system32\VBoxNetFltNobj.dll
2014-05-16 06:46 - 2014-04-03 07:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-05-16 06:46 - 2014-04-02 23:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-05-16 06:46 - 2014-03-31 18:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-05-16 06:46 - 2014-03-24 19:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-05-16 06:46 - 2014-03-24 18:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-05-14 06:11 - 2014-05-06 01:14 - 19274752 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 06:11 - 2014-05-06 01:14 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 06:11 - 2014-05-05 23:48 - 14367232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 06:11 - 2014-05-05 23:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 06:11 - 2014-05-05 23:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 06:11 - 2014-05-05 23:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 06:11 - 2014-04-12 05:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 06:11 - 2014-04-12 05:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 06:11 - 2014-04-12 05:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-05-14 06:11 - 2014-04-12 05:09 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-05-14 06:11 - 2014-04-12 05:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 06:11 - 2014-04-12 05:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-05-14 06:11 - 2014-04-12 05:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 06:11 - 2014-04-12 05:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 06:11 - 2014-04-12 03:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 06:11 - 2014-04-12 03:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 06:11 - 2014-04-12 03:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 06:11 - 2014-04-12 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-05-14 06:11 - 2014-03-28 15:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-05-14 06:11 - 2014-03-28 04:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 06:11 - 2014-03-28 04:23 - 01287168 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-05-14 06:11 - 2014-03-28 02:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 06:11 - 2014-03-23 18:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-05-14 06:11 - 2014-03-10 23:32 - 06987096 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 06:11 - 2014-03-10 23:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 06:11 - 2014-03-10 20:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 06:11 - 2014-03-10 20:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 06:11 - 2014-03-10 20:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 06:11 - 2014-03-10 20:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 06:11 - 2014-03-10 20:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 06:11 - 2014-03-10 20:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 06:11 - 2014-03-09 23:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-14 06:11 - 2014-03-09 21:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 06:11 - 2014-03-03 19:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-05-14 05:20 - 2014-05-14 05:20 - 00299672 _____ () C:\Windows\Minidump\051414-31468-01.dmp
2014-05-14 03:42 - 2014-05-14 03:42 - 00298160 _____ () C:\Windows\Minidump\051414-20718-01.dmp

==================== One Month Modified Files and Folders =======

2014-06-11 08:45 - 2014-06-10 04:29 - 00027145 _____ () C:\Users\Elliot\Desktop\FRST.txt
2014-06-11 08:45 - 2014-06-10 04:29 - 00000000 ____D () C:\FRST
2014-06-11 08:45 - 2013-02-28 06:10 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Skype
2014-06-11 08:45 - 2013-02-28 05:50 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Temp
2014-06-11 08:44 - 2014-06-11 08:44 - 00000000 ____D () C:\Users\Elliot\Desktop\FRST-OlderVersion
2014-06-11 08:44 - 2014-06-10 04:28 - 02081792 _____ (Farbar) C:\Users\Elliot\Desktop\FRST64.exe
2014-06-11 08:43 - 2013-02-28 05:58 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2549689781-2079618573-4062338913-1001
2014-06-11 08:41 - 2014-06-11 08:41 - 00000728 _____ () C:\Users\Elliot\Desktop\JRT.txt
2014-06-11 08:41 - 2013-02-28 06:07 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\.purple
2014-06-11 08:40 - 2013-12-07 23:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-11 08:34 - 2014-06-11 08:34 - 01016261 _____ (Thisisu) C:\Users\Elliot\Desktop\JRT.exe
2014-06-11 08:29 - 2013-11-05 16:51 - 00000000 ____D () C:\AdwCleaner
2014-06-11 08:24 - 2014-06-11 08:24 - 01333465 _____ () C:\Users\Elliot\Desktop\AdwCleaner.exe
2014-06-11 08:00 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\sru
2014-06-11 07:50 - 2013-04-19 18:04 - 00000938 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001UA.job
2014-06-11 06:49 - 2013-02-28 05:51 - 01302118 _____ () C:\Windows\WindowsUpdate.log
2014-06-11 06:37 - 2012-07-26 03:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-06-11 06:35 - 2013-08-16 08:20 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 06:35 - 2013-03-01 11:03 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 03:43 - 2014-04-16 22:34 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-11 01:50 - 2013-04-19 18:04 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2549689781-2079618573-4062338913-1001Core.job
2014-06-10 21:50 - 2013-03-28 19:02 - 00417088 _____ () C:\Windows\system32\perfh00D.dat
2014-06-10 21:50 - 2013-03-28 19:02 - 00065090 _____ () C:\Windows\system32\perfc00D.dat
2014-06-10 21:50 - 2012-07-26 03:28 - 01320710 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-10 21:48 - 2013-02-28 17:31 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Dropbox
2014-06-10 21:47 - 2014-05-04 16:23 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\DropboxMaster
2014-06-10 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-10 21:44 - 2013-02-28 06:47 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-10 21:44 - 2013-02-28 05:45 - 00068920 _____ () C:\Windows\PFRO.log
2014-06-10 21:44 - 2012-07-26 03:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-10 20:07 - 2014-06-10 20:07 - 00005954 _____ () C:\Users\Elliot\Desktop\ckfiles.txt
2014-06-10 19:58 - 2014-06-10 19:58 - 00468480 _____ () C:\Users\Elliot\Desktop\CKScanner.exe
2014-06-10 04:31 - 2014-06-10 04:30 - 00060994 _____ () C:\Users\Elliot\Desktop\Addition.txt
2014-06-09 19:32 - 2013-08-12 18:00 - 00217600 _____ () C:\Users\Elliot\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-09 07:23 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-09 07:23 - 2012-07-26 03:21 - 00151085 _____ () C:\Windows\setupact.log
2014-06-08 19:40 - 2013-03-20 20:57 - 00000000 ____D () C:\ProgramData\InstallMate
2014-06-07 23:04 - 2014-06-07 23:04 - 00029951 _____ () C:\Users\Elliot\Desktop\dds.txt
2014-06-07 23:04 - 2014-06-07 23:04 - 00009609 _____ () C:\Users\Elliot\Desktop\attach.txt
2014-06-07 23:03 - 2014-06-07 23:03 - 00688992 ____R (Swearware) C:\Users\Elliot\Desktop\dds.com
2014-06-07 22:20 - 2014-06-07 18:51 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\foobar2000
2014-06-07 20:39 - 2014-06-07 20:39 - 00297984 _____ () C:\Windows\Minidump\060714-54281-01.dmp
2014-06-07 20:39 - 2013-03-26 18:08 - 00000000 ____D () C:\Windows\Minidump
2014-06-07 18:51 - 2014-06-07 18:51 - 00000810 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2014-06-07 18:46 - 2014-01-01 03:03 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\deluge
2014-06-07 18:35 - 2014-06-07 18:35 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 04949952 _____ () C:\Windows\SysWOW64\SpoonUninstall.exe
2014-06-07 17:58 - 2014-06-07 17:58 - 00015932 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00013434 _____ () C:\Windows\SysWOW64\SpoonUninstall-dBpoweramp DSP Effects.dat
2014-06-07 17:58 - 2014-06-07 17:58 - 00000863 _____ () C:\Users\Elliot\Desktop\dBpoweramp Batch Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000858 _____ () C:\Users\Elliot\Desktop\dBpoweramp Music Converter.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000816 _____ () C:\Users\Elliot\Desktop\dBpoweramp CD Ripper.lnk
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dBpoweramp
2014-06-07 17:58 - 2014-06-07 17:58 - 00000000 ____D () C:\Program Files\dBpoweramp
2014-06-07 12:29 - 2014-06-07 12:29 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-07 12:29 - 2014-06-07 12:29 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-07 12:27 - 2014-06-07 12:27 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-07 12:27 - 2014-06-07 12:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-07 12:27 - 2014-06-07 12:24 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-07 10:50 - 2013-02-28 06:30 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Mozilla
2014-06-07 00:29 - 2012-07-26 01:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-06-07 00:18 - 2013-02-28 06:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-06 20:50 - 2014-02-07 22:57 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-06 20:50 - 2013-02-28 06:10 - 00000000 ____D () C:\ProgramData\Skype
2014-06-06 14:19 - 2014-06-06 14:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chromium Updater
2014-06-06 14:19 - 2014-06-06 14:18 - 00000000 ____D () C:\Program Files (x86)\Chromium Updater
2014-06-06 14:19 - 2013-12-09 18:29 - 00002262 _____ () C:\Users\Elliot\Desktop\Chromium.lnk
2014-06-06 14:19 - 2013-12-09 15:44 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Chromium
2014-06-06 14:18 - 2014-06-06 14:18 - 00733596 _____ (logicPwn ) C:\Users\Elliot\Downloads\cu_1600_installer.exe
2014-06-06 13:53 - 2014-06-06 13:53 - 00000000 ____D () C:\Windows\ERUNT
2014-06-06 02:47 - 2014-06-06 02:47 - 01333465 _____ () C:\Users\Elliot\Desktop\adwcleaner_3.212.exe
2014-06-06 02:40 - 2014-06-06 02:40 - 00448512 _____ (OldTimer Tools) C:\Users\Elliot\Desktop\TFC.exe
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\2C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C04
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0816
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0804
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0424
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041F
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0419
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0416
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0415
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0414
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0413
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0412
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0411
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0410
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040C
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0409
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0408
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0407
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0406
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0405
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0404
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0401
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Program Files (x86)\Renesas Electronics
2014-06-05 17:51 - 2013-02-28 07:21 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-05 15:05 - 2013-05-22 23:52 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Temp
2014-06-05 01:16 - 2014-06-05 01:16 - 01940216 _____ (Bleeping Computer, LLC) C:\Users\Elliot\Desktop\rkill.exe
2014-06-05 01:16 - 2014-06-05 01:16 - 00003852 _____ () C:\Users\Elliot\Desktop\Rkill.txt
2014-06-05 01:08 - 2014-06-05 00:59 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-04 23:33 - 2014-06-04 23:34 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Elliot\Desktop\mbar-1.07.0.1009.exe
2014-06-04 21:00 - 2014-06-04 20:48 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-06-04 20:59 - 2014-06-04 20:59 - 00012872 _____ (SurfRight B.V.) C:\Windows\system32\bootdelete.exe
2014-06-04 20:49 - 2014-06-04 20:49 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Users\Elliot\AppData\Local\AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiLogger Free
2014-06-04 20:46 - 2014-06-04 20:46 - 00000000 ____D () C:\Program Files (x86)\KeyCryptSDK
2014-06-04 10:48 - 2014-01-27 22:02 - 00000000 ____D () C:\Users\Elliot\AppData\Local\Logitech
2014-06-04 10:48 - 2013-04-22 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-06-03 02:10 - 2014-04-16 22:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-01 02:08 - 2014-04-05 19:58 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\tixati
2014-05-31 20:57 - 2013-07-20 13:58 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Trine2
2014-05-31 08:06 - 2013-02-28 12:25 - 00883891 _____ () C:\Windows\DirectX.log
2014-05-31 07:49 - 2013-02-28 06:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-05-30 20:00 - 2013-02-28 05:50 - 00000000 ____D () C:\Users\Elliot
2014-05-30 19:56 - 2013-02-28 05:56 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-05-30 19:46 - 2013-02-28 06:44 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Notepad++
2014-05-30 03:28 - 2014-05-30 03:04 - 00000000 ____D () C:\Users\Elliot\VirtualBox VMs
2014-05-30 03:27 - 2014-05-30 03:00 - 00000000 ____D () C:\Users\Elliot\.VirtualBox
2014-05-30 02:57 - 2014-05-30 02:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2014-05-29 21:44 - 2014-01-11 11:19 - 00000000 ____D () C:\ProgramData\Steam
2014-05-29 21:44 - 2013-08-13 13:23 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Wayforward Technologies
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\Users\Public\Desktop\Double Dragon Neon.lnk
2014-05-29 21:43 - 2014-05-29 21:43 - 00000655 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Double Dragon Neon.lnk
2014-05-29 16:01 - 2013-12-14 02:29 - 00001024 _____ () C:\Users\Elliot\Desktop\Dropbox.lnk
2014-05-29 16:01 - 2013-12-14 02:23 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-05-29 16:01 - 2013-02-28 05:51 - 00000000 ___RD () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-24 18:49 - 2013-09-29 06:06 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\DisplayFusion
2014-05-24 15:09 - 2013-02-21 18:22 - 00000000 ____D () C:\Users\Elliot\Documents\SEGA
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-24 13:48 - 2014-05-24 13:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2014-05-23 16:52 - 2013-07-04 15:03 - 00000132 _____ () C:\Users\Elliot\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-05-22 19:15 - 2014-02-16 17:03 - 00000000 ____D () C:\Program Files\OBS
2014-05-21 12:01 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\rescache
2014-05-20 03:52 - 2014-05-20 03:52 - 00000000 ____D () C:\Users\Elliot\Documents\Tencent Files
2014-05-20 03:11 - 2014-05-20 03:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software
2014-05-20 00:21 - 2014-05-20 00:21 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\Sun
2014-05-19 22:44 - 2014-05-30 19:53 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 16003912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-05-19 22:44 - 2014-05-30 19:53 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00837056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00416712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00382240 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00335704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-05-19 22:44 - 2014-05-30 19:53 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-05-19 22:44 - 2014-01-25 16:00 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-05-19 22:44 - 2013-10-27 15:08 - 02730208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 14434704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 03109248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 00952952 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-05-19 22:44 - 2013-02-02 05:53 - 00026069 _____ () C:\Windows\system32\nvinfo.pb
2014-05-19 22:44 - 2012-07-25 16:22 - 18531568 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-05-19 21:25 - 2013-04-23 21:49 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-05-19 21:25 - 2013-04-23 21:49 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-05-19 19:10 - 2014-05-30 19:56 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-05-18 16:38 - 2014-05-18 16:38 - 00298232 _____ () C:\Windows\Minidump\051814-39906-01.dmp
2014-05-18 03:19 - 2013-04-05 21:44 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\RenPy
2014-05-17 07:14 - 2014-02-02 21:59 - 00041984 ___SH () C:\Users\Elliot\Downloads\Thumbs.db
2014-05-17 05:42 - 2014-05-17 05:42 - 00000796 _____ () C:\Users\Public\Desktop\Speccy.lnk
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-05-17 05:42 - 2014-05-17 05:42 - 00000000 ____D () C:\Program Files\Speccy
2014-05-17 04:44 - 2013-03-05 16:53 - 00000000 ____D () C:\Users\Elliot\AppData\Local\WBFSManager
2014-05-17 04:43 - 2014-05-17 04:43 - 00000918 _____ () C:\Users\Elliot\Desktop\WBFS Manager 3.0.lnk
2014-05-17 04:43 - 2013-03-05 16:52 - 00000000 ____D () C:\Users\Elliot\Documents\WBFS Manager Covers
2014-05-16 14:04 - 2014-05-30 02:56 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-05-16 14:03 - 2014-05-30 02:56 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2014-05-16 14:03 - 2014-05-16 14:03 - 00156448 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetFlt.sys
2014-05-16 14:03 - 2014-05-16 14:03 - 00141600 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxNetAdp.sys
2014-05-16 14:01 - 2014-05-16 14:01 - 00204064 _____ (Oracle Corporation) C:\Windows\system32\VBoxNetFltNobj.dll
2014-05-16 10:27 - 2013-02-28 07:14 - 00000000 ____D () C:\Users\Elliot\AppData\Roaming\vlc
2014-05-16 06:43 - 2013-02-28 05:51 - 00000000 ___RD () C:\Users\Elliot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\ToastData
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\he-IL
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-16 06:41 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-14 19:49 - 2013-04-23 21:49 - 03774821 _____ () C:\Windows\system32\nvcoproc.bin
2014-05-14 05:20 - 2014-05-14 05:20 - 00299672 _____ () C:\Windows\Minidump\051414-31468-01.dmp
2014-05-14 03:42 - 2014-05-14 03:42 - 00298160 _____ () C:\Windows\Minidump\051414-20718-01.dmp
2014-05-14 03:40 - 2014-05-11 17:19 - 00140839 ____N () C:\Windows\Minidump\051414-11890-01.dmp
2014-05-13 14:40 - 2013-12-07 23:03 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-12 07:26 - 2014-04-16 22:34 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:26 - 2014-04-16 22:34 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2013-02-28 06:27 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

Some content of TEMP:
====================
C:\Users\Elliot\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpelzpov.dll
C:\Users\Elliot\AppData\Local\Temp\geek_x64.exe
C:\Users\Elliot\AppData\Local\Temp\InstHelper.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-11 06:33

==================== End Of Log ============================

Edited by Smashbro29, 11 June 2014 - 07:47 AM.


#8 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,030 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:50 AM

Posted 11 June 2014 - 08:19 AM

There are formatting errors in the FRST Log. Please attach the log.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#9 Smashbro29

Smashbro29
  • Topic Starter

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 12 June 2014 - 10:15 AM

Sure thing. Sorry about that.

#10 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,030 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:50 AM

Posted 12 June 2014 - 10:28 AM

You didn't attached the log in your last post :P

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#11 Smashbro29

Smashbro29
  • Topic Starter

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 12 June 2014 - 10:58 AM

Are you sure? I'm sorry, I thought I did.

Attached Files



#12 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,030 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:50 AM

Posted 12 June 2014 - 11:03 AM

2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\2C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C0A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0C04
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0816
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0804
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0424
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041F
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\041B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0419
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0416
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0415
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0414
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0413
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0412
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0411
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0410
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040E
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040D
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040C
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040B
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\040A
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0409
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0408
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0407
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0406
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0405
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0404
2014-06-05 17:51 - 2014-06-05 17:51 - 00000000 ____D () C:\Windows\system32\0401


Do you know these folders?

Step 1: FRST Fix
  • Please download the attached fixlist.txt file and save it to the same location as FRST

    Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST.exe/FRST64.exe and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply
Step 2: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.
Step 3: ESET

Please disable your AntiVirus before doing these steps!
  • If you have Win Vista / Win 7 / Win 8 please start IE as Administrator!
  • This will only work for Internet Explorer or FireFox
  • Please download ESET Online Scanner from here
  • How to do this?
    • Visit this website here
    • You will see a screen like this:


e922iil8.png

  • Click Run ESET Online Scanner

    4e3svhbd.png
  • A Window will open (see above) - please click on the link
  • A window will pop up - please download the file to your Desktop
  • When the download has finished please run the program (for Win Vista/ Win7 / Win 8 User please run it as Administrator)

    p35jbmyy.png
  • Tick the box next to YES, I accept the Terms of Use then click on: Start
  • You may see a panel towards the top of the screen telling you the website wants to install an addon... click and allow it to install. If your firewall asks whether you want to allow installation, say yes.

    p3b9meru.png
  • Make sure that the option Remove found threats is NOT checked.
  • Make sure that the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Then click on Start
  • virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • After the scan is finished please click on Finish
  • Use notepad to open the logfile located at C:\Program Files (x86)\ESET\ESET Online Scanner\log.txt
  • Copy and paste that log as a reply to this topic.
Step 4: Question

How is your PC running?

Attached Files


~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#13 Smashbro29

Smashbro29
  • Topic Starter

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 12 June 2014 - 03:48 PM

So I'm going through the list.

 

Here's what I know about:

 

epm.exe I googled it. I still don't get where it's from.

 

WarioDate is a game made by (a very sick) individual and it's not anything harmful.

 

The SSFIVAE Unlocker is a cheating program to unlock things in Street Fighter without having to grind. Also safe.

 

The things pertaining to "Double Dragon" is pirated software I got because it worked better than the one I bought. So yes that I know is pirated but it's quite justified.

 

Skype log view is a program that can be found here: http://www.softpedia.com/get/Internet/Chat/Other-Chat-Tools/SkypeLogView.shtml

 

Question 4: Still not well. CPU is regulalry hitting 30-50% and that's being generous and memory is also in the 50%s. I have done a lot more on this PC and barely hit 10% on each.

Attached Files


Edited by Smashbro29, 12 June 2014 - 03:51 PM.


#14 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 4,030 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:04:50 AM

Posted 12 June 2014 - 04:10 PM

D:\Torrent\Torrent_Data\Tixati\Double.Dragon.Neon-RELOADED\rld-dodrne.iso a variant of Win32/HackTool.Crack.BL potentially unsafe application
D:\Torrent\Torrent_Data\Tixati\Double.Dragon.Neon-RELOADED\rld-dodrne\Crack\bin\steam_api.dll a variant of Win32/HackTool.Crack.BL potentially unsafe application

Why do you use Cracks?

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#15 Smashbro29

Smashbro29
  • Topic Starter

  • Members
  • 114 posts
  • OFFLINE
  •  
  • Local time:05:50 AM

Posted 12 June 2014 - 04:12 PM

 

D:\Torrent\Torrent_Data\Tixati\Double.Dragon.Neon-RELOADED\rld-dodrne.iso a variant of Win32/HackTool.Crack.BL potentially unsafe application
D:\Torrent\Torrent_Data\Tixati\Double.Dragon.Neon-RELOADED\rld-dodrne\Crack\bin\steam_api.dll a variant of Win32/HackTool.Crack.BL potentially unsafe application

Why do you use Cracks?

 

 

The things pertaining to "Double Dragon" is pirated software I got because it worked better than the one I bought. So yes that I know is pirated but it's quite justified.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users