Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

cmd.exe windows opens + problems with windows 8/programs visual


  • This topic is locked This topic is locked
40 replies to this topic

#1 Xpl0R

Xpl0R

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 21 June 2014 - 12:39 AM

Live Update forced a shutdown and made a very long update. Since, a DOS screen opens with cmd.exe command, my background has changed twice by itself, the color theme of windows 8 changed (icons have a white background and colors are not the ones I selected), I can't see "boxes", buttons or design of internet pages (for example, on facebook, the page is white instead of blue; on gmail, I can't see the top right button that permits you to see the menu and disconnect).
Thanks in advance for your time and support!

Here is the DDS
 
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16921
Run by Champion at 0:57:54 on 2014-06-21
Microsoft Windows 8  6.2.9200.0.1252.2.1036.18.3982.1538 [GMT -4:00]
.
AV: McAfee Anti-Virus et Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: AVG Internet Security 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus et Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Internet Security 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: Pare-feu McAfee  *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
FW: AVG Internet Security 2014 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
.
============== Running Processes ===============
.
c:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Windows\system32\DptfParticipantProcessorService.exe
C:\Windows\system32\DptfPolicyConfigTDPService.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\windows\system32\mfevtps.exe
C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe
C:\Program Files\ASUS\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
C:\Windows\system32\taskhostex.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
C:\Windows\system32\igfxpers.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\SYSTEM32\notepad.exe
C:\Windows\SYSTEM32\notepad.exe
C:\Windows\SYSTEM32\notepad.exe
C:\Windows\SYSTEM32\notepad.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
C:\PROGRA~1\McAfee\MSM\McSmtFwk.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://asus13.msn.com
uDefault_Page_URL = hxxp://asus13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe /S
mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
mPolicies-System: DisableCAD = dword:1
TCP: NameServer = 192.168.2.1
TCP: Interfaces\{0123CFDC-0090-4E89-88A6-76D90E3FE617} : DHCPNameServer = 192.168.2.1
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3
x64-Run: [BtTray] "C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
x64-Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
x64-mPolicies-System: DisableCAD = dword:1
x64-IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Champion\AppData\Roaming\Mozilla\Firefox\Profiles\ylgl3lm4.default\
FF - plugin: c:\PROGRA~2\mcafee\msc\npMcSnFFPl.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\Drivers\avgidsha.sys [2014-5-13 191768]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\Drivers\avgloga.sys [2014-5-13 323352]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\Drivers\avgmfx64.sys [2014-5-13 130328]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\Drivers\avgrkx64.sys [2014-5-13 31512]
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-7-5 647736]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\Drivers\mfehidk.sys [2012-6-22 784760]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\Drivers\mfewfpk.sys [2012-6-22 346760]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\Drivers\avgdiska.sys [2014-5-13 152344]
R1 Avgfwfd;AVG network filter service;C:\Windows\System32\Drivers\avgfwd6a.sys [2013-9-26 57144]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\Drivers\avgidsdrivera.sys [2014-5-13 236312]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\Drivers\avgldx64.sys [2014-5-13 235800]
R1 Avgwfpa;AVG Firewall Driver;C:\Windows\System32\Drivers\avgwfpa.sys [2014-3-31 274712]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-4-13 277120]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2012-10-31 231040]
R2 avgfws;Pare-feu AVG;C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [2014-5-13 1473792]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-5-13 3644432]
R2 avgsvc;AVG Service;C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2014-6-17 829968]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-5-13 292424]
R2 DptfParticipantProcessorService;Intel® Dynamic Platform and Thermal Framework Processor Participant Service Application;C:\Windows\System32\DptfParticipantProcessorService.exe [2013-1-28 30080]
R2 DptfPolicyConfigTDPService;Intel® Dynamic Platform and Thermal Framework Config TDP Service Application;C:\Windows\System32\DptfPolicyConfigTDPService.exe [2013-1-28 31616]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2013-3-20 129856]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-3-20 166720]
R2 McAPExe;McAfee AP Service;C:\Program Files\mcafee\msc\McAPExe.exe [2014-5-21 178528]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe [2014-5-21 1041192]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2012-11-27 219752]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-11-27 189912]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-3-20 365376]
R2 WakeupService;ASUS Wake Service;C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe [2012-12-20 45488]
R2 ZAtheros Bt and Wlan Coex Agent;ZAtheros Bt and Wlan Coex Agent;C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2012-10-31 323584]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\Drivers\AiCharger.sys [2012-9-18 17152]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;C:\Windows\System32\Drivers\btath_flt.sys [2013-3-20 88728]
R3 ATP;ASUS Input Device;C:\Windows\System32\Drivers\AsusTP.sys [2013-1-16 65784]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\Windows\System32\Drivers\btath_bus.sys [2013-3-20 33944]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\Drivers\btath_hcrp.sys [2013-3-20 178840]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\Drivers\btath_lwflt.sys [2013-3-20 76952]
R3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2013-3-20 576152]
R3 BthLEEnum;Pilote Bluetooth Low Energy;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\Drivers\cfwids.sys [2012-6-22 70592]
R3 DptfDevDram;DptfDevDram;C:\Windows\System32\Drivers\DptfDevDram.sys [2013-1-28 107328]
R3 DptfDevFan;DptfDevFan;C:\Windows\System32\Drivers\DptfDevFan.sys [2013-1-28 42816]
R3 DptfDevGen;DptfDevGen;C:\Windows\System32\Drivers\DptfDevGen.sys [2013-1-28 64832]
R3 DptfDevPch;DptfDevPch;C:\Windows\System32\Drivers\DptfDevPch.sys [2013-1-28 96576]
R3 DptfDevProc;DptfDevProc;C:\Windows\System32\Drivers\DptfDevProc.sys [2013-1-28 229184]
R3 DptfManager;DptfManager;C:\Windows\System32\Drivers\DptfManager.sys [2013-1-28 363328]
R3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\Drivers\AsHIDSwitch64.sys [2013-1-28 21152]
R3 IntcDAud;Son Intel® pour écrans;C:\Windows\System32\Drivers\IntcDAud.sys [2013-1-28 342528]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\Drivers\L1C63x64.sys [2013-1-28 118936]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\Drivers\mfeavfk.sys [2012-6-22 311856]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\Drivers\mfefirek.sys [2012-6-22 522360]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\Drivers\mfencbdc.sys [2014-3-18 441264]
S0 Avgboota;AVG Early Launch Anti-Malware Driver;C:\Windows\System32\Drivers\avgboota.sys [2013-9-4 20496]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\Windows\System32\Drivers\mfeelamk.sys [2012-6-18 69352]
S2 McOobeSv;McAfee OOBE Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2012-5-11 200728]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\Drivers\HipShieldK.sys [2014-5-21 197704]
S3 McAWFwk;McAfee Activation Service;C:\PROGRA~1\mcafee\msc\mcawfwk.exe [2012-11-27 332080]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-4-9 289256]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\Drivers\mfencrk.sys [2014-3-18 96592]
S3 RTL8168;Pilote Realtek 8168 NT;C:\Windows\System32\Drivers\Rt630x64.sys [2012-6-2 589824]
.
=============== Created Last 30 ================
.
2014-06-21 03:25:11    --------    d-----w-    C:\FRST
2014-06-21 01:59:43    --------    d-----w-    C:\AdwCleaner
2014-06-16 22:54:11    --------    d-----w-    C:\Program Files\McAfee Security Scan
2014-06-15 12:27:22    23350272    ----a-w-    C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-06-15 12:27:22    22615040    ----a-w-    C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-06-13 16:29:35    628024    ----a-w-    C:\Windows\System32\NotificationUI.exe
2014-06-13 16:29:34    693760    ----a-w-    C:\Windows\System32\WSShared.dll
2014-06-13 16:29:33    566784    ----a-w-    C:\Windows\SysWow64\WSShared.dll
2014-06-13 16:29:32    163840    ----a-w-    C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-13 16:29:32    124928    ----a-w-    C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-12 21:46:21    --------    d-----w-    C:\ProgramData\McAfee Security Scan
2014-06-12 14:15:22    703992    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-06-12 14:15:22    105464    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-06-12 00:17:59    2239488    ----a-w-    C:\Windows\System32\wininet.dll
2014-06-12 00:16:59    619008    ----a-w-    C:\Windows\System32\drivers\srv2.sys
2014-06-12 00:16:59    328024    ----a-w-    C:\Windows\System32\drivers\Classpnp.sys
2014-06-12 00:16:58    309760    ----a-w-    C:\Windows\System32\wusa.exe
2014-06-12 00:16:58    305152    ----a-w-    C:\Windows\SysWow64\wusa.exe
2014-06-12 00:14:39    1845760    ----a-w-    C:\Windows\System32\msxml3.dll
2014-06-12 00:14:38    1419264    ----a-w-    C:\Windows\SysWow64\msxml3.dll
2014-05-31 22:16:52    109568    ----a-w-    C:\Windows\System32\dskquota.dll
2014-05-31 22:16:51    82944    ----a-w-    C:\Windows\SysWow64\dskquota.dll
2014-05-31 22:16:26    929792    ----a-w-    C:\Windows\SysWow64\mfnetsrc.dll
2014-05-31 22:16:26    677888    ----a-w-    C:\Windows\System32\mfnetcore.dll
2014-05-31 22:16:26    673280    ----a-w-    C:\Windows\System32\mfmpeg2srcsnk.dll
2014-05-31 22:16:26    568832    ----a-w-    C:\Windows\SysWow64\mfnetcore.dll
2014-05-31 22:16:26    513024    ----a-w-    C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2014-05-31 22:16:26    1172992    ----a-w-    C:\Windows\System32\mfnetsrc.dll
2014-05-31 22:14:59    34816    ----a-w-    C:\Windows\System32\microsoft-windows-pdc.dll
2014-05-31 22:02:02    405504    ----a-w-    C:\Windows\System32\pcasvc.dll
2014-05-31 22:02:02    31232    ----a-w-    C:\Windows\System32\pcadm.dll
2014-05-31 22:02:02    13312    ----a-w-    C:\Windows\System32\pcalua.exe
2014-05-31 22:02:02    11776    ----a-w-    C:\Windows\System32\pcaevts.dll
2014-05-31 21:59:51    312320    ----a-w-    C:\Windows\System32\msieftp.dll
2014-05-31 21:59:50    273408    ----a-w-    C:\Windows\SysWow64\msieftp.dll
2014-05-31 21:59:48    420864    ----a-w-    C:\Windows\System32\WMPhoto.dll
2014-05-31 21:59:48    368640    ----a-w-    C:\Windows\SysWow64\WMPhoto.dll
2014-05-31 21:59:45    583680    ----a-w-    C:\Windows\System32\msdrm.dll
2014-05-31 21:59:44    451072    ----a-w-    C:\Windows\SysWow64\msdrm.dll
2014-05-31 21:58:24    2304512    ----a-w-    C:\Windows\System32\authui.dll
2014-05-31 21:58:24    2035712    ----a-w-    C:\Windows\SysWow64\authui.dll
2014-05-31 21:52:14    1122768    ----a-w-    C:\Windows\System32\Taskmgr.exe
2014-05-31 21:50:36    1842176    ----a-w-    C:\Windows\SysWow64\dwmcore.dll
2014-05-31 21:49:58    2219520    ----a-w-    C:\Windows\System32\dwmcore.dll
2014-05-31 21:49:56    1403296    ----a-w-    C:\Windows\System32\winload.efi
2014-05-31 21:49:56    1271584    ----a-w-    C:\Windows\System32\winload.exe
2014-05-31 21:49:56    1217352    ----a-w-    C:\Windows\System32\winresume.efi
2014-05-31 21:49:56    1093904    ----a-w-    C:\Windows\System32\winresume.exe
2014-05-31 21:49:54    785408    ----a-w-    C:\Windows\System32\audiosrv.dll
2014-05-31 21:49:47    37632    ----a-w-    C:\Windows\System32\drivers\BthAvrcpTg.sys
2014-05-31 21:47:53    778752    ----a-w-    C:\Windows\System32\oleaut32.dll
2014-05-31 21:47:53    175104    ----a-w-    C:\Windows\System32\storewuauth.dll
2014-05-31 21:47:52    626688    ----a-w-    C:\Windows\System32\resutils.dll
2014-05-31 21:47:52    1455448    ----a-w-    C:\Windows\System32\drivers\dxgkrnl.sys
2014-05-31 21:47:50    374784    ----a-w-    C:\Windows\System32\clusapi.dll
2014-05-31 21:47:19    997632    ----a-w-    C:\Windows\System32\drivers\ndis.sys
2014-05-30 16:48:49    13661696    ----a-w-    C:\Windows\System32\Windows.UI.Xaml.dll
2014-05-30 16:48:33    10799104    ----a-w-    C:\Windows\SysWow64\Windows.UI.Xaml.dll
2014-05-30 16:48:21    1173504    ----a-w-    C:\Windows\System32\UIAutomationCore.dll
2014-05-30 16:48:20    914432    ----a-w-    C:\Windows\SysWow64\UIAutomationCore.dll
2014-05-30 16:48:12    328192    ----a-w-    C:\Windows\System32\ubpm.dll
2014-05-30 16:48:12    151896    ----a-w-    C:\Windows\System32\drivers\tpm.sys
2014-05-30 16:48:08    465240    ----a-w-    C:\Windows\System32\drivers\fvevol.sys
2014-05-30 16:48:05    247296    ----a-w-    C:\Windows\SysWow64\ubpm.dll
2014-05-30 16:48:04    61784    ----a-w-    C:\Windows\System32\drivers\crashdmp.sys
2014-05-30 16:38:07    915968    ----a-w-    C:\Windows\System32\MPSSVC.dll
2014-05-30 16:38:07    758784    ----a-w-    C:\Windows\System32\FirewallAPI.dll
2014-05-30 16:38:07    550400    ----a-w-    C:\Windows\SysWow64\FirewallAPI.dll
2014-05-30 16:38:07    227840    ----a-w-    C:\Windows\System32\WebClnt.dll
2014-05-30 16:38:07    199168    ----a-w-    C:\Windows\SysWow64\WebClnt.dll
2014-05-30 16:38:07    100696    ----a-w-    C:\Windows\System32\drivers\disk.sys
2014-05-30 16:38:06    86016    ----a-w-    C:\Windows\SysWow64\davclnt.dll
2014-05-30 16:38:06    104448    ----a-w-    C:\Windows\System32\davclnt.dll
2014-05-30 16:38:05    74752    ----a-w-    C:\Windows\System32\drivers\mpsdrv.sys
2014-05-30 16:38:05    24576    ----a-w-    C:\Windows\System32\wfapigp.dll
2014-05-30 16:38:05    19968    ----a-w-    C:\Windows\SysWow64\wfapigp.dll
2014-05-30 16:38:05    105984    ----a-w-    C:\Windows\System32\icfupgd.dll
2014-05-30 16:22:21    --------    d-----w-    C:\Users\Champion\AppData\Local\CrashDumps
2014-05-29 23:18:13    10116608    ----a-w-    C:\Windows\System32\twinui.dll
2014-05-29 23:18:11    8858112    ----a-w-    C:\Windows\SysWow64\twinui.dll
2014-05-29 23:18:02    893952    ----a-w-    C:\Windows\SysWow64\msctf.dll
2014-05-29 23:18:02    1125888    ----a-w-    C:\Windows\System32\msctf.dll
2014-05-29 23:17:53    1107968    ----a-w-    C:\Program Files\Common Files\System\Ole DB\oledb32.dll
2014-05-29 23:17:52    411880    ----a-w-    C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-05-29 23:17:43    448512    ----a-w-    C:\Windows\System32\SettingSync.dll
2014-05-29 23:17:42    941056    ----a-w-    C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
2014-05-29 23:17:42    356352    ----a-w-    C:\Windows\SysWow64\SettingSync.dll
2014-05-29 23:17:42    225280    ----a-w-    C:\Windows\System32\mbsmsapi.dll
2014-05-29 23:17:41    158208    ----a-w-    C:\Windows\SysWow64\mbsmsapi.dll
2014-05-29 23:17:32    100864    ----a-w-    C:\Windows\SysWow64\SettingSyncInfo.dll
2014-05-29 23:17:28    128512    ----a-w-    C:\Windows\System32\SettingSyncInfo.dll
2014-05-29 23:16:03    1374208    ----a-w-    C:\Windows\System32\wdc.dll
2014-05-29 23:16:02    566784    ----a-w-    C:\Windows\System32\wvc.dll
2014-05-29 23:15:59    462336    ----a-w-    C:\Windows\System32\sysmon.ocx
2014-05-29 23:15:59    1245696    ----a-w-    C:\Windows\SysWow64\wdc.dll
2014-05-29 23:15:55    437248    ----a-w-    C:\Windows\SysWow64\wvc.dll
2014-05-29 23:15:55    399360    ----a-w-    C:\Windows\SysWow64\sysmon.ocx
2014-05-29 23:15:39    785624    ----a-w-    C:\Windows\System32\drivers\Wdf01000.sys
2014-05-29 23:15:39    54488    ----a-w-    C:\Windows\System32\drivers\WdfLdr.sys
2014-05-29 23:15:10    99328    ----a-w-    C:\Windows\System32\drivers\usbcir.sys
2014-05-29 23:15:10    210560    ----a-w-    C:\Windows\System32\drivers\usbvideo.sys
2014-05-29 23:14:59    694272    ----a-w-    C:\Windows\SysWow64\rpcrt4.dll
2014-05-29 23:14:59    1314816    ----a-w-    C:\Windows\System32\rpcrt4.dll
2014-05-29 23:13:14    652288    ----a-w-    C:\Windows\System32\comctl32.dll
2014-05-29 23:13:14    541696    ----a-w-    C:\Windows\SysWow64\comctl32.dll
2014-05-29 23:10:25    2035200    ----a-w-    C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
2014-05-29 23:10:23    1272320    ----a-w-    C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2014-05-29 23:10:21    1617920    ----a-w-    C:\Program Files\Windows Journal\NBDoc.DLL
2014-05-29 23:10:21    1306112    ----a-w-    C:\Program Files\Windows Journal\JNTFiltr.dll
2014-05-29 23:10:20    1413632    ----a-w-    C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll
2014-05-29 23:10:20    1318912    ----a-w-    C:\Program Files\Windows Journal\JNWDRV.dll
2014-05-29 23:10:20    1029632    ----a-w-    C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\journal.dll
2014-05-29 23:09:59    1184256    ----a-w-    C:\Windows\System32\Display.dll
2014-05-29 23:09:59    1164800    ----a-w-    C:\Windows\SysWow64\Display.dll
2014-05-29 23:09:58    7168    ----a-w-    C:\Windows\System32\KBDKURD.DLL
2014-05-29 23:09:58    6656    ----a-w-    C:\Windows\SysWow64\KBDKURD.DLL
2014-05-29 23:03:37    126464    ----a-w-    C:\Windows\SysWow64\MFCaptureEngine.dll
2014-05-29 23:03:33    11459584    ----a-w-    C:\Windows\System32\glcndFilter.dll
2014-05-29 23:02:39    8552448    ----a-w-    C:\Windows\SysWow64\glcndFilter.dll
2014-05-29 23:02:13    710656    ----a-w-    C:\Windows\System32\winhttp.dll
2014-05-29 23:02:03    1566432    ----a-w-    C:\Windows\System32\ole32.dll
2014-05-29 23:01:59    516608    ----a-w-    C:\Windows\SysWow64\winhttp.dll
2014-05-29 23:01:39    1150160    ----a-w-    C:\Windows\SysWow64\ole32.dll
2014-05-29 23:01:35    883712    ----a-w-    C:\Windows\HelpPane.exe
2014-05-29 23:01:27    1386496    ----a-w-    C:\Windows\System32\wlansvc.dll
2014-05-29 23:01:14    110080    ----a-w-    C:\Windows\System32\dafWCN.dll
2014-05-29 23:01:00    470016    ----a-w-    C:\Windows\System32\wlanmsm.dll
2014-05-29 23:01:00    386560    ----a-w-    C:\Windows\SysWow64\wlanmsm.dll
2014-05-29 23:01:00    212992    ----a-w-    C:\Windows\System32\bthprops.cpl
2014-05-29 23:00:56    172032    ----a-w-    C:\Windows\System32\MFCaptureEngine.dll
2014-05-29 23:00:31    189440    ----a-w-    C:\Windows\SysWow64\bthprops.cpl
2014-05-29 23:00:26    314880    ----a-w-    C:\Windows\System32\rdpclip.exe
2014-05-29 22:59:39    466944    ----a-w-    C:\Windows\System32\wcncsvc.dll
2014-05-29 22:59:35    273408    ----a-w-    C:\Windows\System32\wlanapi.dll
2014-05-29 22:59:24    202240    ----a-w-    C:\Windows\SysWow64\wlanapi.dll
2014-05-29 22:59:17    93696    ----a-w-    C:\Windows\SysWow64\WcnApi.dll
2014-05-29 22:59:16    375296    ----a-w-    C:\Windows\SysWow64\wlansec.dll
2014-05-29 22:59:16    126976    ----a-w-    C:\Windows\System32\WcnApi.dll
2014-05-29 22:59:15    446464    ----a-w-    C:\Windows\System32\wlansec.dll
2014-05-29 22:59:06    39936    ----a-w-    C:\Windows\System32\Spool\prtprocs\x64\winprint.dll
2014-05-29 22:59:01    102400    ----a-w-    C:\Windows\System32\fdWCN.dll
2014-05-29 22:58:58    84992    ----a-w-    C:\Windows\SysWow64\fdWCN.dll
2014-05-29 22:58:57    27136    ----a-w-    C:\Windows\System32\WcnEapPeerProxy.dll
2014-05-29 22:58:57    26624    ----a-w-    C:\Windows\System32\WcnEapAuthProxy.dll
2014-05-29 22:58:53    30720    ----a-w-    C:\Windows\System32\wfdprov.dll
2014-05-29 22:58:49    25600    ----a-w-    C:\Windows\SysWow64\wfdprov.dll
2014-05-29 22:58:12    90624    ----a-w-    C:\Windows\System32\drivers\amdk8.sys
2014-05-29 22:58:12    89088    ----a-w-    C:\Windows\System32\drivers\intelppm.sys
2014-05-29 22:58:12    88064    ----a-w-    C:\Windows\System32\drivers\amdppm.sys
2014-05-29 22:58:12    87552    ----a-w-    C:\Windows\System32\drivers\processr.sys
2014-05-29 22:58:12    22528    ----a-w-    C:\Windows\System32\drivers\fxppm.sys
2014-05-29 22:58:11    9728    ----a-w-    C:\Windows\SysWow64\wlanhlp.dll
2014-05-29 22:58:11    9728    ----a-w-    C:\Windows\System32\wlanhlp.dll
2014-05-29 22:57:50    16384    ----a-w-    C:\Windows\System32\iscsilog.dll
2014-05-29 22:50:12    62976    ----a-w-    C:\Windows\System32\imagehlp.dll
2014-05-29 22:50:11    59392    ----a-w-    C:\Windows\SysWow64\imagehlp.dll
2014-05-29 22:50:00    25600    ----a-w-    C:\Windows\System32\drivers\usbprint.sys
2014-05-29 22:47:16    83968    ----a-w-    C:\Windows\System32\drivers\hidclass.sys
2014-05-29 22:47:16    78336    ----a-w-    C:\Windows\System32\drivers\IPMIDrv.sys
2014-05-29 22:47:16    370688    ----a-w-    C:\Windows\System32\drivers\mrxsmb.sys
2014-05-29 22:47:16    32768    ----a-w-    C:\Windows\System32\drivers\hidparse.sys
2014-05-29 22:47:16    247808    ----a-w-    C:\Windows\System32\drivers\srvnet.sys
2014-05-29 22:47:16    215040    ----a-w-    C:\Windows\System32\drivers\mrxsmb20.sys
2014-05-29 22:47:16    1120768    ----a-w-    C:\Windows\System32\gpedit.dll
2014-05-29 22:47:16    1075200    ----a-w-    C:\Windows\SysWow64\gpedit.dll
2014-05-29 22:47:04    94208    ----a-w-    C:\Windows\System32\synceng.dll
2014-05-29 22:47:04    72192    ----a-w-    C:\Windows\SysWow64\synceng.dll
2014-05-29 22:46:50    4036608    ----a-w-    C:\Windows\System32\win32k.sys
2014-05-29 22:44:07    550912    ----a-w-    C:\Windows\SysWow64\drvstore.dll
2014-05-29 22:44:07    1933312    ----a-w-    C:\Windows\System32\wbem\cimwin32.dll
2014-05-29 22:42:58    77544    ----a-w-    C:\Windows\System32\drivers\storahci.sys
2014-05-29 22:42:57    49152    ----a-w-    C:\Windows\System32\DevDispItemProvider.dll
2014-05-29 22:42:57    156160    ----a-w-    C:\Windows\System32\powercfg.cpl
2014-05-29 22:42:57    145408    ----a-w-    C:\Windows\SysWow64\powercfg.cpl
2014-05-29 22:42:56    240640    ----a-w-    C:\Windows\System32\fsquirt.exe
2014-05-29 22:42:49    71168    ----a-w-    C:\Windows\System32\WSDPrintProxy.DLL
2014-05-29 22:42:47    36352    ----a-w-    C:\Windows\SysWow64\DevDispItemProvider.dll
2014-05-29 22:42:42    26112    ----a-w-    C:\Windows\System32\drivers\mouhid.sys
2014-05-29 22:42:42    195072    ----a-w-    C:\Program Files (x86)\Windows NT\Accessories\WordpadFilter.dll
2014-05-29 22:42:40    235008    ----a-w-    C:\Program Files\Windows NT\Accessories\WordpadFilter.dll
2014-05-29 22:42:38    74752    ----a-w-    C:\Windows\System32\drivers\BTHUSB.SYS
2014-05-29 22:42:38    51712    ----a-w-    C:\Windows\System32\drivers\bthenum.sys
2014-05-29 22:42:38    30720    ----a-w-    C:\Windows\System32\drivers\monitor.sys
2014-05-29 22:38:34    4917760    ----a-w-    C:\Windows\System32\sppsvc.exe
2014-05-29 22:38:31    2371728    ----a-w-    C:\Windows\System32\WSService.dll
2014-05-29 22:38:30    1164288    ----a-w-    C:\Windows\System32\sppobjs.dll
2014-05-29 22:38:25    105984    ----a-w-    C:\Windows\System32\WinSetupUI.dll
2014-05-29 22:38:22    120320    ----a-w-    C:\Windows\System32\sppc.dll
2014-05-29 22:38:21    91648    ----a-w-    C:\Windows\SysWow64\sppc.dll
2014-05-29 22:38:21    368640    ----a-w-    C:\Windows\System32\sppwinob.dll
2014-05-29 22:36:47    183808    ----a-w-    C:\Windows\System32\WSSync.dll
2014-05-29 22:36:46    58200    ----a-w-    C:\Windows\System32\drivers\dam.sys
2014-05-29 22:36:19    159232    ----a-w-    C:\Windows\SysWow64\WSSync.dll
2014-05-29 22:36:16    204800    ----a-w-    C:\Windows\System32\WSClient.dll
2014-05-29 22:36:16    198656    ----a-w-    C:\Windows\System32\Windows.ApplicationModel.Store.dll
2014-05-29 22:36:16    167424    ----a-w-    C:\Windows\SysWow64\WSClient.dll
2014-05-29 22:36:08    81408    ----a-w-    C:\Windows\System32\setupcln.dll
2014-05-29 22:36:03    83968    ----a-w-    C:\Windows\SysWow64\OEMLicense.dll
2014-05-29 22:35:59    76800    ----a-w-    C:\Windows\SysWow64\setupcln.dll
2014-05-29 22:33:58    86016    ----a-w-    C:\Windows\System32\ncryptsslp.dll
2014-05-29 22:33:58    71168    ----a-w-    C:\Windows\SysWow64\ncryptsslp.dll
2014-05-29 22:33:49    600064    ----a-w-    C:\Windows\System32\vbscript.dll
2014-05-29 22:33:49    523776    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2014-05-29 22:33:22    1890816    ----a-w-    C:\Windows\System32\crypt32.dll
2014-05-29 22:33:20    1569280    ----a-w-    C:\Windows\SysWow64\crypt32.dll
2014-05-29 22:31:11    576512    ----a-w-    C:\Windows\System32\drivers\afd.sys
2014-05-29 22:26:29    17888    ----a-w-    C:\Windows\System32\msvcr100_clr0400.dll
2014-05-29 22:23:40    17888    ----a-w-    C:\Windows\SysWow64\msvcr100_clr0400.dll
2014-05-29 22:13:08    2094592    ----a-w-    C:\Windows\System32\mmc.exe
2014-05-29 22:13:08    1964544    ----a-w-    C:\Windows\System32\wlidsvc.dll
2014-05-29 22:13:06    1611776    ----a-w-    C:\Windows\SysWow64\mmc.exe
2014-05-29 02:26:50    141312    ----a-w-    C:\Windows\System32\cryptnet.dll
2014-05-29 02:26:50    1255936    ----a-w-    C:\Windows\System32\certutil.exe
2014-05-29 02:26:50    109056    ----a-w-    C:\Windows\SysWow64\cryptnet.dll
2014-05-29 02:26:50    1013248    ----a-w-    C:\Windows\SysWow64\certutil.exe
2014-05-29 01:58:12    362496    ----a-w-    C:\Windows\System32\atmfd.dll
2014-05-29 01:58:11    96256    ----a-w-    C:\Windows\System32\fontsub.dll
2014-05-29 01:58:11    75776    ----a-w-    C:\Windows\SysWow64\fontsub.dll
2014-05-29 01:58:11    46080    ----a-w-    C:\Windows\System32\atmlib.dll
2014-05-29 01:58:11    35328    ----a-w-    C:\Windows\SysWow64\atmlib.dll
2014-05-29 01:58:11    3072    ----a-w-    C:\Windows\SysWow64\lpk.dll
2014-05-29 01:58:11    3072    ----a-w-    C:\Windows\System32\lpk.dll
2014-05-29 01:58:11    300032    ----a-w-    C:\Windows\SysWow64\atmfd.dll
2014-05-29 01:58:11    14336    ----a-w-    C:\Windows\System32\dciman32.dll
2014-05-29 01:58:11    10752    ----a-w-    C:\Windows\SysWow64\dciman32.dll
2014-05-29 01:54:59    1437184    ----a-w-    C:\Windows\SysWow64\GdiPlus.dll
2014-05-29 01:54:51    1838080    ----a-w-    C:\Windows\System32\DWrite.dll
2014-05-29 01:54:51    1421312    ----a-w-    C:\Windows\SysWow64\DWrite.dll
2014-05-29 01:47:05    623448    ----a-w-    C:\Windows\System32\drivers\usbhub.sys
2014-05-29 01:47:05    498008    ----a-w-    C:\Windows\System32\drivers\usbport.sys
2014-05-29 01:47:03    79192    ----a-w-    C:\Windows\System32\drivers\usbehci.sys
2014-05-29 01:47:03    32256    ----a-w-    C:\Windows\System32\drivers\usbuhci.sys
2014-05-29 01:47:03    27136    ----a-w-    C:\Windows\System32\drivers\usbohci.sys
2014-05-29 01:47:03    21848    ----a-w-    C:\Windows\System32\drivers\usbd.sys
2014-05-29 01:47:03    120832    ----a-w-    C:\Windows\System32\drivers\usbccgp.sys
2014-05-29 01:41:43    20992    ----a-w-    C:\Windows\System32\drivers\usb8023.sys
2014-05-29 01:36:46    70144    ----a-w-    C:\Windows\System32\appinfo.dll
2014-05-29 01:36:46    112872    ----a-w-    C:\Windows\System32\consent.exe
2014-05-29 01:30:29    888320    ----a-w-    C:\Windows\System32\autochk.exe
2014-05-29 01:30:29    793088    ----a-w-    C:\Windows\SysWow64\autochk.exe
2014-05-29 01:30:29    542208    ----a-w-    C:\Windows\System32\untfs.dll
2014-05-29 01:30:29    482816    ----a-w-    C:\Windows\SysWow64\untfs.dll
2014-05-29 01:22:24    733184    ----a-w-    C:\Windows\System32\win32spl.dll
2014-05-29 01:21:03    2842112    ----a-w-    C:\Windows\System32\WMVDECOD.DLL
2014-05-29 01:21:01    2620928    ----a-w-    C:\Windows\SysWow64\WMVDECOD.DLL
2014-05-29 01:18:23    124112    ----a-w-    C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2014-05-29 01:18:23    102608    ----a-w-    C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2014-05-29 01:17:07    222720    ----a-w-    C:\Windows\System32\scrobj.dll
2014-05-29 01:17:07    194048    ----a-w-    C:\Windows\System32\scrrun.dll
2014-05-29 01:17:07    162304    ----a-w-    C:\Windows\SysWow64\scrobj.dll
2014-05-29 01:17:07    156160    ----a-w-    C:\Windows\SysWow64\scrrun.dll
2014-05-29 01:17:07    146944    ----a-w-    C:\Windows\System32\cscript.exe
2014-05-29 01:17:07    143872    ----a-w-    C:\Windows\System32\wshom.ocx
2014-05-29 01:17:07    115712    ----a-w-    C:\Windows\SysWow64\cscript.exe
2014-05-29 01:15:12    337408    ----a-w-    C:\Windows\System32\wintrust.dll
2014-05-29 01:15:11    261120    ----a-w-    C:\Windows\SysWow64\wintrust.dll
2014-05-29 01:15:10    87040    ----a-w-    C:\Windows\SysWow64\apprepapi.dll
2014-05-29 01:15:10    68096    ----a-w-    C:\Windows\System32\cryptsvc.dll
2014-05-29 01:15:10    124416    ----a-w-    C:\Windows\System32\apprepapi.dll
2014-05-29 01:15:09    98304    ----a-w-    C:\Windows\System32\apprepsync.dll
2014-05-29 01:15:08    74240    ----a-w-    C:\Windows\SysWow64\apprepsync.dll
2014-05-29 01:14:31    337752    ----a-w-    C:\Windows\System32\drivers\USBXHCI.SYS
2014-05-29 01:14:31    213336    ----a-w-    C:\Windows\System32\drivers\UCX01000.SYS
2014-05-29 01:10:31    3842560    ----a-w-    C:\Windows\System32\d2d1.dll
2014-05-29 01:10:30    2238976    ----a-w-    C:\Windows\System32\d3d10warp.dll
2014-05-29 01:10:29    3288576    ----a-w-    C:\Windows\SysWow64\d2d1.dll
2014-05-29 01:10:28    2032640    ----a-w-    C:\Windows\SysWow64\d3d10warp.dll
2014-05-29 01:09:25    861184    ----a-w-    C:\Windows\System32\drivers\http.sys
2014-05-29 00:58:31    595968    ----a-w-    C:\Windows\System32\qedit.dll
2014-05-29 00:58:31    496640    ----a-w-    C:\Windows\SysWow64\qedit.dll
2014-05-29 00:56:26    1558912    ----a-w-    C:\Program Files\Windows Defender\DbgHelp.dll
2014-05-29 00:56:26    149264    ----a-w-    C:\Program Files\Windows Defender\SymSrv.dll
2014-05-29 00:56:11    2361344    ----a-w-    C:\Windows\System32\msxml6.dll
2014-05-29 00:56:10    2048    ----a-w-    C:\Windows\SysWow64\msxml6r.dll
2014-05-29 00:56:10    2048    ----a-w-    C:\Windows\SysWow64\msxml3r.dll
2014-05-29 00:56:10    2048    ----a-w-    C:\Windows\System32\msxml6r.dll
2014-05-29 00:56:10    2048    ----a-w-    C:\Windows\System32\msxml3r.dll
2014-05-29 00:56:10    1802240    ----a-w-    C:\Windows\SysWow64\msxml6.dll
2014-05-29 00:55:53    288768    ----a-w-    C:\Windows\System32\drivers\portcls.sys
2014-05-29 00:55:52    5632    ----a-w-    C:\Windows\System32\drivers\drmkaud.sys
2014-05-29 00:55:52    370176    ----a-w-    C:\Windows\System32\SysFxUI.dll
2014-05-29 00:55:52    111616    ----a-w-    C:\Windows\System32\drivers\drmk.sys
2014-05-29 00:47:58    659456    ----a-w-    C:\Windows\SysWow64\mssvp.dll
2014-05-27 17:48:29    --------    d-----w-    C:\Windows\SysWow64\zh-HANT
2014-05-27 17:48:29    --------    d-----w-    C:\Windows\SysWow64\drivers\zh-TW
2014-05-27 17:48:26    --------    d-----w-    C:\Windows\SysWow64\wbem\zh-TW
2014-05-27 17:47:46    --------    d-----w-    C:\Windows\System32\zh-HANT
2014-05-27 17:47:46    --------    d-----w-    C:\Windows\System32\drivers\zh-TW
2014-05-27 17:47:46    --------    d-----w-    C:\Windows\System32\drivers\UMDF\zh-TW
2014-05-27 17:47:41    --------    d-----w-    C:\Windows\System32\wbem\zh-TW
2014-05-27 17:46:38    --------    d-----w-    C:\Windows\SysWow64\es
2014-05-27 17:46:38    --------    d-----w-    C:\Windows\SysWow64\drivers\UMDF\es-ES
2014-05-27 17:46:38    --------    d-----w-    C:\Windows\SysWow64\drivers\es-ES
2014-05-27 17:46:38    --------    d-----w-    C:\Windows\SysWow64\0C0A
2014-05-27 17:46:36    --------    d-----w-    C:\Windows\SysWow64\wbem\es-ES
2014-05-27 17:45:50    --------    d-----w-    C:\Windows\System32\es
2014-05-27 17:45:50    --------    d-----w-    C:\Windows\System32\drivers\UMDF\es-ES
2014-05-27 17:45:50    --------    d-----w-    C:\Windows\System32\0C0A
2014-05-27 17:45:48    --------    d-----w-    C:\Windows\System32\drivers\es-ES
2014-05-27 17:45:42    --------    d-----w-    C:\Windows\System32\wbem\es-ES
2014-05-27 17:43:14    --------    d-----w-    C:\Windows\SysWow64\drivers\zh-HK
2014-05-27 17:43:12    --------    d-----w-    C:\Windows\SysWow64\wbem\zh-HK
2014-05-27 17:42:32    --------    d-----w-    C:\Windows\System32\drivers\UMDF\zh-HK
2014-05-27 17:42:31    --------    d-----w-    C:\Windows\System32\drivers\zh-HK
2014-05-27 17:42:26    --------    d-----w-    C:\Windows\System32\wbem\zh-HK
2014-05-27 17:41:41    --------    d-----w-    C:\Windows\zh-HK
2014-05-27 04:09:51    --------    d-----w-    C:\sources
2014-05-25 04:05:10    --------    d-----w-    C:\Users\Champion\AppData\Roaming\AVG2014
2014-05-25 04:03:15    --------    d-----w-    C:\Users\Champion\AppData\Roaming\TuneUp Software
2014-05-25 04:02:22    --------    d--h--w-    C:\$AVG
2014-05-25 04:02:22    --------    d-----w-    C:\ProgramData\AVG2014
2014-05-25 03:59:49    --------    d-----w-    C:\Users\Champion\AppData\Local\MFAData
2014-05-25 03:59:49    --------    d-----w-    C:\Users\Champion\AppData\Local\Avg2014
2014-05-25 03:59:49    --------    d-----w-    C:\ProgramData\MFAData
2014-05-25 03:58:55    --------    d--h--w-    C:\ProgramData\Common Files
2014-05-25 03:58:55    --------    d-----w-    C:\Users\Champion\AppData\Local\AvgSetupLog
2014-05-25 03:58:55    --------    d-----w-    C:\Users\Champion\AppData\Local\Avg
2014-05-25 03:58:55    --------    d-----w-    C:\ProgramData\Avg
2014-05-25 03:58:55    --------    d-----w-    C:\Program Files (x86)\AVG
2014-05-23 15:21:14    --------    d-----w-    C:\Users\Champion\AppData\Local\Macromedia
2014-05-23 15:17:33    --------    d-----w-    C:\Users\Champion\AppData\Local\Mozilla
2014-05-23 15:17:24    --------    d-----w-    C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-22 20:00:02    17536    ----a-w-    C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2014-05-22 14:25:48    144896    ----a-w-    C:\Windows\System32\tssdisai.dll
2014-05-22 14:25:47    135680    ----a-w-    C:\Windows\System32\appserverai.dll
2014-05-22 14:25:47    126976    ----a-w-    C:\Windows\System32\RDWebAI.dll
2014-05-22 14:25:47    122880    ----a-w-    C:\Windows\System32\VmHostAI.dll
2014-05-22 14:25:45    148480    ----a-w-    C:\Windows\System32\poqexec.exe
2014-05-22 14:25:45    132608    ----a-w-    C:\Windows\SysWow64\poqexec.exe
2014-05-22 13:45:37    --------    d-----w-    C:\Windows\System32\MRT
.
==================== Find3M  ====================
.
2014-06-21 03:15:43    62    ----a-w-    C:\Users\Champion\AppData\Roaming\sp_data.sys
2014-05-24 02:47:45    915968    ----a-w-    C:\Windows\System32\uxtheme.dll
2014-05-24 02:47:44    53760    ----a-w-    C:\Windows\System32\UXInit.dll
2014-05-24 02:46:15    3958784    ----a-w-    C:\Windows\System32\jscript9.dll
2014-05-24 02:46:07    67072    ----a-w-    C:\Windows\System32\iesetup.dll
2014-05-24 02:46:07    136704    ----a-w-    C:\Windows\System32\iesysprep.dll
2014-05-24 02:45:26    1508864    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-05-24 01:26:54    1766400    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-05-24 01:26:46    44032    ----a-w-    C:\Windows\SysWow64\UXInit.dll
2014-05-24 01:25:52    2862080    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-05-24 01:25:49    61440    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-05-24 01:25:49    109056    ----a-w-    C:\Windows\SysWow64\iesysprep.dll
2014-05-24 01:25:25    1440768    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-05-24 01:09:41    2706432    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-05-24 01:03:36    2706432    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-05-23 22:37:13    534528    ----a-w-    C:\Windows\SysWow64\uxtheme.dll
2014-05-13 18:20:26    235800    ----a-w-    C:\Windows\System32\drivers\avgldx64.sys
2014-05-13 18:06:06    323352    ----a-w-    C:\Windows\System32\drivers\avgloga.sys
2014-05-13 18:05:40    191768    ----a-w-    C:\Windows\System32\drivers\avgidsha.sys
2014-05-13 18:05:08    152344    ----a-w-    C:\Windows\System32\drivers\avgdiska.sys
2014-05-13 18:05:06    130328    ----a-w-    C:\Windows\System32\drivers\avgmfx64.sys
2014-05-13 18:04:56    236312    ----a-w-    C:\Windows\System32\drivers\avgidsdrivera.sys
2014-05-13 18:04:30    31512    ----a-w-    C:\Windows\System32\drivers\avgrkx64.sys
2014-05-03 05:47:22    3246592    ----a-w-    C:\Windows\System32\rdpcorets.dll
2014-05-03 03:34:54    235520    ----a-w-    C:\Windows\System32\rdpudd.dll
2014-04-29 22:32:07    1301504    ----a-w-    C:\Windows\System32\gdi32.dll
2014-04-29 22:22:23    1023488    ----a-w-    C:\Windows\SysWow64\gdi32.dll
2014-04-12 09:27:03    172888    ----a-w-    C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 09:10:31    578048    ----a-w-    C:\Windows\System32\winlogon.exe
2014-04-12 09:09:43    208896    ----a-w-    C:\Windows\System32\wdigest.dll
2014-04-12 09:09:39    1043968    ----a-w-    C:\Windows\System32\usercpl.dll
2014-04-12 09:09:34    94720    ----a-w-    C:\Windows\System32\TSpkg.dll
2014-04-12 09:09:19    588288    ----a-w-    C:\Windows\System32\SHCore.dll
2014-04-12 09:08:37    318464    ----a-w-    C:\Windows\System32\msv1_0.dll
2014-04-12 09:08:17    439808    ----a-w-    C:\Windows\System32\lsm.dll
2014-04-12 09:08:17    1281536    ----a-w-    C:\Windows\System32\lsasrv.dll
2014-04-12 09:08:10    827904    ----a-w-    C:\Windows\System32\kerberos.dll
2014-04-12 09:07:36    20480    ----a-w-    C:\Windows\System32\credssp.dll
2014-04-12 07:23:59    178688    ----a-w-    C:\Windows\SysWow64\wdigest.dll
2014-04-12 07:23:52    961536    ----a-w-    C:\Windows\SysWow64\usercpl.dll
2014-04-12 07:23:49    76800    ----a-w-    C:\Windows\SysWow64\TSpkg.dll
2014-04-12 07:23:40    452608    ----a-w-    C:\Windows\SysWow64\SHCore.dll
2014-04-12 07:23:14    273920    ----a-w-    C:\Windows\SysWow64\msv1_0.dll
2014-04-12 07:22:58    666624    ----a-w-    C:\Windows\SysWow64\kerberos.dll
2014-04-12 07:22:33    17408    ----a-w-    C:\Windows\SysWow64\credssp.dll
2014-04-12 06:58:06    14848    ----a-w-    C:\Windows\System32\workerdd.dll
2014-04-03 21:23:54    70592    ----a-w-    C:\Windows\System32\drivers\cfwids.sys
2014-04-03 21:16:04    346760    ----a-w-    C:\Windows\System32\drivers\mfewfpk.sys
2014-04-03 21:15:34    189912    ----a-w-    C:\Windows\System32\mfevtps.exe
2014-04-03 21:10:34    784760    ----a-w-    C:\Windows\System32\drivers\mfehidk.sys
2014-04-03 21:08:04    522360    ----a-w-    C:\Windows\System32\drivers\mfefirek.sys
2014-04-03 21:06:04    311856    ----a-w-    C:\Windows\System32\drivers\mfeavfk.sys
2014-04-03 21:03:32    177544    ----a-w-    C:\Windows\System32\drivers\mfeapfk.sys
2014-04-03 20:43:16    69352    ----a-w-    C:\Windows\System32\drivers\mfeelamk.sys
2014-04-03 11:22:14    2233176    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
2014-03-31 20:06:48    274712    ----a-w-    C:\Windows\System32\drivers\avgwfpa.sys
2014-03-28 19:19:38    35856    ----a-w-    C:\Windows\System32\drivers\WdBoot.sys
2014-03-28 08:23:00    1287168    ----a-w-    C:\Windows\System32\schedsvc.dll
2014-03-23 22:11:52    269592    ----a-w-    C:\Windows\System32\drivers\WdFilter.sys
.
============= FINISH:  0:59:09,58 ===============

Attached File  attach.txt   2.79KB   1 downloads

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 8
Boot Device: \Device\HarddiskVolume1
Install Date: 2014-05-21 01:28:03
System Uptime: 2014-06-20 23:13:04 (1 hours ago)
.
Motherboard: ASUSTeK COMPUTER INC. | | S300CA
Processor: Intel® Core™ i5-3317U CPU @ 1.70GHz | SOCKET 0 | 1701/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 186 GiB total, 128,818 GiB free.
D: is FIXED (NTFS) - 258 GiB total, 258,018 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP7: 2014-06-11 20:44:05 - Windows Update
RP9: 2014-06-14 22:49:05 - Programme d’installation pour les modules Windows
RP10: 2014-06-18 21:00:53 - Opération de restauration
.
==== Installed Programs ======================
.
ASUS VivoBook
???
????
Adobe Flash Player 14 Plugin
Adobe Reader X MUI
Alcor Micro USB Card Reader
ASUS Instant Connect
ASUS InstantOn
ASUS LifeFrame3
ASUS Live Update
ASUS Power4Gear Hybrid
ASUS S Series Product Demo
ASUS Screen Saver
ASUS Smart Gesture
ASUS Splendid Video Enhancement Technology
ASUS Tutor
ASUS USB Charger Plus
ASUS WebStorage Sync Agent
ATK Package
AVG
AVG 2014
AVG Zen
D3DX10
FMW 1
Galerie de photos
Galería de fotos
Intel® Dynamic Platform and Thermal Framework
Intel® Management Engine Components
Intel® Processor Graphics
Intel® SDK for OpenCL - CPU Only Runtime Package
Intel® Trusted Connect Service Client
McAfee Internet Security
McAfee Security Scan Plus
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64)
Microsoft Application Error Reporting
Microsoft Office
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Movie Maker
Mozilla Firefox 30.0 (x86 fr)
Mozilla Maintenance Service
MSVCRT
MSVCRT110
MSVCRT110_amd64
MyBitCast 2.0
Photo Common
Photo Gallery
Qualcomm Atheros Bluetooth Suite (64)
Qualcomm Atheros Client Installation Program
Qualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
Realtek High Definition Audio Driver
Shared C Run-time for x64
Visual Studio 2012 x64 Redistributables
Visual Studio 2012 x86 Redistributables
Windows Driver Package - ASUS (ATP) Mouse (01/10/2013 1.0.0.170)
Windows Live
Windows Live ???
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
WinFlash
.
==== End Of File ===========================

Edited by Oh My, 29 June 2014 - 08:18 PM.
Posted Attach.txt


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,732 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:10 PM

Posted 26 June 2014 - 12:40 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/538497 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 29 June 2014 - 07:48 PM

Here is the DDS i just ran today, june 29th.

=======

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16921
Run by Champion at 20:40:43 on 2014-06-29
Microsoft Windows 8  6.2.9200.0.1252.2.1036.18.3982.2159 [GMT -4:00]
.
AV: McAfee Anti-Virus et Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus et Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: Pare-feu McAfee  *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
.
============== Running Processes ===============
.
c:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Windows\system32\DptfParticipantProcessorService.exe
C:\Windows\system32\DptfPolicyConfigTDPService.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
C:\windows\system32\mfevtps.exe
C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
C:\Program Files\ASUS\P4G\BatteryLife.exe
C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
C:\Windows\system32\igfxpers.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\PROGRA~1\McAfee\MSM\McSmtFwk.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://asus13.msn.com
uDefault_Page_URL = hxxp://asus13.msn.com
mWinlogon: Userinit = userinit.exe
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe /S
mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
mPolicies-System: DisableCAD = dword:1
TCP: NameServer = 192.168.2.1
TCP: Interfaces\{0123CFDC-0090-4E89-88A6-76D90E3FE617} : DHCPNameServer = 192.168.2.1
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3
x64-Run: [BtTray] "C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
x64-Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
x64-mPolicies-System: DisableCAD = dword:1
x64-IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Champion\AppData\Roaming\Mozilla\Firefox\Profiles\ylgl3lm4.default\
FF - plugin: c:\PROGRA~2\mcafee\msc\npMcSnFFPl.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\Drivers\avgidsha.sys [2014-6-17 190744]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\Drivers\avgloga.sys [2014-6-17 328984]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\Drivers\avgmfx64.sys [2014-6-17 123672]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\Drivers\avgrkx64.sys [2014-6-17 31512]
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-7-5 647736]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\Drivers\mfehidk.sys [2012-6-22 784760]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\Drivers\mfewfpk.sys [2012-6-22 346760]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\Drivers\avgdiska.sys [2014-6-17 153368]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\Drivers\avgidsdrivera.sys [2014-6-17 242968]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\Drivers\avgldx64.sys [2014-6-17 235800]
R1 Avgwfpa;AVG Firewall Driver;C:\Windows\System32\Drivers\avgwfpa.sys [2014-5-14 274712]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-4-13 277120]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2012-10-31 231040]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-6-17 3242000]
R2 avgsvc;AVG Service;C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2014-6-23 829968]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-6-17 289328]
R2 DptfParticipantProcessorService;Intel® Dynamic Platform and Thermal Framework Processor Participant Service Application;C:\Windows\System32\DptfParticipantProcessorService.exe [2013-1-28 30080]
R2 DptfPolicyConfigTDPService;Intel® Dynamic Platform and Thermal Framework Config TDP Service Application;C:\Windows\System32\DptfPolicyConfigTDPService.exe [2013-1-28 31616]
R2 HomeNetSvc;McAfee Home Network;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2013-3-20 129856]
R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2013-3-20 166720]
R2 McAPExe;McAfee AP Service;C:\Program Files\mcafee\msc\McAPExe.exe [2014-5-21 178528]
R2 McMPFSvc;McAfee Personal Firewall Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 McNaiAnn;McAfee VirusScan Announcer;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 McProxy;McAfee Proxy Service;C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [2014-5-21 328928]
R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe [2014-5-21 1041192]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2012-11-27 219752]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-11-27 189912]
R2 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2013-3-20 365376]
R2 WakeupService;ASUS Wake Service;C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe [2012-12-20 45488]
R2 ZAtheros Bt and Wlan Coex Agent;ZAtheros Bt and Wlan Coex Agent;C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2012-10-31 323584]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\Drivers\AiCharger.sys [2012-9-18 17152]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;C:\Windows\System32\Drivers\btath_flt.sys [2013-3-20 88728]
R3 ATP;ASUS Input Device;C:\Windows\System32\Drivers\AsusTP.sys [2013-1-16 65784]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\Windows\System32\Drivers\btath_bus.sys [2013-3-20 33944]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\Drivers\btath_hcrp.sys [2013-3-20 178840]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\Drivers\btath_lwflt.sys [2013-3-20 76952]
R3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2013-3-20 576152]
R3 BthLEEnum;Pilote Bluetooth Low Energy;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-25 202752]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\Drivers\cfwids.sys [2012-6-22 70592]
R3 DptfDevDram;DptfDevDram;C:\Windows\System32\Drivers\DptfDevDram.sys [2013-1-28 107328]
R3 DptfDevFan;DptfDevFan;C:\Windows\System32\Drivers\DptfDevFan.sys [2013-1-28 42816]
R3 DptfDevGen;DptfDevGen;C:\Windows\System32\Drivers\DptfDevGen.sys [2013-1-28 64832]
R3 DptfDevPch;DptfDevPch;C:\Windows\System32\Drivers\DptfDevPch.sys [2013-1-28 96576]
R3 DptfDevProc;DptfDevProc;C:\Windows\System32\Drivers\DptfDevProc.sys [2013-1-28 229184]
R3 DptfManager;DptfManager;C:\Windows\System32\Drivers\DptfManager.sys [2013-1-28 363328]
R3 HIDSwitch;ASUS Wireless Radio Control;C:\Windows\System32\Drivers\AsHIDSwitch64.sys [2013-1-28 21152]
R3 IntcDAud;Son Intel® pour écrans;C:\Windows\System32\Drivers\IntcDAud.sys [2013-1-28 342528]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\Drivers\L1C63x64.sys [2013-1-28 118936]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\Drivers\mfeavfk.sys [2012-6-22 311856]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\Drivers\mfefirek.sys [2012-6-22 522360]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\Drivers\mfencbdc.sys [2014-3-18 441264]
S0 Avgboota;AVG Early Launch Anti-Malware Driver;C:\Windows\System32\Drivers\avgboota.sys [2013-9-4 20496]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\Windows\System32\Drivers\mfeelamk.sys [2012-6-18 69352]
S2 McOobeSv;McAfee OOBE Service;C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe [2012-5-11 200728]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\Drivers\HipShieldK.sys [2014-5-21 197704]
S3 McAWFwk;McAfee Activation Service;C:\PROGRA~1\mcafee\msc\mcawfwk.exe [2012-11-27 332080]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [2014-4-9 289256]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\Drivers\mfencrk.sys [2014-3-18 96592]
S3 RTL8168;Pilote Realtek 8168 NT;C:\Windows\System32\Drivers\Rt630x64.sys [2012-6-2 589824]
.
=============== Created Last 30 ================
.
2014-06-21 03:25:11    --------    d-----w-    C:\FRST
2014-06-21 01:59:43    --------    d-----w-    C:\AdwCleaner
2014-06-17 20:21:34    235800    ----a-w-    C:\Windows\System32\drivers\avgldx64.sys
2014-06-17 20:07:12    328984    ----a-w-    C:\Windows\System32\drivers\avgloga.sys
2014-06-17 20:06:24    190744    ----a-w-    C:\Windows\System32\drivers\avgidsha.sys
2014-06-17 20:06:22    242968    ----a-w-    C:\Windows\System32\drivers\avgidsdrivera.sys
2014-06-17 20:06:22    153368    ----a-w-    C:\Windows\System32\drivers\avgdiska.sys
2014-06-17 20:06:20    123672    ----a-w-    C:\Windows\System32\drivers\avgmfx64.sys
2014-06-17 20:06:06    31512    ----a-w-    C:\Windows\System32\drivers\avgrkx64.sys
2014-06-16 22:54:11    --------    d-----w-    C:\Program Files\McAfee Security Scan
2014-06-15 12:27:22    23350272    ----a-w-    C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-06-15 12:27:22    22615040    ----a-w-    C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-06-13 16:29:35    628024    ----a-w-    C:\Windows\System32\NotificationUI.exe
2014-06-13 16:29:34    693760    ----a-w-    C:\Windows\System32\WSShared.dll
2014-06-13 16:29:33    566784    ----a-w-    C:\Windows\SysWow64\WSShared.dll
2014-06-13 16:29:32    163840    ----a-w-    C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-13 16:29:32    124928    ----a-w-    C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-12 21:46:21    --------    d-----w-    C:\ProgramData\McAfee Security Scan
2014-06-12 14:15:22    703992    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-06-12 14:15:22    105464    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-06-12 00:17:59    2239488    ----a-w-    C:\Windows\System32\wininet.dll
2014-06-12 00:16:59    619008    ----a-w-    C:\Windows\System32\drivers\srv2.sys
2014-06-12 00:16:59    328024    ----a-w-    C:\Windows\System32\drivers\Classpnp.sys
2014-06-12 00:16:58    309760    ----a-w-    C:\Windows\System32\wusa.exe
2014-06-12 00:16:58    305152    ----a-w-    C:\Windows\SysWow64\wusa.exe
2014-06-12 00:14:39    1845760    ----a-w-    C:\Windows\System32\msxml3.dll
2014-06-12 00:14:38    1419264    ----a-w-    C:\Windows\SysWow64\msxml3.dll
2014-05-31 22:16:52    109568    ----a-w-    C:\Windows\System32\dskquota.dll
2014-05-31 22:16:51    82944    ----a-w-    C:\Windows\SysWow64\dskquota.dll
2014-05-31 22:16:26    929792    ----a-w-    C:\Windows\SysWow64\mfnetsrc.dll
2014-05-31 22:16:26    677888    ----a-w-    C:\Windows\System32\mfnetcore.dll
2014-05-31 22:16:26    673280    ----a-w-    C:\Windows\System32\mfmpeg2srcsnk.dll
2014-05-31 22:16:26    568832    ----a-w-    C:\Windows\SysWow64\mfnetcore.dll
2014-05-31 22:16:26    513024    ----a-w-    C:\Windows\SysWow64\mfmpeg2srcsnk.dll
2014-05-31 22:16:26    1172992    ----a-w-    C:\Windows\System32\mfnetsrc.dll
2014-05-31 22:14:59    34816    ----a-w-    C:\Windows\System32\microsoft-windows-pdc.dll
2014-05-31 22:02:02    405504    ----a-w-    C:\Windows\System32\pcasvc.dll
2014-05-31 22:02:02    31232    ----a-w-    C:\Windows\System32\pcadm.dll
2014-05-31 22:02:02    13312    ----a-w-    C:\Windows\System32\pcalua.exe
2014-05-31 22:02:02    11776    ----a-w-    C:\Windows\System32\pcaevts.dll
2014-05-31 21:59:51    312320    ----a-w-    C:\Windows\System32\msieftp.dll
2014-05-31 21:59:50    273408    ----a-w-    C:\Windows\SysWow64\msieftp.dll
2014-05-31 21:59:48    420864    ----a-w-    C:\Windows\System32\WMPhoto.dll
2014-05-31 21:59:48    368640    ----a-w-    C:\Windows\SysWow64\WMPhoto.dll
2014-05-31 21:59:45    583680    ----a-w-    C:\Windows\System32\msdrm.dll
2014-05-31 21:59:44    451072    ----a-w-    C:\Windows\SysWow64\msdrm.dll
2014-05-31 21:58:24    2304512    ----a-w-    C:\Windows\System32\authui.dll
2014-05-31 21:58:24    2035712    ----a-w-    C:\Windows\SysWow64\authui.dll
2014-05-31 21:52:14    1122768    ----a-w-    C:\Windows\System32\Taskmgr.exe
2014-05-31 21:50:36    1842176    ----a-w-    C:\Windows\SysWow64\dwmcore.dll
2014-05-31 21:49:58    2219520    ----a-w-    C:\Windows\System32\dwmcore.dll
2014-05-31 21:49:56    1403296    ----a-w-    C:\Windows\System32\winload.efi
2014-05-31 21:49:56    1271584    ----a-w-    C:\Windows\System32\winload.exe
2014-05-31 21:49:56    1217352    ----a-w-    C:\Windows\System32\winresume.efi
2014-05-31 21:49:56    1093904    ----a-w-    C:\Windows\System32\winresume.exe
2014-05-31 21:49:54    785408    ----a-w-    C:\Windows\System32\audiosrv.dll
2014-05-31 21:49:47    37632    ----a-w-    C:\Windows\System32\drivers\BthAvrcpTg.sys
2014-05-31 21:47:53    778752    ----a-w-    C:\Windows\System32\oleaut32.dll
2014-05-31 21:47:53    175104    ----a-w-    C:\Windows\System32\storewuauth.dll
2014-05-31 21:47:52    626688    ----a-w-    C:\Windows\System32\resutils.dll
2014-05-31 21:47:52    1455448    ----a-w-    C:\Windows\System32\drivers\dxgkrnl.sys
2014-05-31 21:47:50    374784    ----a-w-    C:\Windows\System32\clusapi.dll
2014-05-31 21:47:19    997632    ----a-w-    C:\Windows\System32\drivers\ndis.sys
.
==================== Find3M  ====================
.
2014-06-29 20:59:45    62    ----a-w-    C:\Users\Champion\AppData\Roaming\sp_data.sys
2014-05-24 02:47:45    915968    ----a-w-    C:\Windows\System32\uxtheme.dll
2014-05-24 02:47:44    53760    ----a-w-    C:\Windows\System32\UXInit.dll
2014-05-24 02:46:15    3958784    ----a-w-    C:\Windows\System32\jscript9.dll
2014-05-24 02:46:07    67072    ----a-w-    C:\Windows\System32\iesetup.dll
2014-05-24 02:46:07    136704    ----a-w-    C:\Windows\System32\iesysprep.dll
2014-05-24 02:45:26    1508864    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-05-24 01:26:54    1766400    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-05-24 01:26:46    44032    ----a-w-    C:\Windows\SysWow64\UXInit.dll
2014-05-24 01:25:52    2862080    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-05-24 01:25:49    61440    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-05-24 01:25:49    109056    ----a-w-    C:\Windows\SysWow64\iesysprep.dll
2014-05-24 01:25:25    1440768    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-05-24 01:09:41    2706432    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-05-24 01:03:36    2706432    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-05-23 22:37:13    534528    ----a-w-    C:\Windows\SysWow64\uxtheme.dll
2014-05-15 01:09:08    274712    ----a-w-    C:\Windows\System32\drivers\avgwfpa.sys
2014-05-03 05:47:22    3246592    ----a-w-    C:\Windows\System32\rdpcorets.dll
2014-05-03 03:34:54    235520    ----a-w-    C:\Windows\System32\rdpudd.dll
2014-04-29 22:32:07    1301504    ----a-w-    C:\Windows\System32\gdi32.dll
2014-04-29 22:22:23    1023488    ----a-w-    C:\Windows\SysWow64\gdi32.dll
2014-04-12 09:27:03    172888    ----a-w-    C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 09:10:31    578048    ----a-w-    C:\Windows\System32\winlogon.exe
2014-04-12 09:09:43    208896    ----a-w-    C:\Windows\System32\wdigest.dll
2014-04-12 09:09:39    1043968    ----a-w-    C:\Windows\System32\usercpl.dll
2014-04-12 09:09:34    94720    ----a-w-    C:\Windows\System32\TSpkg.dll
2014-04-12 09:09:19    588288    ----a-w-    C:\Windows\System32\SHCore.dll
2014-04-12 09:08:37    318464    ----a-w-    C:\Windows\System32\msv1_0.dll
2014-04-12 09:08:17    439808    ----a-w-    C:\Windows\System32\lsm.dll
2014-04-12 09:08:17    1281536    ----a-w-    C:\Windows\System32\lsasrv.dll
2014-04-12 09:08:10    827904    ----a-w-    C:\Windows\System32\kerberos.dll
2014-04-12 09:07:36    20480    ----a-w-    C:\Windows\System32\credssp.dll
2014-04-12 07:23:59    178688    ----a-w-    C:\Windows\SysWow64\wdigest.dll
2014-04-12 07:23:52    961536    ----a-w-    C:\Windows\SysWow64\usercpl.dll
2014-04-12 07:23:49    76800    ----a-w-    C:\Windows\SysWow64\TSpkg.dll
2014-04-12 07:23:40    452608    ----a-w-    C:\Windows\SysWow64\SHCore.dll
2014-04-12 07:23:14    273920    ----a-w-    C:\Windows\SysWow64\msv1_0.dll
2014-04-12 07:22:58    666624    ----a-w-    C:\Windows\SysWow64\kerberos.dll
2014-04-12 07:22:33    17408    ----a-w-    C:\Windows\SysWow64\credssp.dll
2014-04-12 06:58:06    14848    ----a-w-    C:\Windows\System32\workerdd.dll
2014-04-03 21:23:54    70592    ----a-w-    C:\Windows\System32\drivers\cfwids.sys
2014-04-03 21:16:04    346760    ----a-w-    C:\Windows\System32\drivers\mfewfpk.sys
2014-04-03 21:15:34    189912    ----a-w-    C:\Windows\System32\mfevtps.exe
2014-04-03 21:10:34    784760    ----a-w-    C:\Windows\System32\drivers\mfehidk.sys
2014-04-03 21:08:04    522360    ----a-w-    C:\Windows\System32\drivers\mfefirek.sys
2014-04-03 21:06:04    311856    ----a-w-    C:\Windows\System32\drivers\mfeavfk.sys
2014-04-03 21:03:32    177544    ----a-w-    C:\Windows\System32\drivers\mfeapfk.sys
2014-04-03 20:43:16    69352    ----a-w-    C:\Windows\System32\drivers\mfeelamk.sys
2014-04-03 11:22:14    2233176    ----a-w-    C:\Windows\System32\drivers\tcpip.sys
.
============= FINISH: 20:41:28,35 ===============
 



#4 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,457 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:10 PM

Posted 29 June 2014 - 08:10 PM

Greetings Xpl0R and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that. :thumbup2:

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met. :)
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
  • Now let's get started :thumbup2:
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far. While I review our situation please run the below for me.

===================================================

Farbar Recovery Scan Tool (FRST)

--------------------
  • Download Farbar Recover Scan Tool for either 32 bit or 64 bit systems and save it to your desktop
  • If you are unsure if you have 32 bit or 64 bit simply download and try one. If that doesn't run properly the other one should
  • Double click the icon
  • Click Yes to the disclaimer
  • Make sure the Addition.txt box is checked
  • Click Scan and allow the program to run
  • Click OK on the Scan complete screen, then OK on the Addition.txt pop up screen
  • 2 Notepad documents should now be open on your desktop.
  • Please copy and paste the contents of both in your reply
===================================================

System Summary Information

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time
  • Type msinfo32 and press Enter
  • Left click on System Summary
  • Click File, Save, and name the file Summary
  • Zip and attach the file to your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • FRST results
  • Addition log
  • Attached System Summary Information

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#5 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,457 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:10 PM

Posted 02 July 2014 - 04:59 PM

Greetings,

===================================================

3 Day Bump

It has been more than 3 days since my last post.
  • Do you still need help with this?
  • If after 48hrs you have not replied to this thread then it will have to be closed.

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#6 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 06:56 PM

Hello Gary,

First of all, thanks for helping me! My name is Jonathan and I'm glad the magic of the internet permit us to meet.

I didn't get a e-mail notice for your first reply; I am now taking the time to read it and will follow the steps in order.

 



#7 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,457 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:10 PM

Posted 02 July 2014 - 07:00 PM

Hi Jonathan,

Well then you must have thought the first notification you received (3 Day) was rather rude of me!

Look forward to reviewing your information, glad we finally hooked up.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."

#8 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 07:04 PM

Hi Gary,

I am so glad we hooked up! Can't wait to get this thing back on tracks!

I'm reading your message with the steps. I'm not a techie, this will take a little moment. Thanks for your patience ;)



#9 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 07:08 PM

So, I have Windows 8.

I downloaded 32 and 64. When I try to run it, Windows tells me it prevented opening the file to protect me.



#10 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 07:09 PM

Specifically "Windows SmartScreen"



#11 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 07:48 PM

I tried the "reply to this topic" button, but, since the virus, I can't see the box.
I clicked on POST and I'm looking how to attach the file.... Can't find the button. I will send you via your personal e-mail, if you accept.



#12 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 07:55 PM

So, I managed to find the "attach" option.

I added the zipped summary.

As I explained, I tried running both FRST 32 and 64, but Windows Smartscreen blocked it each time. What can I do to "disabled" Windows Smartscreen.

By the way, English is my second langage and my Windows is set in French. I'm trying to find a way to set it in English, because I think it will be easier to understand each other.

 

Attached Files



#13 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 08:11 PM

Here it is in English.
Hope that helps.

Attached Files



#14 Xpl0R

Xpl0R
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:10:10 PM

Posted 02 July 2014 - 08:33 PM

FRST

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-07-2014
Ran by Champion (administrator) on ACHIEVER on 02-07-2014 21:27:36
Running from C:\Users\Champion\Downloads
Platform: Windows 8 (X64) OS Language: French (France)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\mcafee\msm\McSmtFwk.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
() C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
() C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer INC.) C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\msinfo32.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
(Farbar) C:\Users\Champion\Downloads\FRST64(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13267016 2013-01-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1276488 2013-01-18] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [766080 2012-10-31] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-10-31] (Qualcomm Atheros Commnucations)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2012-11-27] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe [3423104 2012-08-31] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1103888 2014-06-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5179408 2014-06-17] (AVG Technologies CZ, s.r.o.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: AsusWSShellExt_B -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: AsusWSShellExt_O -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: AsusWSShellExt_U -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&amp;form=IE10TR&amp;src=IE10TR&amp;pc=ASU2JS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&amp;form=IE10TR&amp;src=IE10TR&amp;pc=ASU2JS
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Champion\AppData\Roaming\Mozilla\Firefox\Profiles\ylgl3lm4.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2012-11-27]
FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

==================== Services (Whitelisted) =================

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [231040 2012-10-31] (Qualcomm Atheros Commnucations)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3241488 2014-06-27] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [829968 2014-06-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-06-17] (AVG Technologies CZ, s.r.o.)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [30080 2012-09-30] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [31616 2012-09-30] (Intel Corporation)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
S2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-03-18] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.)
R2 mfevtp; C:\windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 WakeupService; C:\Program Files\ASUS\ASUS VivoBook\ASUSWakeupService.exe [45488 2012-12-20] (ASUSTek Computer Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-10-31] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [65784 2013-01-16] (ASUS Corporation)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [242968 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [274712 2014-05-14] (AVG Technologies CZ, s.r.o.)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-10-31] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-25] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.)
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [107328 2012-09-30] (Intel Corporation)
R3 DptfDevFan; C:\Windows\system32\DRIVERS\DptfDevFan.sys [42816 2012-09-30] (Intel Corporation)
R3 DptfDevGen; C:\Windows\system32\DRIVERS\DptfDevGen.sys [64832 2012-09-30] (Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [96576 2012-09-30] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [229184 2012-09-30] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [363328 2012-09-30] (Intel Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-01] ( )
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.)
U0 msahci;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-02 21:10 - 2014-07-02 21:10 - 00098700 _____ () C:\Users\Champion\Documents\SummaryEN.zip
2014-07-02 21:09 - 2014-07-02 21:09 - 02134702 _____ () C:\Users\Champion\Documents\SummaryEN.nfo
2014-07-02 21:06 - 2014-07-02 21:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-07-02 20:53 - 2014-07-02 20:53 - 00104087 _____ () C:\Users\Champion\Documents\Summary.zip
2014-07-02 20:20 - 2014-07-02 20:20 - 02325206 _____ () C:\Users\Champion\Documents\Summary.nfo
2014-07-02 20:07 - 2014-07-02 20:07 - 01073664 _____ (Farbar) C:\Users\Champion\Downloads\FRST(1).exe
2014-07-02 20:06 - 2014-07-02 20:06 - 02083840 _____ (Farbar) C:\Users\Champion\Downloads\FRST64(1).exe
2014-06-29 20:46 - 2014-06-29 20:46 - 00023893 _____ () C:\Users\Champion\Desktop\DDS II.txt
2014-06-29 20:46 - 2014-06-29 20:46 - 00002873 _____ () C:\Users\Champion\Desktop\Attach II.txt
2014-06-29 20:40 - 2014-06-29 20:40 - 00688992 ____R (Swearware) C:\Users\Champion\Downloads\dds(1).com
2014-06-24 05:28 - 2014-06-24 05:28 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-06-24 05:28 - 2014-06-24 05:28 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-06-21 00:59 - 2014-06-29 20:41 - 00023893 _____ () C:\Users\Champion\Desktop\dds.txt
2014-06-21 00:59 - 2014-06-29 20:41 - 00002873 _____ () C:\Users\Champion\Desktop\attach.txt
2014-06-21 00:53 - 2014-06-21 00:54 - 00688992 ____R (Swearware) C:\Users\Champion\Downloads\dds.com
2014-06-20 23:55 - 2014-06-20 23:58 - 00000247 _____ () C:\Users\Champion\Downloads\Search.txt
2014-06-20 23:29 - 2014-06-20 23:29 - 00036395 _____ () C:\Users\Champion\Downloads\Shortcut.txt
2014-06-20 23:28 - 2014-06-20 23:30 - 00031417 _____ () C:\Users\Champion\Downloads\Addition.txt
2014-06-20 23:25 - 2014-07-02 21:28 - 00020070 _____ () C:\Users\Champion\Downloads\FRST.txt
2014-06-20 23:25 - 2014-07-02 21:27 - 00000000 ____D () C:\FRST
2014-06-20 23:22 - 2014-06-20 23:22 - 02083328 _____ (Farbar) C:\Users\Champion\Downloads\FRST64.exe
2014-06-20 23:17 - 2014-06-20 23:17 - 01070592 _____ (Farbar) C:\Users\Champion\Downloads\FRST.exe
2014-06-20 23:13 - 2014-06-20 23:14 - 00284864 _____ () C:\Windows\Minidump\062014-45437-01.dmp
2014-06-20 23:10 - 2014-06-20 23:13 - 443809561 _____ () C:\Windows\MEMORY.DMP
2014-06-20 23:10 - 2014-06-20 23:13 - 00000000 ____D () C:\Windows\Minidump
2014-06-20 23:10 - 2014-06-20 23:10 - 00284864 _____ () C:\Windows\Minidump\062014-47265-01.dmp
2014-06-20 23:09 - 2014-06-20 23:09 - 00380416 _____ () C:\Users\Champion\Downloads\ibcmf2rv.exe
2014-06-20 21:59 - 2014-06-20 23:06 - 00000000 ____D () C:\AdwCleaner
2014-06-20 21:53 - 2014-06-20 21:54 - 01333465 _____ () C:\Users\Champion\Downloads\AdwCleaner.exe
2014-06-17 16:21 - 2014-06-17 16:21 - 00235800 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
2014-06-17 16:07 - 2014-06-17 16:07 - 00328984 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgloga.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00242968 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00190744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsha.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00153368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00123672 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx64.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00031512 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys
2014-06-16 20:50 - 2014-06-16 20:50 - 00000000 ____D () C:\Users\Invité\AppData\Local\Adobe
2014-06-16 19:19 - 2014-06-16 19:19 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Macromedia
2014-06-16 19:19 - 2014-06-16 19:19 - 00000000 ____D () C:\Users\Invité\AppData\Local\Macromedia
2014-06-16 18:55 - 2014-06-16 18:55 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Mozilla
2014-06-16 18:55 - 2014-06-16 18:55 - 00000000 ____D () C:\Users\Invité\AppData\Local\Mozilla
2014-06-16 18:54 - 2014-06-18 21:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-16 18:54 - 2014-06-16 18:54 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-06-16 18:45 - 2014-06-16 18:45 - 00000000 ____D () C:\Users\Invité\Documents\Bluetooth Folder
2014-06-16 18:45 - 2014-06-16 18:45 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\AVG2014
2014-06-16 18:45 - 2014-06-16 18:45 - 00000000 ____D () C:\Users\Invité\AppData\Local\BMExplorer
2014-06-16 18:44 - 2014-06-27 22:15 - 00000062 _____ () C:\Users\Invité\AppData\Roaming\sp_data.sys
2014-06-16 18:44 - 2014-06-18 21:47 - 00000000 ___RD () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-16 18:44 - 2014-06-18 21:47 - 00000000 ___RD () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-16 18:44 - 2014-06-18 21:47 - 00000000 ___RD () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-16 18:44 - 2014-06-18 21:47 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-16 18:44 - 2014-06-18 21:47 - 00000000 ____D () C:\Users\Invité
2014-06-16 18:44 - 2014-06-16 20:50 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Adobe
2014-06-16 18:44 - 2014-06-16 18:44 - 00001448 _____ () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-16 18:44 - 2014-06-16 18:44 - 00000020 ___SH () C:\Users\Invité\ntuser.ini
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Voisinage réseau
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Voisinage d'impression
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Modèles
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Menu Démarrer
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Documents\Mes vidéos
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Documents\Mes images
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Documents\Ma musique
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\AppData\Local\Historique
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Atheros
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\ASUS WebStorage
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\VirtualStore
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\Packages
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\Avg2014
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\Avg
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\ASUS
2014-06-16 18:44 - 2012-11-27 14:27 - 00002102 _____ () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-06-13 12:29 - 2014-04-19 05:39 - 00628024 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-06-13 12:29 - 2014-04-19 04:45 - 00693760 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-06-13 12:29 - 2014-04-19 04:45 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-13 12:29 - 2014-04-19 02:57 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-06-13 12:29 - 2014-04-19 02:57 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-06-12 17:46 - 2014-06-18 21:47 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-06-12 10:15 - 2014-05-31 01:16 - 00703992 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-12 10:15 - 2014-05-31 01:16 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-12 10:13 - 2014-06-12 10:13 - 00281176 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-11 20:18 - 2014-05-23 22:46 - 19290112 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 20:18 - 2014-05-23 22:46 - 15368704 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 20:18 - 2014-05-23 22:46 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 20:18 - 2014-05-23 22:46 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 20:18 - 2014-05-23 22:45 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 20:18 - 2014-05-23 22:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 20:18 - 2014-05-23 22:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 20:18 - 2014-05-23 21:26 - 14365696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 20:18 - 2014-05-23 21:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 20:18 - 2014-05-23 21:25 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 20:18 - 2014-05-23 21:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 20:18 - 2014-05-23 21:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 20:18 - 2014-05-03 01:47 - 03246592 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-11 20:18 - 2014-05-02 23:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-11 20:18 - 2014-04-29 18:32 - 01301504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-11 20:18 - 2014-04-29 18:22 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-11 20:18 - 2014-04-03 07:22 - 02233176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 20:17 - 2014-05-23 22:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 20:17 - 2014-05-23 22:47 - 02239488 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 20:17 - 2014-05-23 22:47 - 01366016 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 20:17 - 2014-05-23 22:47 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-06-11 20:17 - 2014-05-23 22:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 02650112 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 20:17 - 2014-05-23 22:46 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 20:17 - 2014-05-23 21:26 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 20:17 - 2014-05-23 21:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 20:17 - 2014-05-23 21:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 20:17 - 2014-05-23 21:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 20:17 - 2014-05-23 21:26 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 13731328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 02862080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 20:17 - 2014-05-23 21:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 20:17 - 2014-05-23 21:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 20:17 - 2014-05-23 21:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 20:17 - 2014-05-23 18:37 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-06-11 20:16 - 2014-04-03 07:19 - 00328024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-06-11 20:16 - 2014-04-02 23:44 - 00619008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-11 20:16 - 2014-03-31 18:08 - 00387268 _____ () C:\Windows\system32\ApnDatabase.xml
2014-06-11 20:16 - 2014-03-24 19:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-06-11 20:16 - 2014-03-24 18:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-06-11 20:14 - 2014-03-06 20:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 20:14 - 2014-03-06 20:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-10 14:05 - 2014-06-18 21:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-07-02 21:28 - 2014-06-20 23:25 - 00020070 _____ () C:\Users\Champion\Downloads\FRST.txt
2014-07-02 21:27 - 2014-06-20 23:25 - 00000000 ____D () C:\FRST
2014-07-02 21:10 - 2014-07-02 21:10 - 00098700 _____ () C:\Users\Champion\Documents\SummaryEN.zip
2014-07-02 21:09 - 2014-07-02 21:09 - 02134702 _____ () C:\Users\Champion\Documents\SummaryEN.nfo
2014-07-02 21:06 - 2014-07-02 21:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-07-02 21:02 - 2014-05-21 01:29 - 00000062 _____ () C:\Users\Champion\AppData\Roaming\sp_data.sys
2014-07-02 21:00 - 2014-05-23 11:20 - 00001002 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-02 21:00 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\sru
2014-07-02 20:53 - 2014-07-02 20:53 - 00104087 _____ () C:\Users\Champion\Documents\Summary.zip
2014-07-02 20:20 - 2014-07-02 20:20 - 02325206 _____ () C:\Users\Champion\Documents\Summary.nfo
2014-07-02 20:07 - 2014-07-02 20:07 - 01073664 _____ (Farbar) C:\Users\Champion\Downloads\FRST(1).exe
2014-07-02 20:06 - 2014-07-02 20:06 - 02083840 _____ (Farbar) C:\Users\Champion\Downloads\FRST64(1).exe
2014-07-02 19:53 - 2013-03-20 01:00 - 01797596 _____ () C:\Windows\WindowsUpdate.log
2014-07-02 19:33 - 2014-05-22 21:20 - 00000000 ____D () C:\Users\Natasha Grant\Documents\Bluetooth Folder
2014-07-02 13:35 - 2014-05-22 21:20 - 00000062 _____ () C:\Users\Natasha Grant\AppData\Roaming\sp_data.sys
2014-07-01 19:02 - 2014-05-25 00:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-07-01 19:02 - 2014-05-24 23:59 - 00000000 ____D () C:\ProgramData\MFAData
2014-06-29 20:46 - 2014-06-29 20:46 - 00023893 _____ () C:\Users\Champion\Desktop\DDS II.txt
2014-06-29 20:46 - 2014-06-29 20:46 - 00002873 _____ () C:\Users\Champion\Desktop\Attach II.txt
2014-06-29 20:41 - 2014-06-21 00:59 - 00023893 _____ () C:\Users\Champion\Desktop\dds.txt
2014-06-29 20:41 - 2014-06-21 00:59 - 00002873 _____ () C:\Users\Champion\Desktop\attach.txt
2014-06-29 20:40 - 2014-06-29 20:40 - 00688992 ____R (Swearware) C:\Users\Champion\Downloads\dds(1).com
2014-06-29 16:58 - 2012-11-27 14:28 - 00000000 ____D () C:\Program Files (x86)\McAfee
2014-06-29 16:58 - 2012-08-01 21:20 - 00010224 _____ () C:\Windows\PFRO.log
2014-06-29 16:58 - 2012-07-26 03:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-28 08:56 - 2012-07-26 01:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-06-27 22:20 - 2014-05-27 13:55 - 00795372 _____ () C:\Windows\system32\perfh00A.dat
2014-06-27 22:20 - 2014-05-27 13:55 - 00444588 _____ () C:\Windows\system32\prfh0404.dat
2014-06-27 22:20 - 2014-05-27 13:55 - 00165298 _____ () C:\Windows\system32\perfc00A.dat
2014-06-27 22:20 - 2014-05-27 13:55 - 00135496 _____ () C:\Windows\system32\prfc0404.dat
2014-06-27 22:20 - 2012-08-02 04:31 - 00808404 _____ () C:\Windows\system32\perfh00C.dat
2014-06-27 22:20 - 2012-08-02 04:31 - 00158594 _____ () C:\Windows\system32\perfc00C.dat
2014-06-27 22:20 - 2012-07-26 03:28 - 03313430 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-27 22:16 - 2014-05-21 01:31 - 00000000 ____D () C:\Users\Champion\Documents\Bluetooth Folder
2014-06-27 22:15 - 2014-06-16 18:44 - 00000062 _____ () C:\Users\Invité\AppData\Roaming\sp_data.sys
2014-06-26 10:38 - 2014-05-24 23:59 - 00000896 _____ () C:\Users\Public\Desktop\AVG.lnk
2014-06-26 10:38 - 2014-05-24 23:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2014-06-24 05:28 - 2014-06-24 05:28 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-06-24 05:28 - 2014-06-24 05:28 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-06-21 00:54 - 2014-06-21 00:53 - 00688992 ____R (Swearware) C:\Users\Champion\Downloads\dds.com
2014-06-20 23:58 - 2014-06-20 23:55 - 00000247 _____ () C:\Users\Champion\Downloads\Search.txt
2014-06-20 23:30 - 2014-06-20 23:28 - 00031417 _____ () C:\Users\Champion\Downloads\Addition.txt
2014-06-20 23:29 - 2014-06-20 23:29 - 00036395 _____ () C:\Users\Champion\Downloads\Shortcut.txt
2014-06-20 23:22 - 2014-06-20 23:22 - 02083328 _____ (Farbar) C:\Users\Champion\Downloads\FRST64.exe
2014-06-20 23:17 - 2014-06-20 23:17 - 01070592 _____ (Farbar) C:\Users\Champion\Downloads\FRST.exe
2014-06-20 23:14 - 2014-06-20 23:13 - 00284864 _____ () C:\Windows\Minidump\062014-45437-01.dmp
2014-06-20 23:13 - 2014-06-20 23:10 - 443809561 _____ () C:\Windows\MEMORY.DMP
2014-06-20 23:13 - 2014-06-20 23:10 - 00000000 ____D () C:\Windows\Minidump
2014-06-20 23:10 - 2014-06-20 23:10 - 00284864 _____ () C:\Windows\Minidump\062014-47265-01.dmp
2014-06-20 23:09 - 2014-06-20 23:09 - 00380416 _____ () C:\Users\Champion\Downloads\ibcmf2rv.exe
2014-06-20 23:06 - 2014-06-20 21:59 - 00000000 ____D () C:\AdwCleaner
2014-06-20 21:54 - 2014-06-20 21:53 - 01333465 _____ () C:\Users\Champion\Downloads\AdwCleaner.exe
2014-06-19 13:07 - 2014-05-22 21:26 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2707330492-3668884786-433844304-1002
2014-06-18 21:48 - 2014-06-10 14:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 21:48 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-06-18 21:48 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-06-18 21:48 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-06-18 21:48 - 2012-07-26 03:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-06-18 21:47 - 2014-06-16 18:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2014-06-18 21:47 - 2014-06-16 18:44 - 00000000 ___RD () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-18 21:47 - 2014-06-16 18:44 - 00000000 ___RD () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-18 21:47 - 2014-06-16 18:44 - 00000000 ___RD () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-06-18 21:47 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-18 21:47 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité
2014-06-18 21:47 - 2014-06-12 17:46 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-06-18 21:47 - 2013-03-20 01:14 - 00000000 ____D () C:\ProgramData\P4G
2014-06-18 21:47 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-18 21:47 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\ToastData
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\WinStore
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\ras
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\MSDRM
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\ras
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\MSDRM
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\rescache
2014-06-18 21:46 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\L2Schemas
2014-06-18 21:46 - 2012-07-26 03:52 - 00000000 ____D () C:\Windows\ShellNew
2014-06-18 21:46 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-06-18 21:46 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\system32\Sysprep
2014-06-18 21:46 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\system32\oobe
2014-06-18 21:46 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\system32\Dism
2014-06-18 21:43 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\registration
2014-06-18 20:50 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-06-18 20:45 - 2014-05-21 01:36 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2707330492-3668884786-433844304-1001
2014-06-17 16:21 - 2014-06-17 16:21 - 00235800 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
2014-06-17 16:07 - 2014-06-17 16:07 - 00328984 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgloga.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00242968 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdrivera.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00190744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsha.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00153368 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00123672 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx64.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00031512 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx64.sys
2014-06-16 20:50 - 2014-06-16 20:50 - 00000000 ____D () C:\Users\Invité\AppData\Local\Adobe
2014-06-16 20:50 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Adobe
2014-06-16 19:19 - 2014-06-16 19:19 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Macromedia
2014-06-16 19:19 - 2014-06-16 19:19 - 00000000 ____D () C:\Users\Invité\AppData\Local\Macromedia
2014-06-16 18:55 - 2014-06-16 18:55 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Mozilla
2014-06-16 18:55 - 2014-06-16 18:55 - 00000000 ____D () C:\Users\Invité\AppData\Local\Mozilla
2014-06-16 18:54 - 2014-06-16 18:54 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-06-16 18:45 - 2014-06-16 18:45 - 00000000 ____D () C:\Users\Invité\Documents\Bluetooth Folder
2014-06-16 18:45 - 2014-06-16 18:45 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\AVG2014
2014-06-16 18:45 - 2014-06-16 18:45 - 00000000 ____D () C:\Users\Invité\AppData\Local\BMExplorer
2014-06-16 18:45 - 2013-03-20 01:14 - 00000000 ____D () C:\ProgramData\Atheros
2014-06-16 18:44 - 2014-06-16 18:44 - 00001448 _____ () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-16 18:44 - 2014-06-16 18:44 - 00000020 ___SH () C:\Users\Invité\ntuser.ini
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Voisinage réseau
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Voisinage d'impression
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Modèles
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Menu Démarrer
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Documents\Mes vidéos
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Documents\Mes images
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\Documents\Ma musique
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 _SHDL () C:\Users\Invité\AppData\Local\Historique
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\Atheros
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Roaming\ASUS WebStorage
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\VirtualStore
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\Packages
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\Avg2014
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\Avg
2014-06-16 18:44 - 2014-06-16 18:44 - 00000000 ____D () C:\Users\Invité\AppData\Local\ASUS
2014-06-15 08:30 - 2012-07-26 03:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-06-15 06:06 - 2012-08-02 04:30 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\SysWOW64\Com
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\MUI
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\migwiz
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\IME
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Common Files\System
2014-06-15 06:06 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-06-15 06:06 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-06-15 06:06 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-06-15 06:06 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-06-15 06:06 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-06-15 06:06 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\system32\winrm
2014-06-15 06:06 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\system32\WCN
2014-06-15 06:06 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\system32\slmgr
2014-06-15 06:06 - 2012-07-26 01:38 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-06-15 06:06 - 2012-07-26 01:37 - 00000000 ____D () C:\Windows\servicing
2014-06-15 06:05 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\SystemResetPlatform
2014-06-15 06:05 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\Com
2014-06-15 06:05 - 2012-07-26 03:49 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-06-13 12:25 - 2014-05-22 09:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-13 12:22 - 2014-05-22 09:45 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-13 12:05 - 2014-05-21 01:28 - 00000000 ____D () C:\Users\Champion
2014-06-12 17:46 - 2014-05-23 11:20 - 00003890 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-12 10:13 - 2014-06-12 10:13 - 00281176 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-12 10:12 - 2014-05-23 11:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-03 22:16 - 2012-07-26 04:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-03 22:16 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-06-03 22:13 - 2012-07-26 04:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS


Some content of TEMP:
====================
C:\Users\Champion\AppData\Local\Temp\avguirn_082046460216.exe
C:\Users\Champion\AppData\Local\Temp\avguirn_08441038237.exe
C:\Users\Natasha Grant\AppData\Local\Temp\avguirn_081628283600.exe
C:\Users\Natasha Grant\AppData\Local\Temp\avguirn_082144872308.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-26 11:00

==================== End Of Log ============================

 

 

 

 

 

ADDITION

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-07-2014
Ran by Champion at 2014-07-02 21:29:37
Running from C:\Users\Champion\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: McAfee Anti-Virus et Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus et Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: Pare-feu McAfee  (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}

==================== Installed Programs ======================

 ASUS VivoBook (HKLM\...\{04FDBE69-F9FD-42A2-9008-E5CE7F60C6BE}) (Version: 1.0.26 - ASUS)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.3.143.61629 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.3.143.61629 - Alcor Micro Corp.) Hidden
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.5 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.9 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.9 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS)
ASUS S Series Product Demo (HKLM-x32\...\{387AA3E2-B9FE-4DA1-A097-A0D2213E8794}) (Version: 1.0.0 - ASUS)
ASUS Screen Saver (HKLM\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 1.1.3 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0002 - ASUS)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.8 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.10.123 - ASUS Cloud Corporation)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0025 - ASUS)
AVG (HKLM\...\AvgZen) (Version: 1.0.291 - AVG Technologies)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4716 - AVG Technologies)
AVG 2014 (Version: 14.0.3986 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4716 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.291 - AVG Technologies) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
FMW 1 (Version: 1.0.220 - AVG Technologies) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 6.0.6.1082 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2875 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
McAfee Internet Security (HKLM-x32\...\MSC) (Version: 12.8.958 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 fr)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.214 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Qualcomm Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.12 - Qualcomm Atheros Communications Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6828 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Driver Package - ASUS (ATP) Mouse  (01/10/2013 1.0.0.170) (HKLM\...\4A9DE1E9EBC800B7F01739D4DE7363EF6751BDF5) (Version: 01/10/2013 1.0.0.170 - ASUS)
Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live 程式集 (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live 软件包 (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
影像中心 (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
照片库 (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

15-06-2014 02:49:05 Programme d’installation pour les modules Windows
19-06-2014 01:00:53 Opération de restauration
28-06-2014 12:02:47 Point de contrôle planifié

==================== Hosts content: ==========================

2012-07-26 01:26 - 2012-07-26 01:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {6A15A24C-0D36-46CC-A135-5D955398AC48} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {7AB8E9E3-ABF1-4DB1-A46D-08D94C7CD53E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-11-29] (ASUS)
Task: {83C11A1C-3C29-406C-927B-AF89E5E4F52C} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2012-11-29] ()
Task: {8BFB8140-0E22-4E55-86ED-BDF76B6DCEBC} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {9FF05B60-686D-4CF1-9971-5AEC1437EBC0} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-06-13] (Microsoft Corporation)
Task: {A59DD2E5-F6EC-4174-AA85-F2646099DCB1} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2013-01-16] (AsusTek)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {A9BAD86A-BC6D-4A35-9DF6-DE012A775BE5} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {D59679D6-056F-4728-9AF1-423F2E1E5387} - System32\Tasks\ASUS VivoBook => C:\Program Files\ASUS\ASUS VivoBook\VivoBook.exe [2012-12-25] (ASUSTeK Computer Inc.)
Task: {D97A875F-A0ED-4E44-9B10-BFF533B4F4EA} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2014-04-19] (Microsoft Corporation)
Task: {E253CBC8-A3FC-45E6-B775-E12E1B65F955} - System32\Tasks\ASUS Patch for Touch Panel => C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe [2013-01-09] (ASUSTek Computer INC.)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {F2A7FE17-7ED3-479B-87AB-912DD4B725D8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-12] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2012-11-29 20:15 - 2012-11-29 20:15 - 00171224 _____ () C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
2013-01-28 07:51 - 2012-11-02 03:19 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2012-10-31 23:57 - 2012-10-31 23:57 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-10-31 23:52 - 2012-10-31 23:52 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\fr-FR\BtTray.fr-FR.dll
2012-10-31 23:55 - 2012-10-31 23:55 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2012-10-31 23:57 - 2012-10-31 23:57 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2012-08-24 20:26 - 2012-08-24 20:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2012-07-25 16:44 - 2012-07-25 16:35 - 00046592 _____ () C:\Windows\system32\WinMetadata\Windows.Graphics.winmd
2013-03-20 01:04 - 2012-06-25 13:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2014-05-24 23:59 - 2014-05-24 23:59 - 31842816 _____ () C:\Program Files (x86)\AVG\Framework\Common\libcef.dll
2014-06-10 14:05 - 2014-06-10 14:05 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/29/2014 07:36:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: avgidsagent.exe, version: 14.0.0.4714, time stamp: 0x53a04eaa
Faulting module name: avgidsagent.exe, version: 14.0.0.4714, time stamp: 0x53a04eaa
Exception code: 0xc0000005
Fault offset: 0x000f20df
Faulting process id: 0x80c
Faulting application start time: 0xavgidsagent.exe0
Faulting application path: avgidsagent.exe1
Faulting module path: avgidsagent.exe2
Report Id: avgidsagent.exe3
Faulting package full name: avgidsagent.exe4
Faulting package-relative application ID: avgidsagent.exe5

Error: (06/29/2014 05:24:11 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (06/26/2014 11:13:13 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_esa.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.

Error: (06/26/2014 11:13:11 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_zta.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.

Error: (06/26/2014 11:13:08 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_zha.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.

Error: (06/26/2014 11:13:06 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_tra.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.

Error: (06/26/2014 11:13:03 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_rua.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.

Error: (06/26/2014 11:13:00 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_msa.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.

Error: (06/26/2014 11:12:58 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_koa.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.

Error: (06/26/2014 11:12:55 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_ida.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.


System errors:
=============
Error: (07/02/2014 09:01:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible

Error: (07/01/2014 09:43:36 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgsvc service.

Error: (07/01/2014 07:10:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgsvc service.

Error: (06/30/2014 04:52:08 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgsvc service.

Error: (06/29/2014 11:12:40 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgsvc service.

Error: (06/29/2014 07:36:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The AVGIDSAgent service terminated unexpectedly.  It has done this 1 time(s).

Error: (06/29/2014 04:56:55 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgwd service.

Error: (06/27/2014 10:33:06 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the avgsvc service.

Error: (06/27/2014 10:15:55 PM) (Source: DCOM) (EventID: 10016) (User: Achiever)
Description: propres à l’applicationLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}AchieverInvitéS-1-5-21-2707330492-3668884786-433844304-501LocalHost (avec LRPC)Non disponibleNon disponible

Error: (06/27/2014 10:15:54 PM) (Source: DCOM) (EventID: 10016) (User: Achiever)
Description: propres à l’applicationLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}AchieverInvitéS-1-5-21-2707330492-3668884786-433844304-501LocalHost (avec LRPC)Non disponibleNon disponible


Microsoft Office Sessions:
=========================
Error: (06/29/2014 07:36:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: avgidsagent.exe14.0.0.471453a04eaaavgidsagent.exe14.0.0.471453a04eaac0000005000f20df80c01cf93dcdd9f024aC:\Program Files (x86)\AVG\AVG2014\avgidsagent.exeC:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe3ac2e0db-ffe6-11e3-be8c-6c71d977a692

Error: (06/29/2014 05:24:11 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (06/26/2014 11:13:13 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_esa.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/26/2014 11:13:11 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_zta.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/26/2014 11:13:08 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_zha.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/26/2014 11:13:06 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_tra.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/26/2014 11:13:03 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_rua.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/26/2014 11:13:00 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_msa.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/26/2014 11:12:58 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_koa.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (06/26/2014 11:12:55 AM) (Source: MsiInstaller) (EventID: 11311) (User: AUTORITE NT)
Description: SA_Error1709: StandardAction(0xC00706AD): Produit : AVG 2014 -- Erreur 1311. SA_Error1311: StandardAction(0xC007051F): Fichier source introuvable(cabinet) : C:\ProgramData\AVG2014\SetupBackup\lng_ida.cab. Vérifiez que ce fichier existe et que vous êtes autorisé à y accéder.(NULL)(NULL)(NULL)(NULL)(NULL)


==================== Memory info ===========================

Percentage of memory in use: 61%
Total physical RAM: 3981.71 MB
Available physical RAM: 1515.39 MB
Total Pagefile: 8077.71 MB
Available Pagefile: 5151.11 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:186.3 GB) (Free:133.73 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:258.15 GB) (Free:258.02 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: C2B20764)

Partition: GPT Partition Type.

==================== End Of Log ============================



#15 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 37,457 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:07:10 PM

Posted 02 July 2014 - 09:25 PM

Greetings,

Let's start with this.

===================================================

Multiple Antivirus Programs

-------------------

I do not recommend that you have more than one anti virus product installed on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:
  • False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
  • System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.
Therefore please remove AVG AntiVirus Free Edition 2014 since there are a number of errors in your logs related to that program. You can do this via Add/Remove Programs, or Programs and Features in the Control Panel.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it to your desktop (<<<Important) as fixlist.txt
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
U0 msahci;
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS
C:\Users\Champion\AppData\Local\Temp\avguirn_082046460216.exe
C:\Users\Champion\AppData\Local\Temp\avguirn_08441038237.exe
C:\Users\Natasha Grant\AppData\Local\Temp\avguirn_081628283600.exe
C:\Users\Natasha Grant\AppData\Local\Temp\avguirn_082144872308.exe
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Virustotal Online Virus Scanner

--------------------
  • Please go to Virustotal
  • Select Choose File
  • Navigate to the following file (if multiple files then one at a time), double click on it so the file name is populated, then click Scan it!
  • IMPORTANT! If the file is listed as already analyzed, click on Reanalyse file now button.

C:\Users\Champion\Downloads\ibcmf2rv.exe

  • Once completed, highlight the information in the address bar and copy then paste the link in your reply
virustotal.jpg

===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Did AVG uninstall properly?
  • Fixlog
  • Virustotal link
  • How is your computer running?

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"May you be richly rewarded by the Lord, the God of Israel, under whose wings you have come to take refuge."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users